DPI Libary

You can find the current running firmware version of your system like this:
Login to any DPI server via SSH and use the command `fdpi_cli version`

• General:
  • Protocol bigotv is extended by new traffic detector which covers new version of UDP streams of Bigo Platform.
  • New protocol added: bigo_cdn.

• General:
  • Added protocols ZALO_CALL(49320) and VK_CALL(49321)
  • Added support for substitution/blocking/dropping of DNS requests A, AAAA, MX, HTTPS

• General:
  • Added FakeTLS protocol (49319) with validation
  • Changed sliding window algorithm for rate limit
  • Added support for 'any' instead of '*' when describing VLAN range
  • Removed support for DHCP-Dual (moved to next release)
  • Messages about insufficient SSL parsers are written to the slave log not for every event, but at a frequency of 1/50000.

• General:
  • Improved detection of WECHAT and WECHAT_CALL
  • Refactored PCRF connectivity: in the new implementation, all connections are equal; an error on any triggers reconnection of all connections and a switch to another PCRF. Added
• IPFIX:
  • Added the ability to send DNS MX responses via IPFIX. Enabled by setting bit 3 (4) of the ajb_save_dns parameter

• General:
  • Resolved over-detection of Telegram TLS.
  • Updated built-in signatures for wechat and wechat_call.

• General:
  • Added DOQ 49318 (DNS-over-QUIC).
  • White subscriber addresses for 1:1 NAT are now announced individually and after authentication.
  • Service 19 “DNS Spoofing” supported; profile required.
• DPDK:
  • New dpdk_engine = 6 (mqrx-bridge) — RSS dispatchers per bridge.
  • Total dispatchers = dpdk_rss × number_of_bridges.
  • NIC setup: RX queues = dpdk_rss, TX queues = num_threads.
  • Designed for multi-bridge (>100 G) configurations as a cluster replacement
  • On-stick devices supported.
  • Dedicated mempools removed; fastdpi.conf option dpdk_emit_mempool_size is now deprecated.

• General:
  • Introduced cloud-protocol range 55296…58367
  • User defined protocols increased up to 4096.
• IPFIX:
  • Fixed re-initialization issues for IPFIX exporters.
• CLI:
  • New mempool commands: hal mempool props and hal mempool stat.

• General:
  • Added validation for masking protocols and fake SNI protection.
  • Maximum number of dispatchers increased to 32.
• IPFIX:
  • IPFIX/Netflow parameters can now be changed without restarting DPI
  • New config key ipfix_reserved reserves the memory required for on-the-fly enabling/modification
  • When IPFIX/Netflow options are present in the config file, memory is pre-reserved automatically and exporters can be adjusted without a restart.

• Migrated to DPDK 24.11
• added support for new NICs (Intel E830 200 G, Intel E630, Napatech SmartNIC)

• New protocols added:
  • AGORA_STREAMS (49314) - used in applications: Kik, Skout, MeetMe
  • AZAR_CALL (49315)
  • WECHAT_CALL (49316)
  • TEAMS_CALL (49317)
• Improved protocol recognition for:
  • LINE_CALL
  • VYKE_CALL