Merge branch 'develop' of http://10.0.6.99/gwall/gwall.git into develop

Conflicts:
	src/main/java/com/nis/web/controller/BaseController.java
	src/main/resources/messages/message_en.properties
	src/main/resources/messages/message_ru.properties

src/main/resources/sql/add_function_region_dict_columns.sql

@@ -3,5 +3,5 @@ ALTER TABLE function_region_dict ADD config_ip_type VARCHAR(20) NULL COMMENT 'ip
 ALTER TABLE function_region_dict ADD config_ip_pattern VARCHAR(10) NULL COMMENT 'ip的格式 1:ip掩码;2:IP范围;3:IP;使用逗号分隔';
 ALTER TABLE function_region_dict ADD config_port_pattern VARCHAR(10) NULL COMMENT '端口的格式，1:port;2:port_mask;使用逗号分隔';
 ALTER TABLE function_region_dict ADD config_direction VARCHAR(10) NULL COMMENT 'IP方向0,双向;1,单向.使用逗号分隔';
-ALTER TABLE function_service_dict ADD region_code INT(11) NULL COMMENT 'function_region_dict 表中的config_region_code字段值';
+ALTER TABLE function_service_dict ADD region_code VARCHAR(20) NULL COMMENT 'function_region_dict 表中的config_region_code字段值';
 ALTER TABLE function_region_dict ADD config_protocol VARCHAR(20) NULL COMMENT '协议 0:任意;6:TCP;17:UDP;1:ICMP;50:ESP;51:AH';

src/main/resources/sql/add_region_sort.sql

@@ -0,0 +1,8 @@
+ALTER TABLE function_region_dict ADD config_region_sort INT(11)  COMMENT 'region排序';
+UPDATE function_region_dict SET config_region_sort=1 WHERE config_region_code=1;
+UPDATE function_region_dict SET config_region_sort=2 WHERE config_region_code=2;
+UPDATE function_region_dict SET config_region_sort=3 WHERE config_region_code=3;
+UPDATE function_region_dict SET config_region_sort=4 WHERE config_region_code=4;
+UPDATE function_region_dict SET config_region_sort=5 WHERE config_region_code=5;
+UPDATE function_region_dict SET config_region_sort=6 WHERE config_region_code=6;
+UPDATE function_region_dict SET config_region_sort=7 WHERE config_region_code=7;

src/main/resources/sql/app_layer_header_cfg.sql

@@ -0,0 +1,60 @@
+/*
+Navicat MariaDB Data Transfer
+
+Source Server         : 10.0.6.249
+Source Server Version : 100214
+Source Host           : 10.0.6.249:3306
+Source Database       : gwall
+
+Target Server Type    : MariaDB
+Target Server Version : 100214
+File Encoding         : 65001
+
+Date: 2018-08-20 20:40:02
+*/
+
+SET FOREIGN_KEY_CHECKS=0;
+
+-- ----------------------------
+-- Table structure for app_layer_header_cfg
+-- ----------------------------
+DROP TABLE IF EXISTS `app_layer_header_cfg`;
+CREATE TABLE `app_layer_header_cfg` (
+  `cfg_id` bigint(20) NOT NULL AUTO_INCREMENT COMMENT '主键',
+  `district` varchar(128) NOT NULL,
+  `cfg_keywords` varchar(1024) NOT NULL,
+  `app_code` int(11) NOT NULL,
+  `behav_code` int(11) DEFAULT NULL,
+  `spec_service_id` varchar(255) NOT NULL COMMENT 'specific_service_cfg .spec_service_id',
+  `cfg_desc` varchar(128) DEFAULT '',
+  `action` int(11) NOT NULL COMMENT '1：阻断（reject）2：监测（monit）5：管控白名单（Control whitelist）6：监测白名单（monit whitelist）7：管控监测都白名单（global whitelist）',
+  `is_valid` int(11) NOT NULL COMMENT '0无效，1有效，-1删除\r\n1）	未审核时配置可删除\r\n2）	审核通过，此字段置1\r\n3）	取消审核通过，此字段置0',
+  `is_audit` int(11) NOT NULL COMMENT '0未审核，1审核通过，2审核未通过，3取消审核通过\r\n1）	审核未通过，配置可修改\r\n2）	审核通过，配置不可删除，只能取消审核通过',
+  `creator_id` int(11) NOT NULL COMMENT 'sys_user.id',
+  `create_time` datetime NOT NULL,
+  `editor_id` int(11) DEFAULT NULL COMMENT '来自sys_user.id',
+  `edit_time` datetime DEFAULT NULL,
+  `auditor_id` int(11) DEFAULT NULL COMMENT '来自sys_user.id',
+  `audit_time` datetime DEFAULT NULL,
+  `service_id` int(11) NOT NULL COMMENT '业务id',
+  `request_id` int(11) NOT NULL COMMENT '来自request_info.id',
+  `compile_id` int(11) NOT NULL,
+  `is_area_effective` int(11) NOT NULL DEFAULT 0,
+  `classify` varchar(128) DEFAULT '',
+  `attribute` varchar(128) DEFAULT '',
+  `lable` varchar(128) DEFAULT '',
+  `area_effective_ids` varchar(1024) DEFAULT '',
+  `function_id` int(11) NOT NULL,
+  `ratelimit` int(11) DEFAULT 0 COMMENT '限速比例',
+  `cfg_type` varchar(64) NOT NULL DEFAULT '',
+  `cfg_region_code` int(11) NOT NULL,
+  `expr_type` int(11) NOT NULL DEFAULT 0 COMMENT '0：无表达式，1：与表达式',
+  `match_method` int(11) NOT NULL DEFAULT 3 COMMENT 'expr_type:0时有意义，其它情况必须置0。0：子串匹配；1：右匹配；2：左匹配；3：完全匹配',
+  `is_hexbin` int(11) NOT NULL DEFAULT 0 COMMENT '默认为0:大小写不敏感，且非HEX;1:HEX格式二进制;2:大小写敏感，且非HEX',
+  `user_region1` varchar(1024) DEFAULT '' COMMENT '预留自定义域1',
+  `user_region2` varchar(1024) DEFAULT '' COMMENT '预留自定义域2',
+  `user_region3` varchar(1024) DEFAULT '' COMMENT '预留自定义域3',
+  `user_region4` varchar(1024) DEFAULT '' COMMENT '预留自定义域4',
+  `user_region5` varchar(1024) DEFAULT '' COMMENT '预留自定义域5',
+  PRIMARY KEY (`cfg_id`)
+) ENGINE=InnoDB DEFAULT CHARSET=utf8;

src/main/resources/sql/app_ssl_cert_cfg.sql

@@ -0,0 +1,60 @@
+/*
+Navicat MariaDB Data Transfer
+
+Source Server         : 10.0.6.249
+Source Server Version : 100214
+Source Host           : 10.0.6.249:3306
+Source Database       : gwall
+
+Target Server Type    : MariaDB
+Target Server Version : 100214
+File Encoding         : 65001
+
+Date: 2018-08-20 20:39:54
+*/
+
+SET FOREIGN_KEY_CHECKS=0;
+
+-- ----------------------------
+-- Table structure for app_ssl_cert_cfg
+-- ----------------------------
+DROP TABLE IF EXISTS `app_ssl_cert_cfg`;
+CREATE TABLE `app_ssl_cert_cfg` (
+  `cfg_id` bigint(20) NOT NULL AUTO_INCREMENT COMMENT '主键',
+  `district` varchar(128) NOT NULL,
+  `cfg_keywords` varchar(1024) NOT NULL,
+  `app_code` int(11) NOT NULL,
+  `behav_code` int(11) DEFAULT NULL,
+  `spec_service_id` varchar(255) NOT NULL COMMENT 'specific_service_cfg .spec_service_id',
+  `cfg_desc` varchar(128) DEFAULT '',
+  `action` int(11) NOT NULL COMMENT '1：阻断（reject）2：监测（monit）5：管控白名单（Control whitelist）6：监测白名单（monit whitelist）7：管控监测都白名单（global whitelist）',
+  `is_valid` int(11) NOT NULL COMMENT '0无效，1有效，-1删除\r\n1）	未审核时配置可删除\r\n2）	审核通过，此字段置1\r\n3）	取消审核通过，此字段置0',
+  `is_audit` int(11) NOT NULL COMMENT '0未审核，1审核通过，2审核未通过，3取消审核通过\r\n1）	审核未通过，配置可修改\r\n2）	审核通过，配置不可删除，只能取消审核通过',
+  `creator_id` int(11) NOT NULL COMMENT 'sys_user.id',
+  `create_time` datetime NOT NULL,
+  `editor_id` int(11) DEFAULT NULL COMMENT '来自sys_user.id',
+  `edit_time` datetime DEFAULT NULL,
+  `auditor_id` int(11) DEFAULT NULL COMMENT '来自sys_user.id',
+  `audit_time` datetime DEFAULT NULL,
+  `service_id` int(11) NOT NULL COMMENT '业务id',
+  `request_id` int(11) NOT NULL COMMENT '来自request_info.id',
+  `compile_id` int(11) NOT NULL,
+  `is_area_effective` int(11) NOT NULL DEFAULT 0,
+  `classify` varchar(128) DEFAULT '',
+  `attribute` varchar(128) DEFAULT '',
+  `lable` varchar(128) DEFAULT '',
+  `area_effective_ids` varchar(1024) DEFAULT '',
+  `function_id` int(11) NOT NULL,
+  `ratelimit` int(11) DEFAULT 0 COMMENT '限速比例',
+  `cfg_type` varchar(64) NOT NULL DEFAULT '',
+  `cfg_region_code` int(11) NOT NULL,
+  `expr_type` int(11) NOT NULL DEFAULT 0 COMMENT '0：无表达式，1：与表达式',
+  `match_method` int(11) NOT NULL DEFAULT 3 COMMENT 'expr_type:0时有意义，其它情况必须置0。0：子串匹配；1：右匹配；2：左匹配；3：完全匹配',
+  `is_hexbin` int(11) NOT NULL DEFAULT 0 COMMENT '默认为0:大小写不敏感，且非HEX;1:HEX格式二进制;2:大小写敏感，且非HEX',
+  `user_region1` varchar(1024) DEFAULT '' COMMENT '预留自定义域1',
+  `user_region2` varchar(1024) DEFAULT '' COMMENT '预留自定义域2',
+  `user_region3` varchar(1024) DEFAULT '' COMMENT '预留自定义域3',
+  `user_region4` varchar(1024) DEFAULT '' COMMENT '预留自定义域4',
+  `user_region5` varchar(1024) DEFAULT '' COMMENT '预留自定义域5',
+  PRIMARY KEY (`cfg_id`)
+) ENGINE=InnoDB AUTO_INCREMENT=4 DEFAULT CHARSET=utf8;

src/main/resources/sql/function_service_dict_add_colunm.sql

@@ -1 +1,3 @@
-INSERT INTO function_service_dict (`dict_id`, `function_id`, `protocol_id`, `action`, `action_code`, `service_id`, `service_name`, `service_desc`, `is_valid`, `creator_id`, `create_time`, `editor_id`, `edit_time`) VALUES ('101', '510', '0', '16', 'reject', '34', 'p2p_reject', NULL, '1', NULL, NULL, NULL, NULL);
+INSERT INTO function_service_dict (`function_id`, `protocol_id`, `action`, `action_code`, `service_id`, `service_name`, `service_desc`, `is_valid`, `creator_id`, `create_time`, `editor_id`, `edit_time`) VALUES ('510', '0', '16', 'reject', '34', 'p2p_reject', NULL, '1', NULL, NULL, NULL, NULL);
+INSERT INTO function_service_dict (`function_id`, `protocol_id`, `action`, `action_code`, `service_id`, `service_name`, `service_desc`, `is_valid`, `creator_id`, `create_time`, `editor_id`, `edit_time`) VALUES ('520', '0', '1', 'monit', '1029', 'app_ssl_cert_feature_monit', NULL, '1', NULL, NULL, NULL, NULL);
+INSERT INTO function_service_dict (`function_id`, `protocol_id`, `action`, `action_code`, `service_id`, `service_name`, `service_desc`, `is_valid`, `creator_id`, `create_time`, `editor_id`, `edit_time`) VALUES ('530', '0', '1', 'monit', '1031', 'app_header_feature_monit', NULL, '1', NULL, NULL, NULL, NULL);

src/main/resources/sql/update_attack_type_dict.sql

@@ -0,0 +1,12 @@
+UPDATE sys_data_dictionary_name SET REMARK='ddos 攻击类型' WHERE mark='ATTACK_TYPE';
+DELETE	FROM sys_data_dictionary_item WHERE dictionary_id=99;
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200594,'ICMP_Flood','',0,1,1,99);
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200595,'IPFRAG_Flood','',0,1,1,99);
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200596,'SYN_Flood','',0,1,1,99);
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200597,'ACK_Flood','',0,1,1,99);
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200598,'RST_Flood','',0,1,1,99);
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200599,'DNS_Flood','',0,1,1,99);
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200600,'NTP_Flood','',0,1,1,99);
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200601,'UDP_Flood','',0,1,1,99);
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200602,'HTTP_Flood','',0,1,1,99);
+INSERT INTO sys_data_dictionary_item (item_code,item_value,item_desc,item_sort,STATUS,TYPE,dictionary_id) VALUES(200603,'SSDP_Flood','',0,1,1,99);

src/main/resources/sql/update_cfg_index_info-20180820.sql

@@ -0,0 +1 @@
+alter table task_info add do_log int(11)  COMMENT 'do_log:0不需要1记录所有日志2只记录结构化日志。默认是2'

src/main/resources/sql/update_function_region_dict_data.sql

@@ -0,0 +1,64 @@
+#ip地址
+UPDATE function_service_dict SET region_code=1 WHERE function_id=5 AND ACTION IN(16,1);
+UPDATE function_service_dict SET region_code=2 WHERE function_id=5 AND ACTION IN(32,96);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=27;
+UPDATE function_region_dict SET config_service_type='ipaddr',config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17,1' WHERE dict_id=35;
+#ip限流
+UPDATE function_service_dict SET region_code=1 WHERE function_id=302 AND ACTION IN(64);
+UPDATE function_region_dict SET config_service_type='ratelimit',config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=67;
+#IP复用策略
+UPDATE function_service_dict SET region_code=1 WHERE function_id=300 AND ACTION IN(96);
+UPDATE function_region_dict SET config_service_type='ipmulitiplex',config_ip_port_show='1' ,config_ip_type='4,6',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=68;
+#IP拦截
+UPDATE function_service_dict SET region_code=1 WHERE function_id=200 AND ACTION IN(1,128,64,80);
+UPDATE function_region_dict SET config_service_type='ratelimit',config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0',config_protocol='0' WHERE dict_id=53;
+#音视频IP
+UPDATE function_service_dict SET region_code=2 WHERE function_id=20 AND ACTION IN(1,16);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=17;
+#图片IP
+UPDATE function_service_dict SET region_code=1 WHERE function_id=21 AND ACTION IN(1,16);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=24;
+#APP IP
+UPDATE function_service_dict SET region_code=1 WHERE function_id=405 AND ACTION IN(1);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0',config_protocol='0,6,17' WHERE dict_id=62;
+#IP白名单
+UPDATE function_service_dict SET region_code=1 WHERE function_id=3 AND ACTION IN(128);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0',config_protocol='0,6,17' WHERE dict_id=7;
+#http ip
+UPDATE function_service_dict SET region_code='1,2,3,4,5,6' WHERE function_id=8 AND ACTION IN(16,1);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=14;
+#ssl ip
+UPDATE function_service_dict SET region_code='1,2,3,4' WHERE function_id=34 AND ACTION IN(16,1);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=23;
+# mail ip
+UPDATE function_service_dict SET region_code='1,2,3,4,5,6' WHERE function_id=35 AND ACTION IN(16,1);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=33;
+# ddos ip
+UPDATE function_service_dict SET region_code='1,2,3,4,5,6' WHERE function_id=301 AND ACTION IN(32);
+UPDATE function_region_dict SET config_ip_port_show='2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=74;
+# ftp ip
+UPDATE function_service_dict SET region_code='1,2,3' WHERE function_id=51 AND ACTION IN(1,16);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=38;
+# pxy control
+UPDATE function_service_dict SET region_code='1,2,3,4,5,6' WHERE function_id=207 AND ACTION IN(16);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0',config_protocol='0' WHERE dict_id=84;
+#pxy redirect
+UPDATE function_service_dict SET region_code='1,2,3,4,5,6' WHERE function_id=208 AND ACTION IN(48);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0',config_protocol='0' WHERE dict_id=90;
+#pxy replace
+UPDATE function_service_dict SET region_code='1,2,3,4,5,6' WHERE function_id=209 AND ACTION IN(80);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0',config_protocol='0' WHERE dict_id=96;
+#pxy monit
+UPDATE function_service_dict SET region_code='1,2,3,4,5,6' WHERE function_id=210 AND ACTION IN(1);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0',config_protocol='0' WHERE dict_id=105;
+#pxy whitelist
+UPDATE function_service_dict SET region_code='1,2,3' WHERE function_id=211 AND ACTION IN(128);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0',config_protocol='0' WHERE dict_id=101;
+#voip ip
+UPDATE function_service_dict SET region_code='1,2' WHERE function_id=24 AND ACTION IN(1,16);
+UPDATE function_region_dict SET config_ip_port_show='1,2' ,config_ip_type='4,6,46,64,10',config_ip_pattern='1,2,3',config_port_pattern='1,2',config_direction='0,1',config_protocol='0,6,17' WHERE dict_id=8;
+
+
+
+
+

src/main/resources/sql/字典修改记录.txt

@@ -2,4 +2,11 @@
 \u4FEE\u6539\u5B57\u5178LOG_STREAM_TYPE\uFF0C\u5C06\u6807\u8BC60\u30011\u30012\u6539\u4E3A1\u30012\u30013
 
 2018-08-03
-\u589E\u52A0\u5B57\u5178ATTACK_TYPE\uFF0C\u4F9D\u636E\u534F\u8BAE\u7EDF\u8BA1\u5DF2\u6709\u7C7B\u578B \uFF1AUDP-Flood: 1069 \uFF0CSYN-Flood: 1070
+\u589E\u52A0\u5B57\u5178ATTACK_TYPE\uFF0C\u4F9D\u636E\u534F\u8BAE\u7EDF\u8BA1\u5DF2\u6709\u7C7B\u578B \uFF1AUDP-Flood: 1069 \uFF0CSYN-Flood: 1070
+
+2018-08-20\uFF08do_log:0\u4E0D\u9700\u89811\u8BB0\u5F55\u6240\u6709\u65E5\u5FD72\u53EA\u8BB0\u5F55\u7ED3\u6784\u5316\u65E5\u5FD7\u3002\u9ED8\u8BA4\u662F2\uFF09
+\u65B0\u589E\u662F\u5426\u8BB0\u5F55\u65E5\u5FD7 DO_LOG	
+\u6807\u8BC6	\u503C	describe	\u662F\u5426\u53EF\u7528	\u662F\u5426\u53EF\u7EF4\u62A4
+0	no_log	\u4E0D\u8BB0\u5F55\u65E5\u5FD7	\u662F	\u662F
+1	all_log	\u8BB0\u5F55\u6240\u6709\u65E5\u5FD7	\u662F	\u662F
+2	framework_log	\u53EA\u8BB0\u5F55\u7ED3\u6784\u5316\u65E5\u5FD7