kaffa 1bcaddce25 Unify xdp-blocker and xdp-ddos into single xdp-defense project ...

Chain two XDP programs via libxdp dispatcher on the same interface:
xdp_blocker (priority 10) handles CIDR/country/whitelist blocking,
xdp_ddos (priority 20) handles rate limiting, EWMA analysis, and AI
anomaly detection. Whitelist maps are shared via BPF map pinning so
whitelisted IPs bypass both blocklist checks and DDoS rate limiting.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-07 08:39:21 +09:00

bin

Unify xdp-blocker and xdp-ddos into single xdp-defense project

2026-02-07 08:39:21 +09:00

bpf

Unify xdp-blocker and xdp-ddos into single xdp-defense project

2026-02-07 08:39:21 +09:00

config

Unify xdp-blocker and xdp-ddos into single xdp-defense project

2026-02-07 08:39:21 +09:00

lib

Unify xdp-blocker and xdp-ddos into single xdp-defense project

2026-02-07 08:39:21 +09:00

.gitignore

Unify xdp-blocker and xdp-ddos into single xdp-defense project

2026-02-07 08:39:21 +09:00

Makefile

Unify xdp-blocker and xdp-ddos into single xdp-defense project

2026-02-07 08:39:21 +09:00

Description

XDP-based network defense: CIDR blocker + DDoS detection with time-aware AI

88 KiB

Languages

Python 49.6%

Shell 31.2%

C 16.8%

Makefile 2.4%