From ad25affcb7e40e64fa06c5f63e2eab0f12c7f517 Mon Sep 17 00:00:00 2001 From: Ivan Nardi <12729895+IvanNardi@users.noreply.github.com> Date: Sat, 10 Feb 2024 09:16:27 +0100 Subject: reader_util: fix GRE detunneling (#2314) --- tests/cfgs/default/pcap/gre.pcapng | Bin 0 -> 668 bytes tests/cfgs/default/result/gre.pcapng.out | 28 ++++++++++++++++++++++++++++ 2 files changed, 28 insertions(+) create mode 100644 tests/cfgs/default/pcap/gre.pcapng create mode 100644 tests/cfgs/default/result/gre.pcapng.out (limited to 'tests') diff --git a/tests/cfgs/default/pcap/gre.pcapng b/tests/cfgs/default/pcap/gre.pcapng new file mode 100644 index 000000000..af3f6eb42 Binary files /dev/null and b/tests/cfgs/default/pcap/gre.pcapng differ diff --git a/tests/cfgs/default/result/gre.pcapng.out b/tests/cfgs/default/result/gre.pcapng.out new file mode 100644 index 000000000..963287b74 --- /dev/null +++ b/tests/cfgs/default/result/gre.pcapng.out @@ -0,0 +1,28 @@ +DPI Packets (UDP): 1 (1.00 pkts/flow) +Confidence DPI : 1 (flows) +Num dissector calls: 1 (1.00 diss/flow) +LRU cache ookla: 0/0/0 (insert/search/found) +LRU cache bittorrent: 0/0/0 (insert/search/found) +LRU cache zoom: 0/0/0 (insert/search/found) +LRU cache stun: 0/0/0 (insert/search/found) +LRU cache tls_cert: 0/0/0 (insert/search/found) +LRU cache mining: 0/0/0 (insert/search/found) +LRU cache msteams: 0/0/0 (insert/search/found) +LRU cache stun_zoom: 0/0/0 (insert/search/found) +Automa host: 0/0 (search/found) +Automa domain: 0/0 (search/found) +Automa tls cert: 0/0 (search/found) +Automa risk mask: 0/0 (search/found) +Automa common alpns: 0/0 (search/found) +Patricia risk mask: 2/0 (search/found) +Patricia risk mask IPv6: 0/0 (search/found) +Patricia risk: 0/0 (search/found) +Patricia risk IPv6: 0/0 (search/found) +Patricia protocols: 2/0 (search/found) +Patricia protocols IPv6: 0/0 (search/found) + +SIP 1 384 1 + +Acceptable 1 384 1 + + 1 UDP 192.168.10.210:5060 -> 192.168.103.40:5060 [VLAN: 142][proto: GRE:100/SIP][IP: 0/Unknown][ClearText][Confidence: DPI][DPI packets: 1][cat: VoIP/10][1 pkts/384 bytes -> 0 pkts/0 bytes][Goodput ratio: 77/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][PLAIN TEXT (SIP/2.0 100 Trying)][Plen Bins: 0,0,0,0,0,0,0,0,0,100,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] -- cgit v1.2.3