gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

docs: Update tracking for DPI Phase 4 LAN Passive Analysis

Browse Source 
- Added LAN passive flow analysis to HISTORY.md
- Updated WIP.md with completed DPI work
- Noted mitmproxy-out removal and detection fix

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
CyberMind-FR 2026-03-15 15:02:06 +01:00
parent 76754df467
commit e2723946d4
2 changed files with 25 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
.claude/HISTORY.md
View File

@ -5220,3 +5220,15 @@ git checkout HEAD -- index.html
- LuCI timeline view: Event cards, IP context modal, quick ban, search - LuCI timeline view: Event cards, IP context modal, quick ban, search
- 8 new RPCD methods for correlation access and control - 8 new RPCD methods for correlation access and control
- **Dual-Stream DPI Phase 4 - LAN Passive Flow Analysis (2026-03-15/16)**
- New `dpi-lan-collector` daemon for passive br-lan monitoring
- Zero MITM, zero caching - pure nDPI/conntrack flow observation
- Tracks: active clients (ARP), destinations (conntrack), protocols (TCP/UDP/ICMP)
- LuCI `lan-flows.js` view with real-time stats and 5s auto-refresh
- 4 new RPCD methods: get_lan_status, get_lan_clients, get_lan_destinations, get_lan_protocols
- UCI config `lan` section with interface, aggregate_interval, client_retention
- Fixed protocol display bug ("TCPnull" → "TCP")
- Removed mitmproxy-out container (not needed for WAF)
- Updated MITM detection to check mitmproxy-in specifically

14
.claude/WIP.md
View File

@ -1,6 +1,6 @@
# Work In Progress (Claude) # Work In Progress (Claude)
_Last updated: 2026-03-15 (Wall Colorsets)_ _Last updated: 2026-03-16 (DPI LAN Passive Analysis)_
> **Architecture Reference**: SecuBox Fanzine v3 — Les 4 Couches > **Architecture Reference**: SecuBox Fanzine v3 — Les 4 Couches
@ -8,6 +8,18 @@ _Last updated: 2026-03-15 (Wall Colorsets)_
## Recently Completed ## Recently Completed
### 2026-03-16
- **Dual-Stream DPI Phase 4 - LAN Passive Flow Analysis (Complete)**
- New `dpi-lan-collector` daemon for passive br-lan monitoring
- Zero MITM, zero caching - pure nDPI/conntrack flow observation
- Tracks: active LAN clients (ARP), external destinations (conntrack), protocols
- LuCI `lan-flows.js` view with real-time stats and 5s auto-refresh
- 4 new RPCD methods: get_lan_status, get_lan_clients, get_lan_destinations, get_lan_protocols
- Fixed protocol display bug ("TCPnull" → "TCP")
- Removed mitmproxy-out container (WAF only needs mitmproxy-in)
- Updated MITM detection to check mitmproxy-in specifically
### 2026-03-15 ### 2026-03-15
- **MAGIC·CHESS·360 Colorset + Sliders Enhancement (Complete)** - **MAGIC·CHESS·360 Colorset + Sliders Enhancement (Complete)**