added new viber pcap and updated results

author: Campus <campus@ntop.org> 2018-05-29 20:37:02 +0200
committer: Campus <campus@ntop.org> 2018-05-29 20:37:02 +0200
commit: 3407db11cdcb356c325c827069f5acb51598bef3 (patch)
tree: bde5da5300717ec79828d2efc7df84afec1e077a /tests
parent: 326a2fb7ed8afba6aa42dda65c4c135d0cbae2ff (diff)
13 files changed, 96 insertions, 208 deletions
diff --git a/tests/pcap/Viber_session.pcap b/tests/pcap/Viber_session.pcap
deleted file mode 100644
index f4bafa8e3..000000000
--- a/tests/pcap/Viber_session.pcap
+++ /dev/null
diff --git a/tests/pcap/viber.pcap b/tests/pcap/viber.pcap
new file mode 100644
index 000000000..42ba0a345
--- /dev/null
+++ b/tests/pcap/viber.pcap
diff --git a/tests/pcap/viber_mobile.pcap b/tests/pcap/viber_mobile.pcap
deleted file mode 100644
index d014e574d..000000000
--- a/tests/pcap/viber_mobile.pcap
+++ /dev/null
diff --git a/tests/result/1kxun.pcap.out b/tests/result/1kxun.pcap.out
index 2ad87e21f..efbc2dba9 100644
--- a/tests/result/1kxun.pcap.out
+++ b/tests/result/1kxun.pcap.out
@@ -33,11 +33,11 @@ LLMNR	89	6799	47
 	15	TCP 192.168.115.8:49608 <-> 203.205.151.234:80 [proto: 7.48/HTTP.QQ][cat: Chat][18 pkts/3550 bytes <-> 7 pkts/1400 bytes][Host: vv.video.qq.com]
 	16	UDP 192.168.119.1:67 -> 255.255.255.255:68 [proto: 18/DHCP][cat: Network][14 pkts/4788 bytes -> 0 pkts/0 bytes]
 	17	TCP 192.168.5.16:53580 <-> 31.13.87.36:443 [proto: 91.119/SSL.Facebook][4 pkts/2050 bytes <-> 5 pkts/2297 bytes]
-	18	TCP 192.168.5.16:53623 <-> 192.168.115.75:443 [proto: 91/SSL][cat: Web][11 pkts/1959 bytes <-> 8 pkts/1683 bytes][client: 1]
-	19	TCP 192.168.5.16:53625 <-> 192.168.115.75:443 [proto: 91/SSL][cat: Web][11 pkts/1955 bytes <-> 8 pkts/1683 bytes][client: 1]
-	20	TCP 192.168.5.16:53629 <-> 192.168.115.75:443 [proto: 91/SSL][cat: Web][10 pkts/1895 bytes <-> 7 pkts/1623 bytes][client: 1]
+	18	TCP 192.168.5.16:53623 <-> 192.168.115.75:443 [proto: 91/SSL][cat: Web][11 pkts/1959 bytes <-> 8 pkts/1683 bytes][client: 1]
+	19	TCP 192.168.5.16:53625 <-> 192.168.115.75:443 [proto: 91/SSL][cat: Web][11 pkts/1955 bytes <-> 8 pkts/1683 bytes][client: 1]
+	20	TCP 192.168.5.16:53629 <-> 192.168.115.75:443 [proto: 91/SSL][cat: Web][10 pkts/1895 bytes <-> 7 pkts/1623 bytes][client: 1]
 	21	TCP 192.168.115.8:49605 <-> 106.185.35.110:80 [proto: 7.205/HTTP.1kxun][cat: Streaming][8 pkts/1128 bytes <-> 5 pkts/2282 bytes][Host: jp.kankan.1kxun.mobi]
-	22	TCP 192.168.5.16:53626 <-> 192.168.115.75:443 [proto: 91/SSL][cat: Web][11 pkts/1943 bytes <-> 8 pkts/1267 bytes][client: 1]
+	22	TCP 192.168.5.16:53626 <-> 192.168.115.75:443 [proto: 91/SSL][cat: Web][11 pkts/1943 bytes <-> 8 pkts/1267 bytes][client: 1]
 	23	TCP 192.168.115.8:49597 <-> 106.185.35.110:80 [proto: 7.205/HTTP.1kxun][cat: Streaming][10 pkts/1394 bytes <-> 4 pkts/1464 bytes][Host: jp.kankan.1kxun.mobi]
 	24	TCP 31.13.87.1:443 <-> 192.168.5.16:53578 [proto: 91.119/SSL.Facebook][5 pkts/1006 bytes <-> 5 pkts/1487 bytes]
 	25	UDP 192.168.5.57:55809 -> 239.255.255.250:1900 [proto: 12/SSDP][cat: System][14 pkts/2450 bytes -> 0 pkts/0 bytes]
diff --git a/tests/result/Viber_session.pcap.out b/tests/result/Viber_session.pcap.out
deleted file mode 100644
index c95e37711..000000000
--- a/tests/result/Viber_session.pcap.out
+++ /dev/null
@@ -1,54 +0,0 @@
-Unknown	163	9995	7
-HTTP	13	796	7
-SSL_No_Cert	34	4141	1
-ICMP	2	196	1
-SSL	75	7291	7
-Facebook	29	3944	2
-Dropbox	1	97	1
-GMail	21	1891	1
-Google	50	4084	5
-WhatsApp	5	412	1
-Viber	4163	392492	4
-Amazon	1	66	1
-
-	1	UDP 192.168.200.222:48564 <-> 54.169.63.186:7985 [proto: 144/Viber][2835 pkts/280455 bytes <-> 1308 pkts/110326 bytes]
-	2	TCP 192.168.200.222:43287 <-> 52.0.253.46:443 [proto: 64/SSL_No_Cert][cat: Web][21 pkts/2257 bytes <-> 13 pkts/1884 bytes]
-	3	TCP 192.168.200.222:38039 <-> 31.13.79.246:443 [proto: 91.119/SSL.Facebook][14 pkts/1058 bytes <-> 9 pkts/2287 bytes]
-	4	TCP 192.168.200.222:40005 <-> 108.168.176.234:443 [proto: 91/SSL][12 pkts/1116 bytes <-> 12 pkts/1732 bytes]
-	5	TCP 192.168.200.222:51055 <-> 74.125.68.156:443 [proto: 91.126/SSL.Google][15 pkts/1329 bytes <-> 9 pkts/750 bytes]
-	6	TCP 192.168.200.222:42040 <-> 74.125.200.18:443 [proto: 91.122/SSL.GMail][cat: Email][15 pkts/1318 bytes <-> 6 pkts/573 bytes][client: mail.google.com]
-	7	TCP 192.168.200.222:51146 <-> 23.21.254.189:443 [proto: 91/SSL][cat: Web][11 pkts/1043 bytes <-> 4 pkts/441 bytes][client: e/crashlytics.com]
-	8	TCP 192.168.200.222:52269 <-> 107.22.192.179:443 [proto: 91/SSL][cat: Web][12 pkts/1116 bytes <-> 4 pkts/303 bytes][client: sfttings.crashlytics.com]
-	9	TCP 192.168.200.222:43454 <-> 52.0.253.46:4244 [proto: 144/Viber][7 pkts/689 bytes <-> 5 pkts/472 bytes]
-	10	TCP 192.168.200.222:57999 <-> 74.125.130.188:5228 [proto: 126/Google][5 pkts/389 bytes <-> 5 pkts/368 bytes]
-	11	TCP 192.168.200.222:59011 <-> 74.125.130.188:5228 [proto: 126/Google][5 pkts/428 bytes <-> 4 pkts/264 bytes]
-	12	TCP 192.168.200.222:52491 <-> 31.13.79.245:443 [proto: 91.119/SSL.Facebook][3 pkts/250 bytes <-> 3 pkts/349 bytes]
-	13	TCP 192.168.200.222:46761 <-> 112.124.219.93:80 [proto: 7/HTTP][4 pkts/254 bytes <-> 3 pkts/182 bytes]
-	14	TCP 74.125.68.239:443 <-> 192.168.200.222:37376 [proto: 91.126/SSL.Google][2 pkts/195 bytes <-> 3 pkts/229 bytes]
-	15	TCP 192.168.200.222:39339 <-> 54.169.63.186:443 [proto: 91.144/SSL.Viber][4 pkts/272 bytes <-> 2 pkts/140 bytes]
-	16	TCP 192.168.200.222:44058 <-> 158.85.58.23:443 [proto: 91.142/SSL.WhatsApp][2 pkts/157 bytes <-> 3 pkts/255 bytes]
-	17	TCP 222.165.163.91:443 <-> 192.168.200.222:56243 [proto: 91/SSL][3 pkts/253 bytes <-> 2 pkts/132 bytes]
-	18	TCP 222.165.163.93:443 <-> 192.168.200.222:52635 [proto: 91/SSL][3 pkts/253 bytes <-> 2 pkts/132 bytes]
-	19	TCP 222.165.163.93:443 <-> 192.168.200.222:52641 [proto: 91/SSL][3 pkts/253 bytes <-> 2 pkts/132 bytes]
-	20	TCP 222.165.163.117:443 <-> 192.168.200.222:47424 [proto: 91/SSL][3 pkts/253 bytes <-> 2 pkts/132 bytes]
-	21	ICMP 192.168.200.222:0 -> 192.168.1.1:0 [proto: 81/ICMP][cat: Network][2 pkts/196 bytes -> 0 pkts/0 bytes]
-	22	UDP 192.168.200.222:48564 <-> 54.169.63.186:7987 [proto: 144/Viber][1 pkts/76 bytes <-> 1 pkts/62 bytes]
-	23	TCP 216.58.199.206:443 <-> 192.168.200.222:58663 [proto: 91.126/SSL.Google][1 pkts/66 bytes <-> 1 pkts/66 bytes]
-	24	TCP 192.168.200.222:51765 -> 108.160.172.205:443 [proto: 91.121/SSL.Dropbox][1 pkts/97 bytes -> 0 pkts/0 bytes]
-	25	TCP 192.168.200.222:38778 -> 54.251.141.219:80 [proto: 7.178/HTTP.Amazon][1 pkts/66 bytes -> 0 pkts/0 bytes]
-	26	TCP 192.168.200.222:33161 -> 93.184.221.200:80 [proto: 7/HTTP][1 pkts/60 bytes -> 0 pkts/0 bytes]
-	27	TCP 192.168.200.222:36675 -> 112.124.219.82:80 [proto: 7/HTTP][1 pkts/60 bytes -> 0 pkts/0 bytes]
-	28	TCP 192.168.200.222:43646 -> 93.184.221.200:80 [proto: 7/HTTP][1 pkts/60 bytes -> 0 pkts/0 bytes]
-	29	TCP 192.168.200.222:50854 -> 93.184.221.200:80 [proto: 7/HTTP][1 pkts/60 bytes -> 0 pkts/0 bytes]
-	30	TCP 192.168.200.222:52977 -> 93.184.221.200:80 [proto: 7/HTTP][1 pkts/60 bytes -> 0 pkts/0 bytes]
-	31	TCP 192.168.200.222:60828 -> 93.184.221.200:80 [proto: 7/HTTP][1 pkts/60 bytes -> 0 pkts/0 bytes]
-
-
-Undetected flows:
-	1	UDP 192.168.200.222:48564 -> 10.216.246.82:59027 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	2	UDP 192.168.200.222:48564 -> 175.157.52.135:37299 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	3	UDP 192.168.200.222:48564 -> 175.157.52.135:37300 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	4	UDP 192.168.200.222:48564 -> 175.157.52.135:37301 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	5	UDP 192.168.200.222:48564 -> 175.157.52.135:37302 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	6	TCP 192.168.200.222:55565 <-> 113.31.80.142:7003 [proto: 0/Unknown][4 pkts/341 bytes <-> 3 pkts/208 bytes]
-	7	TCP 192.168.200.222:55554 <-> 113.31.80.142:7003 [proto: 0/Unknown][4 pkts/276 bytes <-> 2 pkts/170 bytes]
diff --git a/tests/result/bittorrent_ip.pcap.out b/tests/result/bittorrent_ip.pcap.out
index 5723c2fc1..5a08d2dee 100644
--- a/tests/result/bittorrent_ip.pcap.out
+++ b/tests/result/bittorrent_ip.pcap.out
@@ -1,4 +1,4 @@
 BitTorrent	479	508018	2
 
-	1	TCP 77.222.174.20:2866 <-> 10.0.0.14:46610 [proto: 37/BitTorrent][305 pkts/461770 bytes <-> 126 pkts/8316 bytes][BT Hash: 0008000000000000000000000000000000000000]
-	2	TCP 185.56.20.36:53646 <-> 10.0.0.14:35030 [proto: 37/BitTorrent][25 pkts/36414 bytes <-> 23 pkts/1518 bytes][BT Hash: 0006000000000000000000000000000000000000]
+	1	TCP 77.222.174.20:2866 <-> 10.0.0.14:46610 [proto: 37/BitTorrent][305 pkts/461770 bytes <-> 126 pkts/8316 bytes]
+	2	TCP 185.56.20.36:53646 <-> 10.0.0.14:35030 [proto: 37/BitTorrent][25 pkts/36414 bytes <-> 23 pkts/1518 bytes]
diff --git a/tests/result/bittorrent_utp.pcap.out b/tests/result/bittorrent_utp.pcap.out
index 418e6a994..7ac4aab03 100644
--- a/tests/result/bittorrent_utp.pcap.out
+++ b/tests/result/bittorrent_utp.pcap.out
@@ -1,3 +1,3 @@
 BitTorrent	86	41489	1
 
-	1	UDP 82.243.113.43:64969 <-> 192.168.1.5:40959 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][47 pkts/36653 bytes <-> 39 pkts/4836 bytes][BT Hash: 0001000000000000000000000000000000000000]
+	1	UDP 82.243.113.43:64969 <-> 192.168.1.5:40959 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][47 pkts/36653 bytes <-> 39 pkts/4836 bytes]
diff --git a/tests/result/ocs.pcap.out b/tests/result/ocs.pcap.out
index 35af8b7d8..c9e692b90 100644
--- a/tests/result/ocs.pcap.out
+++ b/tests/result/ocs.pcap.out
@@ -10,7 +10,7 @@ GoogleServices	13	2277	2
 	1	TCP 192.168.180.2:49881 -> 178.248.208.54:80 [proto: 7.218/HTTP.OCS][cat: Media][751 pkts/44783 bytes -> 0 pkts/0 bytes][Host: ocu03.labgency.ws]
 	2	TCP 192.168.180.2:36680 -> 178.248.208.54:443 [proto: 91.218/SSL.OCS][cat: Media][20 pkts/6089 bytes -> 0 pkts/0 bytes][client: ocs.labgency.ws]
 	3	TCP 192.168.180.2:42590 -> 178.248.208.210:80 [proto: 7.218/HTTP.OCS][cat: Media][83 pkts/5408 bytes -> 0 pkts/0 bytes][Host: www.ocs.fr]
-	4	TCP 192.168.180.2:39263 -> 23.21.230.199:443 [proto: 91/SSL][20 pkts/2715 bytes -> 0 pkts/0 bytes][client: sfttings.crashlytics.com]
+	4	TCP 192.168.180.2:39263 -> 23.21.230.199:443 [proto: 91/SSL][20 pkts/2715 bytes -> 0 pkts/0 bytes][client: settings.crashlytics.com]
 	5	TCP 192.168.180.2:32946 -> 64.233.184.188:443 [proto: 91.239/SSL.GoogleServices][cat: Web][12 pkts/2212 bytes -> 0 pkts/0 bytes][client: mtalk.google.com]
 	6	TCP 192.168.180.2:47803 -> 64.233.166.95:443 [proto: 91.126/SSL.Google][12 pkts/1608 bytes -> 0 pkts/0 bytes]
 	7	TCP 192.168.180.2:41223 -> 216.58.208.46:443 [proto: 91.126/SSL.Google][13 pkts/1448 bytes -> 0 pkts/0 bytes]
diff --git a/tests/result/viber.pcap.out b/tests/result/viber.pcap.out
new file mode 100644
index 000000000..99b02a029
--- /dev/null
+++ b/tests/result/viber.pcap.out
@@ -0,0 +1,36 @@
+DNS	8	1267	4
+MDNS	4	412	1
+ICMP	2	3028	1
+SSL	129	42221	7
+ICMPV6	2	140	1
+Facebook	2	281	1
+Google	2	164	1
+Viber	268	99524	9
+QUIC	3	194	1
+
+	1	TCP 192.168.0.17:53934 <-> 54.230.93.53:443 [proto: 91.144/SSL.Viber][cat: Chat][43 pkts/4571 bytes <-> 46 pkts/60087 bytes][client: dl-media.viber.com][server: *.viber.com]
+	2	TCP 192.168.0.17:57520 <-> 54.230.93.96:443 [proto: 91.144/SSL.Viber][cat: Chat][12 pkts/1848 bytes <-> 12 pkts/9317 bytes][client: media.cdn.viber.com][server: *.cdn.viber.com]
+	3	TCP 192.168.0.17:49048 <-> 54.187.91.182:443 [proto: 91/SSL][cat: Web][13 pkts/2823 bytes <-> 14 pkts/6552 bytes][client: brahe.apptimize.com][server: *.apptimize.com]
+	4	TCP 192.168.0.17:33208 <-> 52.0.253.101:4244 [proto: 144/Viber][32 pkts/6563 bytes <-> 26 pkts/2782 bytes]
+	5	TCP 192.168.0.17:43702 <-> 172.217.23.78:443 [proto: 91/SSL][cat: Web][15 pkts/5339 bytes <-> 12 pkts/3436 bytes][client: app-measurement.com]
+	6	TCP 192.168.0.17:36986 <-> 54.69.166.226:443 [proto: 91/SSL][cat: Web][11 pkts/1437 bytes <-> 11 pkts/6412 bytes][client: mapi.apptimize.com][server: *.apptimize.com]
+	7	TCP 192.168.0.17:55746 <-> 151.101.1.130:443 [proto: 91/SSL][cat: Web][10 pkts/1534 bytes <-> 9 pkts/6239 bytes][client: venetia.iad.appboy.com][server: y.ssl.fastly.net]
+	8	TCP 192.168.0.17:36988 <-> 54.69.166.226:443 [proto: 91/SSL][cat: Web][11 pkts/1462 bytes <-> 11 pkts/6163 bytes][client: mapi.apptimize.com][server: *.apptimize.com]
+	9	UDP 192.168.0.17:47171 <-> 18.201.4.32:7985 [proto: 144/Viber][24 pkts/5035 bytes <-> 22 pkts/2302 bytes]
+	10	UDP 192.168.0.17:38190 <-> 18.201.4.3:7985 [proto: 144/Viber][25 pkts/4344 bytes <-> 18 pkts/1872 bytes]
+	11	ICMP 192.168.0.17:0 <-> 192.168.0.15:0 [proto: 81/ICMP][cat: Network][1 pkts/1514 bytes <-> 1 pkts/1514 bytes]
+	12	UDP 192.168.0.17:62872 <-> 192.168.0.15:53 [proto: 5/DNS][cat: Network][1 pkts/78 bytes <-> 1 pkts/373 bytes][Host: mapi.apptimize.com]
+	13	TCP 192.168.0.17:33744 <-> 18.201.4.3:443 [proto: 91/SSL][4 pkts/272 bytes <-> 2 pkts/140 bytes]
+	14	TCP 192.168.0.17:45424 <-> 18.201.4.32:443 [proto: 91/SSL][4 pkts/272 bytes <-> 2 pkts/140 bytes]
+	15	UDP 192.168.0.17:5353 -> 224.0.0.251:5353 [proto: 8/MDNS][cat: Network][4 pkts/412 bytes -> 0 pkts/0 bytes]
+	16	UDP 192.168.0.17:35283 <-> 192.168.0.15:53 [proto: 5/DNS][cat: Network][1 pkts/74 bytes <-> 1 pkts/303 bytes][Host: app.adjust.com]
+	17	UDP 192.168.0.17:45743 <-> 192.168.0.15:53 [proto: 5.119/DNS.Facebook][cat: SocialNetwork][1 pkts/78 bytes <-> 1 pkts/203 bytes][Host: graph.facebook.com]
+	18	UDP 192.168.0.17:44376 <-> 192.168.0.15:53 [proto: 5/DNS][cat: Network][1 pkts/82 bytes <-> 1 pkts/183 bytes][Host: venetia.iad.appboy.com]
+	19	UDP 192.168.0.17:37418 <-> 192.168.0.15:53 [proto: 5.144/DNS.Viber][cat: Chat][1 pkts/79 bytes <-> 1 pkts/185 bytes][Host: media.cdn.viber.com]
+	20	UDP 192.168.0.17:40445 <-> 192.168.0.15:53 [proto: 5.144/DNS.Viber][cat: Chat][1 pkts/78 bytes <-> 1 pkts/185 bytes][Host: dl-media.viber.com]
+	21	UDP 192.168.0.17:41993 <-> 172.217.23.106:443 [proto: 188/QUIC][cat: Web][2 pkts/130 bytes <-> 1 pkts/64 bytes]
+	22	UDP 192.168.0.17:35331 <-> 192.168.0.15:53 [proto: 5/DNS][cat: Network][1 pkts/79 bytes <-> 1 pkts/95 bytes][Host: app-measurement.com]
+	23	UDP 192.168.0.17:50097 <-> 192.168.0.15:53 [proto: 5.126/DNS.Google][cat: Web][1 pkts/74 bytes <-> 1 pkts/90 bytes][Host: www.google.com]
+	24	ICMPV6 [fe80::3207:4dff:fea3:5fa7]:0 -> [ff02::2]:0 [proto: 102/ICMPV6][cat: Network][2 pkts/140 bytes -> 0 pkts/0 bytes]
+	25	UDP 192.168.0.17:38190 <-> 18.201.4.3:7987 [proto: 144/Viber][1 pkts/76 bytes <-> 1 pkts/62 bytes]
+	26	UDP 192.168.0.17:47171 <-> 18.201.4.32:7987 [proto: 144/Viber][1 pkts/76 bytes <-> 1 pkts/62 bytes]
diff --git a/tests/result/viber_mobile.pcap.out b/tests/result/viber_mobile.pcap.out
deleted file mode 100644
index 5fb3cabad..000000000
--- a/tests/result/viber_mobile.pcap.out
+++ /dev/null
@@ -1,98 +0,0 @@
-Unknown	163	9995	7
-DNS	16	1943	7
-HTTP	43	4771	7
-BitTorrent	57	13074	27
-SSL_No_Cert	36	5874	1
-ICMP	4	518	3
-SSL	72	21126	6
-Facebook	50	17455	3
-Dropbox	2	163	1
-GMail	35	14773	2
-Google	58	14372	5
-WhatsApp	38	6756	3
-Viber	10081	1413446	4
-Amazon	8	528	1
-GoogleServices	17	2655	2
-
-	1	UDP 192.168.200.222:48564 <-> 54.169.63.186:7985 [proto: 144/Viber][4192 pkts/515224 bytes <-> 5865 pkts/895629 bytes]
-	2	TCP 192.168.200.222:38039 <-> 31.13.79.246:443 [proto: 91.119/SSL.Facebook][cat: SocialNetwork][19 pkts/3115 bytes <-> 18 pkts/13053 bytes][client: graph.facebook.com][server: *.facebook.com]
-	3	TCP 192.168.200.222:42040 <-> 74.125.200.18:443 [proto: 91.122/SSL.GMail][cat: Email][17 pkts/3286 bytes <-> 16 pkts/11246 bytes][client: mail.google.com][server: mail.google.com]
-	4	TCP 192.168.200.222:52269 <-> 107.22.192.179:443 [proto: 91/SSL][cat: Web][15 pkts/2237 bytes <-> 11 pkts/7820 bytes][client: sfttings.crashlytics.com][server: *.crashlytics.com]
-	5	TCP 192.168.200.222:51146 <-> 23.21.254.189:443 [proto: 91/SSL][cat: Web][12 pkts/2322 bytes <-> 10 pkts/6919 bytes][client: e/crashlytics.com][server: *.crashlytics.com]
-	6	TCP 192.168.200.222:51055 <-> 74.125.68.156:443 [proto: 91.126/SSL.Google][cat: Web][17 pkts/2087 bytes <-> 14 pkts/5520 bytes][client: googleads.g.doubleclick.net][server: *.g.doubleclick.net]
-	7	TCP 192.168.200.222:40005 <-> 108.168.176.234:443 [proto: 142/WhatsApp][cat: Chat][13 pkts/1401 bytes <-> 16 pkts/4545 bytes]
-	8	TCP 192.168.200.222:43287 <-> 52.0.253.46:443 [proto: 64/SSL_No_Cert][cat: Web][22 pkts/3437 bytes <-> 14 pkts/2437 bytes]
-	9	TCP 192.168.200.222:59011 <-> 74.125.130.188:5228 [proto: 126/Google][8 pkts/3893 bytes <-> 8 pkts/1945 bytes]
-	10	TCP 192.168.200.222:57999 <-> 74.125.130.188:5228 [proto: 91.239/SSL.GoogleServices][cat: Web][7 pkts/1505 bytes <-> 8 pkts/953 bytes][client: mtalk.google.com]
-	11	TCP 192.168.200.222:36675 -> 112.124.219.82:80 [proto: 7/HTTP][9 pkts/2188 bytes -> 0 pkts/0 bytes][Host: androiddailyyogacn.oss-cn-hangzhou.aliyuncs.com]
-	12	TCP 52.0.253.46:4244 <-> 192.168.200.222:43454 [proto: 144/Viber][8 pkts/1187 bytes <-> 8 pkts/856 bytes]
-	13	UDP 192.168.200.222:39413 <-> 24.43.1.206:17193 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][4 pkts/996 bytes <-> 4 pkts/996 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	14	TCP 192.168.200.222:46761 <-> 112.124.219.93:80 [proto: 7/HTTP][cat: Web][5 pkts/520 bytes <-> 4 pkts/563 bytes][Host: androiddailyyogacn.oss-cn-hangzhou.aliyuncs.com]
-	15	TCP 192.168.200.222:52491 <-> 31.13.79.245:443 [proto: 91.119/SSL.Facebook][4 pkts/328 bytes <-> 7 pkts/745 bytes]
-	16	UDP 192.168.200.222:39413 <-> 24.43.1.206:40959 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][2 pkts/498 bytes <-> 2 pkts/498 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	17	TCP 74.125.68.239:443 <-> 192.168.200.222:37376 [proto: 91.126/SSL.Google][4 pkts/303 bytes <-> 3 pkts/229 bytes]
-	18	TCP 192.168.200.222:44058 <-> 158.85.58.23:443 [proto: 91.142/SSL.WhatsApp][4 pkts/277 bytes <-> 3 pkts/255 bytes]
-	19	TCP 222.165.163.91:443 <-> 192.168.200.222:56243 [proto: 91/SSL][4 pkts/319 bytes <-> 3 pkts/210 bytes]
-	20	TCP 222.165.163.93:443 <-> 192.168.200.222:52635 [proto: 91/SSL][4 pkts/319 bytes <-> 3 pkts/210 bytes]
-	21	TCP 192.168.200.222:38778 -> 54.251.141.219:80 [proto: 7.178/HTTP.Amazon][8 pkts/528 bytes -> 0 pkts/0 bytes]
-	22	UDP 192.168.200.222:39413 <-> 2.85.108.0:21241 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	23	UDP 192.168.200.222:39413 <-> 46.181.170.37:36237 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	24	UDP 192.168.200.222:39413 <-> 60.71.113.134:37764 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	25	UDP 192.168.200.222:39413 <-> 80.47.129.1:44420 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	26	UDP 192.168.200.222:39413 <-> 80.234.25.211:12624 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	27	UDP 192.168.200.222:39413 <-> 84.202.23.122:22737 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	28	UDP 192.168.200.222:39413 <-> 92.245.59.202:12998 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	29	UDP 192.168.200.222:39413 <-> 92.249.148.218:53810 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	30	UDP 192.168.200.222:39413 <-> 94.6.33.9:46735 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	31	UDP 192.168.200.222:39413 <-> 120.57.18.255:10201 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	32	UDP 192.168.200.222:39413 <-> 186.220.157.231:45235 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/359 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	33	UDP 192.168.200.222:39413 <-> 23.113.222.89:49548 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/357 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	34	UDP 192.168.200.222:39413 <-> 93.100.186.199:6881 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/352 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	35	UDP 192.168.200.222:39413 <-> 178.57.5.53:64731 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/352 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	36	UDP 192.168.200.222:39413 <-> 188.165.225.138:6881 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/334 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	37	UDP 192.168.200.222:39413 <-> 134.249.176.227:7108 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/329 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	38	UDP 192.168.200.222:39413 <-> 1.163.234.205:58738 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes <-> 1 pkts/325 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	39	UDP 192.168.200.222:39413 -> 70.112.231.62:51413 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][3 pkts/438 bytes -> 0 pkts/0 bytes]
-	40	TCP 192.168.200.222:39339 <-> 54.169.63.186:443 [proto: 91.144/SSL.Viber][4 pkts/272 bytes <-> 2 pkts/140 bytes]
-	41	TCP 222.165.163.93:443 <-> 192.168.200.222:52641 [proto: 91/SSL][3 pkts/253 bytes <-> 2 pkts/132 bytes]
-	42	TCP 222.165.163.117:443 <-> 192.168.200.222:47424 [proto: 91/SSL][3 pkts/253 bytes <-> 2 pkts/132 bytes]
-	43	UDP 192.168.200.222:16965 <-> 8.8.8.8:53 [proto: 5/DNS][cat: Network][1 pkts/84 bytes <-> 1 pkts/282 bytes][Host: settings.crashlytics.com]
-	44	UDP 192.168.200.222:58434 <-> 8.8.8.8:53 [proto: 5/DNS][cat: Network][1 pkts/77 bytes <-> 1 pkts/272 bytes][Host: e.crashlytics.com]
-	45	UDP 192.168.200.222:58921 <-> 8.8.8.8:53 [proto: 5/DNS][cat: Network][2 pkts/144 bytes <-> 2 pkts/192 bytes][Host: sis.jpush.io]
-	46	TCP 192.168.200.222:33161 -> 93.184.221.200:80 [proto: 7/HTTP][5 pkts/300 bytes -> 0 pkts/0 bytes]
-	47	TCP 192.168.200.222:43646 -> 93.184.221.200:80 [proto: 7/HTTP][5 pkts/300 bytes -> 0 pkts/0 bytes]
-	48	TCP 192.168.200.222:50854 -> 93.184.221.200:80 [proto: 7/HTTP][5 pkts/300 bytes -> 0 pkts/0 bytes]
-	49	TCP 192.168.200.222:52977 -> 93.184.221.200:80 [proto: 7/HTTP][5 pkts/300 bytes -> 0 pkts/0 bytes]
-	50	TCP 192.168.200.222:60828 -> 93.184.221.200:80 [proto: 7/HTTP][5 pkts/300 bytes -> 0 pkts/0 bytes]
-	51	UDP 192.168.200.222:39413 -> 182.57.65.243:27736 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][2 pkts/292 bytes -> 0 pkts/0 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	52	UDP 192.168.200.222:52263 <-> 8.8.8.8:53 [proto: 5.142/DNS.WhatsApp][cat: Chat][1 pkts/75 bytes <-> 1 pkts/203 bytes][Host: e9.whatsapp.net]
-	53	UDP 192.168.200.222:43901 <-> 8.8.8.8:53 [proto: 5.126/DNS.Google][cat: Web][1 pkts/87 bytes <-> 1 pkts/176 bytes][Host: googleads.g.doubleclick.net]
-	54	UDP 192.168.200.222:22761 <-> 8.8.8.8:53 [proto: 5/DNS][cat: Network][1 pkts/107 bytes <-> 1 pkts/139 bytes][Host: androiddailyyogacn.oss-cn-hangzhou.aliyuncs.com]
-	55	UDP 192.168.200.222:15836 <-> 8.8.8.8:53 [proto: 5.122/DNS.GMail][cat: Email][1 pkts/75 bytes <-> 1 pkts/166 bytes][Host: mail.google.com]
-	56	UDP 192.168.200.222:55854 <-> 8.8.8.8:53 [proto: 5/DNS][cat: Network][1 pkts/70 bytes <-> 1 pkts/166 bytes][Host: s.jpush.cn]
-	57	UDP 192.168.200.222:60474 <-> 8.8.8.8:53 [proto: 5/DNS][cat: Network][1 pkts/77 bytes <-> 1 pkts/141 bytes][Host: easytomessage.com]
-	58	UDP 192.168.200.222:39695 <-> 8.8.8.8:53 [proto: 5.119/DNS.Facebook][cat: SocialNetwork][1 pkts/78 bytes <-> 1 pkts/136 bytes][Host: graph.facebook.com]
-	59	UDP 192.168.200.222:47874 <-> 8.8.8.8:53 [proto: 5.239/DNS.GoogleServices][cat: Web][1 pkts/76 bytes <-> 1 pkts/121 bytes][Host: mtalk.google.com]
-	60	ICMP 192.168.200.222:0 -> 192.168.1.1:0 [proto: 81/ICMP][cat: Network][2 pkts/196 bytes -> 0 pkts/0 bytes]
-	61	UDP 192.168.200.222:39149 <-> 8.8.8.8:53 [proto: 5/DNS][cat: Network][1 pkts/72 bytes <-> 1 pkts/120 bytes][Host: sis.jpush.io]
-	62	ICMP 37.214.167.82:0 -> 192.168.200.222:0 [proto: 81/ICMP][cat: Network][1 pkts/174 bytes -> 0 pkts/0 bytes]
-	63	TCP 192.168.200.222:51765 -> 108.160.172.205:443 [proto: 91.121/SSL.Dropbox][2 pkts/163 bytes -> 0 pkts/0 bytes]
-	64	ICMP 192.168.200.222:0 -> 8.8.8.8:0 [proto: 81/ICMP][cat: Network][1 pkts/148 bytes -> 0 pkts/0 bytes]
-	65	UDP 192.168.200.222:39413 -> 37.214.167.82:11905 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes -> 0 pkts/0 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	66	UDP 192.168.200.222:39413 -> 81.192.42.247:15057 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes -> 0 pkts/0 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	67	UDP 192.168.200.222:39413 -> 88.176.55.218:51413 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes -> 0 pkts/0 bytes]
-	68	UDP 192.168.200.222:39413 -> 90.19.187.56:40500 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes -> 0 pkts/0 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	69	UDP 192.168.200.222:39413 -> 122.146.250.88:9415 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes -> 0 pkts/0 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	70	UDP 192.168.200.222:39413 -> 178.157.199.144:22133 [proto: 37/BitTorrent][cat: Download-FileTransfer-FileSharing][1 pkts/146 bytes -> 0 pkts/0 bytes][BT Hash: 0001000000000000000000000000000000000000]
-	71	UDP 192.168.200.222:48564 <-> 54.169.63.186:7987 [proto: 144/Viber][1 pkts/76 bytes <-> 1 pkts/62 bytes]
-	72	TCP 216.58.199.206:443 <-> 192.168.200.222:58663 [proto: 91.126/SSL.Google][1 pkts/66 bytes <-> 1 pkts/66 bytes]
-
-
-Undetected flows:
-	1	UDP 192.168.200.222:48564 -> 10.216.246.82:59027 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	2	UDP 192.168.200.222:48564 -> 175.157.52.135:37299 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	3	UDP 192.168.200.222:48564 -> 175.157.52.135:37300 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	4	UDP 192.168.200.222:48564 -> 175.157.52.135:37301 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	5	UDP 192.168.200.222:48564 -> 175.157.52.135:37302 [proto: 0/Unknown][30 pkts/1800 bytes -> 0 pkts/0 bytes]
-	6	TCP 192.168.200.222:55565 <-> 113.31.80.142:7003 [proto: 0/Unknown][4 pkts/341 bytes <-> 3 pkts/208 bytes]
-	7	TCP 192.168.200.222:55554 <-> 113.31.80.142:7003 [proto: 0/Unknown][4 pkts/276 bytes <-> 2 pkts/170 bytes]
diff --git a/tests/result/webex.pcap.out b/tests/result/webex.pcap.out
index 14a3d4dd4..4360e223b 100644
--- a/tests/result/webex.pcap.out
+++ b/tests/result/webex.pcap.out
@@ -15,7 +15,7 @@ Amazon	3	174	1
 	7	TCP 10.8.0.1:51154 <-> 62.109.224.120:443 [proto: 91.141/SSL.Webex][cat: Collaborative][55 pkts/12583 bytes <-> 50 pkts/6703 bytes][server: *.webex.com]
 	8	UDP 10.8.0.1:64538 -> 172.16.1.75:5060 [proto: 100/SIP][cat: VoIP][22 pkts/15356 bytes -> 0 pkts/0 bytes]
 	9	TCP 10.8.0.1:51857 <-> 62.109.229.158:443 [proto: 91.141/SSL.Webex][cat: Collaborative][29 pkts/4559 bytes <-> 21 pkts/5801 bytes][server: *.webex.com]
-	10	TCP 10.8.0.1:46211 <-> 54.241.32.14:443 [proto: 91/SSL][cat: Web][16 pkts/1984 bytes <-> 14 pkts/7584 bytes][client: aqi.crittercism.com][server: *.crittercism.com]
+	10	TCP 10.8.0.1:46211 <-> 54.241.32.14:443 [proto: 91/SSL][cat: Web][16 pkts/1984 bytes <-> 14 pkts/7584 bytes][client: api.crittercism.com][server: *.crittercism.com]
 	11	TCP 10.8.0.1:41386 <-> 64.68.105.103:443 [proto: 91.141/SSL.Webex][cat: Collaborative][9 pkts/1417 bytes <-> 8 pkts/6984 bytes][server: *.webex.com]
 	12	TCP 10.8.0.1:41419 <-> 64.68.105.103:443 [proto: 91.141/SSL.Webex][cat: Collaborative][7 pkts/1309 bytes <-> 7 pkts/6930 bytes][server: *.webex.com]
 	13	TCP 10.8.0.1:52730 <-> 173.243.4.76:443 [proto: 91.141/SSL.Webex][cat: Collaborative][9 pkts/1369 bytes <-> 8 pkts/6621 bytes][server: *.webex.com]
diff --git a/tests/result/weibo.pcap.out b/tests/result/weibo.pcap.out
index 414699fb2..16a72e025 100644
--- a/tests/result/weibo.pcap.out
+++ b/tests/result/weibo.pcap.out
@@ -18,7 +18,7 @@ Sina(Weibo)	418	258007	15
 	10	TCP 192.168.1.105:59119 <-> 114.134.80.162:80 [proto: 7/HTTP][cat: Web][5 pkts/736 bytes <-> 4 pkts/863 bytes][Host: weibo.com]
 	11	TCP 192.168.1.105:35811 <-> 93.188.134.246:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork][3 pkts/604 bytes <-> 2 pkts/140 bytes][Host: js.t.sinajs.cn]
 	12	TCP 192.168.1.105:42275 <-> 222.73.28.96:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork][3 pkts/610 bytes <-> 1 pkts/66 bytes][Host: u1.img.mobile.sina.cn]
-	13	TCP 192.168.1.105:50827 <-> 47.89.65.229:443 [proto: 91/SSL][3 pkts/382 bytes <-> 1 pkts/66 bytes][client: g/alicdn.com]
+	13	TCP 192.168.1.105:50827 <-> 47.89.65.229:443 [proto: 91/SSL][3 pkts/382 bytes <-> 1 pkts/66 bytes][client: g.alicdn.com]
 	14	UDP 192.168.1.105:53543 <-> 192.168.1.1:53 [proto: 5.200/DNS.Sina(Weibo)][cat: SocialNetwork][1 pkts/75 bytes <-> 1 pkts/191 bytes][Host: img.t.sinajs.cn]
 	15	UDP 192.168.1.105:41352 <-> 192.168.1.1:53 [proto: 5.200/DNS.Sina(Weibo)][cat: SocialNetwork][1 pkts/74 bytes <-> 1 pkts/190 bytes][Host: js.t.sinajs.cn]
 	16	UDP 192.168.1.105:51440 <-> 192.168.1.1:53 [proto: 5/DNS][cat: Network][1 pkts/72 bytes <-> 1 pkts/171 bytes][Host: g.alicdn.com]
diff --git a/tests/result/whatsapp_login_call.pcap.out b/tests/result/whatsapp_login_call.pcap.out
index 16f307411..cb4d94650 100644
--- a/tests/result/whatsapp_login_call.pcap.out
+++ b/tests/result/whatsapp_login_call.pcap.out
@@ -1,9 +1,10 @@
+Unknown	27	2322	2
 HTTP	11	726	3
 MDNS	8	952	4
 DHCP	10	3420	1
 STUN	70	9464	14
 ICMP	10	700	1
-SSL	35	2911	4
+SSL	8	589	2
 Dropbox	4	2176	1
 Apple	105	22176	19
 WhatsApp	182	25154	2
@@ -24,48 +25,51 @@ ApplePush	22	5926	1
 	10	UDP 192.168.2.4:52794 <-> 31.13.84.48:3478 [proto: 189/WhatsAppVoice][cat: VoIP][9 pkts/1842 bytes <-> 11 pkts/1151 bytes]
 	11	UDP 192.168.2.1:17500 -> 192.168.2.255:17500 [proto: 121/Dropbox][cat: Cloud][4 pkts/2176 bytes -> 0 pkts/0 bytes]
 	12	TCP 192.168.2.4:49199 <-> 17.172.100.70:993 [proto: 51.140/IMAPS.Apple][9 pkts/1130 bytes <-> 8 pkts/868 bytes]
-	13	UDP 192.168.2.4:51518 -> 1.194.90.191:60312 [proto: 91/SSL][15 pkts/1290 bytes -> 0 pkts/0 bytes][client: 			]
-	14	UDP 192.168.2.4:52794 -> 1.194.90.191:51727 [proto: 91/SSL][12 pkts/1032 bytes -> 0 pkts/0 bytes][client: 			]
-	15	ICMP 192.168.2.4:0 -> 91.253.176.65:0 [proto: 81/ICMP][cat: Network][10 pkts/700 bytes -> 0 pkts/0 bytes]
-	16	UDP 192.168.2.4:51518 <-> 31.13.64.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	17	UDP 192.168.2.4:51518 <-> 31.13.70.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	18	UDP 192.168.2.4:51518 <-> 31.13.73.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	19	UDP 192.168.2.4:51518 <-> 31.13.79.192:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	20	UDP 192.168.2.4:51518 <-> 31.13.85.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	21	UDP 192.168.2.4:51518 <-> 31.13.91.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	22	UDP 192.168.2.4:51518 <-> 31.13.100.14:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	23	UDP 192.168.2.4:52794 <-> 31.13.73.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	24	UDP 192.168.2.4:52794 <-> 31.13.74.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	25	UDP 192.168.2.4:52794 <-> 31.13.79.192:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	26	UDP 192.168.2.4:52794 <-> 31.13.90.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	27	UDP 192.168.2.4:52794 <-> 31.13.93.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	28	UDP 192.168.2.4:52794 <-> 173.252.114.1:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	29	UDP 192.168.2.4:52794 <-> 179.60.192.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
-	30	TCP 192.168.2.4:49172 <-> 23.50.148.228:443 [proto: 91/SSL][3 pkts/174 bytes <-> 2 pkts/217 bytes]
-	31	TCP 192.168.2.4:49192 <-> 93.186.135.8:80 [proto: 7/HTTP][3 pkts/198 bytes <-> 2 pkts/132 bytes]
-	32	UDP 192.168.2.4:51897 <-> 192.168.2.1:53 [proto: 5.140/DNS.Apple][cat: Web][1 pkts/79 bytes <-> 1 pkts/251 bytes][Host: query.ess.apple.com]
-	33	UDP 192.168.2.4:52190 <-> 192.168.2.1:53 [proto: 5.142/DNS.WhatsApp][cat: Chat][1 pkts/76 bytes <-> 1 pkts/204 bytes][Host: e13.whatsapp.net]
-	34	UDP 192.168.2.1:57621 -> 192.168.2.255:57621 [proto: 156/Spotify][cat: Streaming][3 pkts/258 bytes -> 0 pkts/0 bytes]
-	35	UDP [fe80::c42c:3ff:fe60:6a64]:5353 -> [ff02::fb]:5353 [proto: 8/MDNS][cat: Network][2 pkts/258 bytes -> 0 pkts/0 bytes]
-	36	UDP [fe80::da30:62ff:fe56:1c]:5353 -> [ff02::fb]:5353 [proto: 8/MDNS][cat: Network][2 pkts/258 bytes -> 0 pkts/0 bytes]
-	37	UDP 169.254.166.207:5353 -> 224.0.0.251:5353 [proto: 8/MDNS][cat: Network][2 pkts/218 bytes -> 0 pkts/0 bytes]
-	38	UDP 192.168.2.1:5353 -> 224.0.0.251:5353 [proto: 8/MDNS][cat: Network][2 pkts/218 bytes -> 0 pkts/0 bytes]
-	39	TCP 192.168.2.4:49173 <-> 93.186.135.82:80 [proto: 7/HTTP][2 pkts/132 bytes <-> 1 pkts/66 bytes]
-	40	TCP 192.168.2.4:49174 <-> 5.178.42.26:80 [proto: 7/HTTP][2 pkts/132 bytes <-> 1 pkts/66 bytes]
-	41	TCP 192.168.2.4:49194 <-> 93.62.150.157:443 [proto: 91/SSL][2 pkts/132 bytes <-> 1 pkts/66 bytes]
-	42	TCP 192.168.2.4:49203 <-> 17.178.104.14:443 [proto: 91.140/SSL.Apple][2 pkts/132 bytes <-> 1 pkts/66 bytes]
-	43	TCP 192.168.2.4:49163 <-> 17.154.66.111:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	44	TCP 192.168.2.4:49164 <-> 17.167.142.31:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	45	TCP 192.168.2.4:49165 <-> 17.172.100.55:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	46	TCP 192.168.2.4:49166 <-> 17.154.66.121:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	47	TCP 192.168.2.4:49167 <-> 17.172.100.8:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	48	TCP 192.168.2.4:49169 <-> 17.173.66.102:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	49	TCP 192.168.2.4:49175 <-> 17.172.100.53:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	50	TCP 192.168.2.4:49176 <-> 17.130.137.77:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	51	TCP 192.168.2.4:49180 <-> 17.172.100.59:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	52	TCP 192.168.2.4:49181 <-> 17.172.100.37:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	53	TCP 192.168.2.4:49182 <-> 17.172.100.52:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	54	TCP 192.168.2.4:49191 <-> 17.172.100.49:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	55	TCP 192.168.2.4:49197 <-> 17.167.142.39:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	56	TCP 192.168.2.4:49198 <-> 17.167.142.13:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
-	57	TCP 192.168.2.4:49200 <-> 17.167.142.13:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	13	ICMP 192.168.2.4:0 -> 91.253.176.65:0 [proto: 81/ICMP][cat: Network][10 pkts/700 bytes -> 0 pkts/0 bytes]
+	14	UDP 192.168.2.4:51518 <-> 31.13.64.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	15	UDP 192.168.2.4:51518 <-> 31.13.70.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	16	UDP 192.168.2.4:51518 <-> 31.13.73.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	17	UDP 192.168.2.4:51518 <-> 31.13.79.192:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	18	UDP 192.168.2.4:51518 <-> 31.13.85.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	19	UDP 192.168.2.4:51518 <-> 31.13.91.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	20	UDP 192.168.2.4:51518 <-> 31.13.100.14:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	21	UDP 192.168.2.4:52794 <-> 31.13.73.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	22	UDP 192.168.2.4:52794 <-> 31.13.74.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	23	UDP 192.168.2.4:52794 <-> 31.13.79.192:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	24	UDP 192.168.2.4:52794 <-> 31.13.90.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	25	UDP 192.168.2.4:52794 <-> 31.13.93.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	26	UDP 192.168.2.4:52794 <-> 173.252.114.1:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	27	UDP 192.168.2.4:52794 <-> 179.60.192.48:3478 [proto: 119.78/Facebook.STUN][3 pkts/504 bytes <-> 2 pkts/172 bytes]
+	28	TCP 192.168.2.4:49172 <-> 23.50.148.228:443 [proto: 91/SSL][3 pkts/174 bytes <-> 2 pkts/217 bytes]
+	29	TCP 192.168.2.4:49192 <-> 93.186.135.8:80 [proto: 7/HTTP][3 pkts/198 bytes <-> 2 pkts/132 bytes]
+	30	UDP 192.168.2.4:51897 <-> 192.168.2.1:53 [proto: 5.140/DNS.Apple][cat: Web][1 pkts/79 bytes <-> 1 pkts/251 bytes][Host: query.ess.apple.com]
+	31	UDP 192.168.2.4:52190 <-> 192.168.2.1:53 [proto: 5.142/DNS.WhatsApp][cat: Chat][1 pkts/76 bytes <-> 1 pkts/204 bytes][Host: e13.whatsapp.net]
+	32	UDP 192.168.2.1:57621 -> 192.168.2.255:57621 [proto: 156/Spotify][cat: Streaming][3 pkts/258 bytes -> 0 pkts/0 bytes]
+	33	UDP [fe80::c42c:3ff:fe60:6a64]:5353 -> [ff02::fb]:5353 [proto: 8/MDNS][cat: Network][2 pkts/258 bytes -> 0 pkts/0 bytes]
+	34	UDP [fe80::da30:62ff:fe56:1c]:5353 -> [ff02::fb]:5353 [proto: 8/MDNS][cat: Network][2 pkts/258 bytes -> 0 pkts/0 bytes]
+	35	UDP 169.254.166.207:5353 -> 224.0.0.251:5353 [proto: 8/MDNS][cat: Network][2 pkts/218 bytes -> 0 pkts/0 bytes]
+	36	UDP 192.168.2.1:5353 -> 224.0.0.251:5353 [proto: 8/MDNS][cat: Network][2 pkts/218 bytes -> 0 pkts/0 bytes]
+	37	TCP 192.168.2.4:49173 <-> 93.186.135.82:80 [proto: 7/HTTP][2 pkts/132 bytes <-> 1 pkts/66 bytes]
+	38	TCP 192.168.2.4:49174 <-> 5.178.42.26:80 [proto: 7/HTTP][2 pkts/132 bytes <-> 1 pkts/66 bytes]
+	39	TCP 192.168.2.4:49194 <-> 93.62.150.157:443 [proto: 91/SSL][2 pkts/132 bytes <-> 1 pkts/66 bytes]
+	40	TCP 192.168.2.4:49203 <-> 17.178.104.14:443 [proto: 91.140/SSL.Apple][2 pkts/132 bytes <-> 1 pkts/66 bytes]
+	41	TCP 192.168.2.4:49163 <-> 17.154.66.111:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	42	TCP 192.168.2.4:49164 <-> 17.167.142.31:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	43	TCP 192.168.2.4:49165 <-> 17.172.100.55:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	44	TCP 192.168.2.4:49166 <-> 17.154.66.121:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	45	TCP 192.168.2.4:49167 <-> 17.172.100.8:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	46	TCP 192.168.2.4:49169 <-> 17.173.66.102:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	47	TCP 192.168.2.4:49175 <-> 17.172.100.53:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	48	TCP 192.168.2.4:49176 <-> 17.130.137.77:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	49	TCP 192.168.2.4:49180 <-> 17.172.100.59:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	50	TCP 192.168.2.4:49181 <-> 17.172.100.37:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	51	TCP 192.168.2.4:49182 <-> 17.172.100.52:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	52	TCP 192.168.2.4:49191 <-> 17.172.100.49:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	53	TCP 192.168.2.4:49197 <-> 17.167.142.39:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	54	TCP 192.168.2.4:49198 <-> 17.167.142.13:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+	55	TCP 192.168.2.4:49200 <-> 17.167.142.13:443 [proto: 91.140/SSL.Apple][2 pkts/108 bytes <-> 1 pkts/54 bytes]
+
+
+Undetected flows:
+	1	UDP 192.168.2.4:51518 -> 1.194.90.191:60312 [proto: 0/Unknown][15 pkts/1290 bytes -> 0 pkts/0 bytes]
+	2	UDP 192.168.2.4:52794 -> 1.194.90.191:51727 [proto: 0/Unknown][12 pkts/1032 bytes -> 0 pkts/0 bytes]
author	Campus <campus@ntop.org>	2018-05-29 20:37:02 +0200
committer	Campus <campus@ntop.org>	2018-05-29 20:37:02 +0200
commit	3407db11cdcb356c325c827069f5acb51598bef3 (patch)
tree	bde5da5300717ec79828d2efc7df84afec1e077a /tests
parent	326a2fb7ed8afba6aa42dda65c4c135d0cbae2ff (diff)