diff options
| author | Toni Uhlig <matzeton@googlemail.com> | 2024-04-10 16:06:29 +0200 |
|---|---|---|
| committer | Toni Uhlig <matzeton@googlemail.com> | 2024-04-10 16:06:53 +0200 |
| commit | 53126a0af9341d609247ef63b494c44b33a93baf (patch) | |
| tree | ad619d22a8c14177651175d283b4f3705a986f22 /test/results/influxd/default | |
| parent | 15608bb57173a113665552f2b515e57f2e5f2fc4 (diff) | |
bump libnDPI to 142c8f5afb90629762920db6703831826513e00b
* fixed `git format` hash length
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
Diffstat (limited to 'test/results/influxd/default')
507 files changed, 589 insertions, 556 deletions
diff --git a/test/results/influxd/default/1kxun.pcap.out b/test/results/influxd/default/1kxun.pcap.out index 2369f8062..438bf028e 100644 --- a/test/results/influxd/default/1kxun.pcap.out +++ b/test/results/influxd/default/1kxun.pcap.out @@ -1,11 +1,11 @@ -general json_lines=1303,json_bytes=1542796,flow_src_total_bytes=156501,flow_dst_total_bytes=2270815 +general json_lines=1303,json_bytes=1542944,flow_src_total_bytes=156501,flow_dst_total_bytes=2270815 events flow_new_count=197,flow_end_count=9,flow_idle_count=188,flow_update_count=38,flow_analyse_count=13,flow_guessed_count=6,flow_detected_count=177,flow_detection_update_count=33,flow_not_detected_count=14,flow_risky_count=35,packet_count=0,packet_flow_count=624,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=27,flow_state_finished=170 breed flow_breed_safe_count=6,flow_breed_acceptable_count=116,flow_breed_fun_count=53,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=2,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=1,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=39,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=5,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=63,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=45,flow_category_system_count=22,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=2,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=177,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=34,flow_severity_medium=5,flow_severity_high=20,flow_severity_severe=1,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=34,flow_severity_medium=6,flow_severity_high=20,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=172,flow_l3_ip6_count=25,flow_l3_other_count=0 layer4 flow_l4_tcp_count=98,flow_l4_udp_count=99,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=197,flow_detected_count=177,flow_guessed_count=6,flow_not_detected_count=14 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=1,flow_risk_5_count=5,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=4,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=10,flow_risk_12_count=13,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=8,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=2,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=6,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=3,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=13,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=5,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=4,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=10,flow_risk_12_count=13,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=8,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=2,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=6,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=3,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=13,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=1 diff --git a/test/results/influxd/default/443-chrome.pcap.out b/test/results/influxd/default/443-chrome.pcap.out index cddf39365..540047a1a 100644 --- a/test/results/influxd/default/443-chrome.pcap.out +++ b/test/results/influxd/default/443-chrome.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=7032,flow_src_total_bytes=1440,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=7129,flow_src_total_bytes=1440,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/443-curl.pcap.out b/test/results/influxd/default/443-curl.pcap.out index af599a165..9a6cceb39 100644 --- a/test/results/influxd/default/443-curl.pcap.out +++ b/test/results/influxd/default/443-curl.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=13192,flow_src_total_bytes=930,flow_dst_total_bytes=65886 +general json_lines=14,json_bytes=13186,flow_src_total_bytes=930,flow_dst_total_bytes=65886 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/443-firefox.pcap.out b/test/results/influxd/default/443-firefox.pcap.out index 8b9b71b2d..50f4e9a64 100644 --- a/test/results/influxd/default/443-firefox.pcap.out +++ b/test/results/influxd/default/443-firefox.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=13440,flow_src_total_bytes=7675,flow_dst_total_bytes=406398 +general json_lines=14,json_bytes=13434,flow_src_total_bytes=7675,flow_dst_total_bytes=406398 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/443-git.pcap.out b/test/results/influxd/default/443-git.pcap.out index 1ee10c14b..57b1b0d7b 100644 --- a/test/results/influxd/default/443-git.pcap.out +++ b/test/results/influxd/default/443-git.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=15245,flow_src_total_bytes=881,flow_dst_total_bytes=31704 +general json_lines=14,json_bytes=15239,flow_src_total_bytes=881,flow_dst_total_bytes=31704 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/443-opvn.pcap.out b/test/results/influxd/default/443-opvn.pcap.out index 92b353336..399b0ac4e 100644 --- a/test/results/influxd/default/443-opvn.pcap.out +++ b/test/results/influxd/default/443-opvn.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9624,flow_src_total_bytes=3974,flow_dst_total_bytes=4543 +general json_lines=12,json_bytes=9618,flow_src_total_bytes=3974,flow_dst_total_bytes=4543 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/443-safari.pcap.out b/test/results/influxd/default/443-safari.pcap.out index f381ae613..c4bb37d1e 100644 --- a/test/results/influxd/default/443-safari.pcap.out +++ b/test/results/influxd/default/443-safari.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=12951,flow_src_total_bytes=797,flow_dst_total_bytes=16406 +general json_lines=14,json_bytes=12945,flow_src_total_bytes=797,flow_dst_total_bytes=16406 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/4in4tunnel.pcap.out b/test/results/influxd/default/4in4tunnel.pcap.out index c40abf96c..6907a649c 100644 --- a/test/results/influxd/default/4in4tunnel.pcap.out +++ b/test/results/influxd/default/4in4tunnel.pcap.out @@ -1,4 +1,4 @@ -general json_lines=17,json_bytes=8627,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=17,json_bytes=8613,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=5,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=5,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/4in6tunnel.pcap.out b/test/results/influxd/default/4in6tunnel.pcap.out index f71e2a475..e330cc158 100644 --- a/test/results/influxd/default/4in6tunnel.pcap.out +++ b/test/results/influxd/default/4in6tunnel.pcap.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=9401,flow_src_total_bytes=316,flow_dst_total_bytes=1464 +general json_lines=10,json_bytes=9395,flow_src_total_bytes=316,flow_dst_total_bytes=1464 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/6in4tunnel.pcap.out b/test/results/influxd/default/6in4tunnel.pcap.out index 94e05f7b6..ea525f144 100644 --- a/test/results/influxd/default/6in4tunnel.pcap.out +++ b/test/results/influxd/default/6in4tunnel.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9752,flow_src_total_bytes=11600,flow_dst_total_bytes=24375 +general json_lines=12,json_bytes=9746,flow_src_total_bytes=11600,flow_dst_total_bytes=24375 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/6in6tunnel.pcap.out b/test/results/influxd/default/6in6tunnel.pcap.out index 3566f46dc..0d28d632d 100644 --- a/test/results/influxd/default/6in6tunnel.pcap.out +++ b/test/results/influxd/default/6in6tunnel.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8148,flow_src_total_bytes=104,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=8142,flow_src_total_bytes=104,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=2,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/BGP_Cisco_hdlc_slarp.pcap.out b/test/results/influxd/default/BGP_Cisco_hdlc_slarp.pcap.out index fd9274f54..ba485b7ec 100644 --- a/test/results/influxd/default/BGP_Cisco_hdlc_slarp.pcap.out +++ b/test/results/influxd/default/BGP_Cisco_hdlc_slarp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7392,flow_src_total_bytes=76,flow_dst_total_bytes=269 +general json_lines=11,json_bytes=7386,flow_src_total_bytes=76,flow_dst_total_bytes=269 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/BGP_redist.pcap.out b/test/results/influxd/default/BGP_redist.pcap.out index 3c69aa40f..e97387efa 100644 --- a/test/results/influxd/default/BGP_redist.pcap.out +++ b/test/results/influxd/default/BGP_redist.pcap.out @@ -1,4 +1,4 @@ -general json_lines=9,json_bytes=6102,flow_src_total_bytes=115,flow_dst_total_bytes=0 +general json_lines=9,json_bytes=6096,flow_src_total_bytes=115,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=1,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=1,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/EAQ.pcap.out b/test/results/influxd/default/EAQ.pcap.out index e1c70c855..87dfef84d 100644 --- a/test/results/influxd/default/EAQ.pcap.out +++ b/test/results/influxd/default/EAQ.pcap.out @@ -1,4 +1,4 @@ -general json_lines=269,json_bytes=193281,flow_src_total_bytes=2383,flow_dst_total_bytes=10862 +general json_lines=269,json_bytes=193275,flow_src_total_bytes=2383,flow_dst_total_bytes=10862 events flow_new_count=31,flow_end_count=2,flow_idle_count=29,flow_update_count=29,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=31,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=23,packet_count=0,packet_flow_count=144,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=31 breed flow_breed_safe_count=0,flow_breed_acceptable_count=31,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out b/test/results/influxd/default/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out index 6dc256540..ad5ae65bb 100644 --- a/test/results/influxd/default/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out +++ b/test/results/influxd/default/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out @@ -1,4 +1,4 @@ -general json_lines=52,json_bytes=54935,flow_src_total_bytes=56781,flow_dst_total_bytes=136335 +general json_lines=52,json_bytes=54929,flow_src_total_bytes=56781,flow_dst_total_bytes=136335 events flow_new_count=5,flow_end_count=0,flow_idle_count=5,flow_update_count=6,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=25,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=5 breed flow_breed_safe_count=0,flow_breed_acceptable_count=5,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/IEC104.pcap.out b/test/results/influxd/default/IEC104.pcap.out index e55cea9d2..99036373a 100644 --- a/test/results/influxd/default/IEC104.pcap.out +++ b/test/results/influxd/default/IEC104.pcap.out @@ -1,4 +1,4 @@ -general json_lines=17,json_bytes=12102,flow_src_total_bytes=609,flow_dst_total_bytes=0 +general json_lines=17,json_bytes=12096,flow_src_total_bytes=609,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=8,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/KakaoTalk_chat.pcap.out b/test/results/influxd/default/KakaoTalk_chat.pcap.out index cd073c173..fe5dcf375 100644 --- a/test/results/influxd/default/KakaoTalk_chat.pcap.out +++ b/test/results/influxd/default/KakaoTalk_chat.pcap.out @@ -1,4 +1,4 @@ -general json_lines=270,json_bytes=238298,flow_src_total_bytes=15862,flow_dst_total_bytes=36150 +general json_lines=270,json_bytes=238410,flow_src_total_bytes=15862,flow_dst_total_bytes=36150 events flow_new_count=38,flow_end_count=8,flow_idle_count=30,flow_update_count=1,flow_analyse_count=3,flow_guessed_count=5,flow_detected_count=33,flow_detection_update_count=33,flow_not_detected_count=0,flow_risky_count=10,packet_count=0,packet_flow_count=116,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=12,flow_state_finished=26 breed flow_breed_safe_count=9,flow_breed_acceptable_count=16,flow_breed_fun_count=8,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/KakaoTalk_talk.pcap.out b/test/results/influxd/default/KakaoTalk_talk.pcap.out index 73d76905b..427984009 100644 --- a/test/results/influxd/default/KakaoTalk_talk.pcap.out +++ b/test/results/influxd/default/KakaoTalk_talk.pcap.out @@ -1,4 +1,4 @@ -general json_lines=144,json_bytes=120158,flow_src_total_bytes=146910,flow_dst_total_bytes=144494 +general json_lines=144,json_bytes=120270,flow_src_total_bytes=146910,flow_dst_total_bytes=144494 events flow_new_count=20,flow_end_count=6,flow_idle_count=14,flow_update_count=0,flow_analyse_count=4,flow_guessed_count=9,flow_detected_count=11,flow_detection_update_count=4,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=73,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=11,flow_state_finished=9 breed flow_breed_safe_count=5,flow_breed_acceptable_count=4,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/NTPv2.pcap.out b/test/results/influxd/default/NTPv2.pcap.out index 320925662..0144b9930 100644 --- a/test/results/influxd/default/NTPv2.pcap.out +++ b/test/results/influxd/default/NTPv2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5570,flow_src_total_bytes=368,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5564,flow_src_total_bytes=368,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/NTPv3.pcap.out b/test/results/influxd/default/NTPv3.pcap.out index bc360f930..bff50b0ea 100644 --- a/test/results/influxd/default/NTPv3.pcap.out +++ b/test/results/influxd/default/NTPv3.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5130,flow_src_total_bytes=48,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5124,flow_src_total_bytes=48,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/NTPv4.pcap.out b/test/results/influxd/default/NTPv4.pcap.out index bc360f930..bff50b0ea 100644 --- a/test/results/influxd/default/NTPv4.pcap.out +++ b/test/results/influxd/default/NTPv4.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5130,flow_src_total_bytes=48,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5124,flow_src_total_bytes=48,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/Oscar.pcap.out b/test/results/influxd/default/Oscar.pcap.out index b5860cd6d..3611ccd81 100644 --- a/test/results/influxd/default/Oscar.pcap.out +++ b/test/results/influxd/default/Oscar.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9662,flow_src_total_bytes=1504,flow_dst_total_bytes=3946 +general json_lines=12,json_bytes=9656,flow_src_total_bytes=1504,flow_dst_total_bytes=3946 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/TivoDVR.pcap.out b/test/results/influxd/default/TivoDVR.pcap.out index 433fd139c..caf7334dc 100644 --- a/test/results/influxd/default/TivoDVR.pcap.out +++ b/test/results/influxd/default/TivoDVR.pcap.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=6243,flow_src_total_bytes=334,flow_dst_total_bytes=0 +general json_lines=8,json_bytes=6237,flow_src_total_bytes=334,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/WebattackRCE.pcap.out b/test/results/influxd/default/WebattackRCE.pcap.out index acd8543a9..589dd93d8 100644 --- a/test/results/influxd/default/WebattackRCE.pcap.out +++ b/test/results/influxd/default/WebattackRCE.pcap.out @@ -1,4 +1,4 @@ -general json_lines=3191,json_bytes=3379261,flow_src_total_bytes=138401,flow_dst_total_bytes=0 +general json_lines=3191,json_bytes=3379255,flow_src_total_bytes=138401,flow_dst_total_bytes=0 events flow_new_count=797,flow_end_count=0,flow_idle_count=797,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=797,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=797,packet_count=0,packet_flow_count=797,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=797,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=797,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/WebattackSQLinj.pcap.out b/test/results/influxd/default/WebattackSQLinj.pcap.out index 43b7e9423..95961e008 100644 --- a/test/results/influxd/default/WebattackSQLinj.pcap.out +++ b/test/results/influxd/default/WebattackSQLinj.pcap.out @@ -1,4 +1,4 @@ -general json_lines=75,json_bytes=65864,flow_src_total_bytes=4839,flow_dst_total_bytes=18821 +general json_lines=75,json_bytes=65858,flow_src_total_bytes=4839,flow_dst_total_bytes=18821 events flow_new_count=9,flow_end_count=9,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=9,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=9,packet_count=0,packet_flow_count=45,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=9 breed flow_breed_safe_count=0,flow_breed_acceptable_count=9,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/WebattackXSS.pcap.out b/test/results/influxd/default/WebattackXSS.pcap.out index 108fc6875..a5b6eb04d 100644 --- a/test/results/influxd/default/WebattackXSS.pcap.out +++ b/test/results/influxd/default/WebattackXSS.pcap.out @@ -1,4 +1,4 @@ -general json_lines=5305,json_bytes=3632325,flow_src_total_bytes=857367,flow_dst_total_bytes=3234521 +general json_lines=5305,json_bytes=3632317,flow_src_total_bytes=857367,flow_dst_total_bytes=3234521 events flow_new_count=661,flow_end_count=657,flow_idle_count=4,flow_update_count=0,flow_analyse_count=19,flow_guessed_count=639,flow_detected_count=22,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=22,packet_count=0,packet_flow_count=3299,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=639,flow_state_finished=22 breed flow_breed_safe_count=0,flow_breed_acceptable_count=22,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/activision.pcap.out b/test/results/influxd/default/activision.pcap.out index 274bcb3d9..6c939a25e 100644 --- a/test/results/influxd/default/activision.pcap.out +++ b/test/results/influxd/default/activision.pcap.out @@ -1,4 +1,4 @@ -general json_lines=38,json_bytes=26037,flow_src_total_bytes=620,flow_dst_total_bytes=764 +general json_lines=38,json_bytes=26027,flow_src_total_bytes=620,flow_dst_total_bytes=764 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=1,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=4,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/adult_content.pcap.out b/test/results/influxd/default/adult_content.pcap.out index b4b2c2e2f..7ba4a48c5 100644 --- a/test/results/influxd/default/adult_content.pcap.out +++ b/test/results/influxd/default/adult_content.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9102,flow_src_total_bytes=3131,flow_dst_total_bytes=3791 +general json_lines=12,json_bytes=9096,flow_src_total_bytes=3131,flow_dst_total_bytes=3791 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/afp.pcap.out b/test/results/influxd/default/afp.pcap.out index fdfd2beb0..65fcea23e 100644 --- a/test/results/influxd/default/afp.pcap.out +++ b/test/results/influxd/default/afp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7386,flow_src_total_bytes=44,flow_dst_total_bytes=118 +general json_lines=11,json_bytes=7380,flow_src_total_bytes=44,flow_dst_total_bytes=118 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/agora-sd-rtn.pcap.out b/test/results/influxd/default/agora-sd-rtn.pcap.out index 48f308d94..3fc10d2ab 100644 --- a/test/results/influxd/default/agora-sd-rtn.pcap.out +++ b/test/results/influxd/default/agora-sd-rtn.pcap.out @@ -1,4 +1,4 @@ -general json_lines=238,json_bytes=225892,flow_src_total_bytes=54495,flow_dst_total_bytes=40944 +general json_lines=238,json_bytes=225878,flow_src_total_bytes=54495,flow_dst_total_bytes=40944 events flow_new_count=26,flow_end_count=0,flow_idle_count=26,flow_update_count=23,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=26,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=130,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=26 breed flow_breed_safe_count=0,flow_breed_acceptable_count=26,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ah.pcapng.out b/test/results/influxd/default/ah.pcapng.out index 1fe08ab15..1e7922274 100644 --- a/test/results/influxd/default/ah.pcapng.out +++ b/test/results/influxd/default/ah.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=12175,flow_src_total_bytes=790,flow_dst_total_bytes=742 +general json_lines=15,json_bytes=12169,flow_src_total_bytes=790,flow_dst_total_bytes=742 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=6,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=2,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ajp.pcap.out b/test/results/influxd/default/ajp.pcap.out index 139ef03e9..2ddf33f9c 100644 --- a/test/results/influxd/default/ajp.pcap.out +++ b/test/results/influxd/default/ajp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=43,json_bytes=23823,flow_src_total_bytes=2112,flow_dst_total_bytes=482 +general json_lines=43,json_bytes=23817,flow_src_total_bytes=2112,flow_dst_total_bytes=482 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=12,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=12,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/alexa-app.pcapng.out b/test/results/influxd/default/alexa-app.pcapng.out index c00c825c2..631248f48 100644 --- a/test/results/influxd/default/alexa-app.pcapng.out +++ b/test/results/influxd/default/alexa-app.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=1415,json_bytes=1268458,flow_src_total_bytes=399153,flow_dst_total_bytes=588052 +general json_lines=1415,json_bytes=1268452,flow_src_total_bytes=399153,flow_dst_total_bytes=588052 events flow_new_count=160,flow_end_count=104,flow_idle_count=56,flow_update_count=77,flow_analyse_count=23,flow_guessed_count=14,flow_detected_count=146,flow_detection_update_count=143,flow_not_detected_count=0,flow_risky_count=61,packet_count=5,packet_flow_count=679,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=5,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=35,flow_state_finished=125 breed flow_breed_safe_count=8,flow_breed_acceptable_count=138,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/alicloud.pcap.out b/test/results/influxd/default/alicloud.pcap.out index 0d9173306..ebe954a00 100644 --- a/test/results/influxd/default/alicloud.pcap.out +++ b/test/results/influxd/default/alicloud.pcap.out @@ -1,4 +1,4 @@ -general json_lines=135,json_bytes=92461,flow_src_total_bytes=5696,flow_dst_total_bytes=2176 +general json_lines=135,json_bytes=92431,flow_src_total_bytes=5696,flow_dst_total_bytes=2176 events flow_new_count=15,flow_end_count=0,flow_idle_count=15,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=15,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=75,init_count=1,reconnect_count=0,shutdown_count=1,status_count=13,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=15 breed flow_breed_safe_count=0,flow_breed_acceptable_count=15,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/among_us.pcap.out b/test/results/influxd/default/among_us.pcap.out index 439474de9..8df880d53 100644 --- a/test/results/influxd/default/among_us.pcap.out +++ b/test/results/influxd/default/among_us.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5054,flow_src_total_bytes=15,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5048,flow_src_total_bytes=15,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/amqp.pcap.out b/test/results/influxd/default/amqp.pcap.out index 95fa95691..17ea9a99a 100644 --- a/test/results/influxd/default/amqp.pcap.out +++ b/test/results/influxd/default/amqp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=28,json_bytes=23195,flow_src_total_bytes=12849,flow_dst_total_bytes=105 +general json_lines=28,json_bytes=23189,flow_src_total_bytes=12849,flow_dst_total_bytes=105 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/android.pcap.out b/test/results/influxd/default/android.pcap.out index 9ace40d75..21f0f1cff 100644 --- a/test/results/influxd/default/android.pcap.out +++ b/test/results/influxd/default/android.pcap.out @@ -1,4 +1,4 @@ -general json_lines=437,json_bytes=374406,flow_src_total_bytes=25482,flow_dst_total_bytes=76498 +general json_lines=437,json_bytes=374400,flow_src_total_bytes=25482,flow_dst_total_bytes=76498 events flow_new_count=63,flow_end_count=9,flow_idle_count=54,flow_update_count=3,flow_analyse_count=1,flow_guessed_count=3,flow_detected_count=60,flow_detection_update_count=45,flow_not_detected_count=0,flow_risky_count=7,packet_count=0,packet_flow_count=196,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=19,flow_state_finished=44 breed flow_breed_safe_count=10,flow_breed_acceptable_count=36,flow_breed_fun_count=14,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/anyconnect-vpn.pcap.out b/test/results/influxd/default/anyconnect-vpn.pcap.out index 703d1c209..0596c987c 100644 --- a/test/results/influxd/default/anyconnect-vpn.pcap.out +++ b/test/results/influxd/default/anyconnect-vpn.pcap.out @@ -1,4 +1,4 @@ -general json_lines=457,json_bytes=385180,flow_src_total_bytes=38688,flow_dst_total_bytes=56727 +general json_lines=457,json_bytes=385174,flow_src_total_bytes=38688,flow_dst_total_bytes=56727 events flow_new_count=69,flow_end_count=10,flow_idle_count=59,flow_update_count=3,flow_analyse_count=3,flow_guessed_count=6,flow_detected_count=61,flow_detection_update_count=34,flow_not_detected_count=2,flow_risky_count=17,packet_count=0,packet_flow_count=207,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=15,flow_state_finished=54 breed flow_breed_safe_count=13,flow_breed_acceptable_count=48,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/anydesk.pcapng.out b/test/results/influxd/default/anydesk.pcapng.out index f01bf712d..247c0c45f 100644 --- a/test/results/influxd/default/anydesk.pcapng.out +++ b/test/results/influxd/default/anydesk.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=66,json_bytes=65342,flow_src_total_bytes=19883,flow_dst_total_bytes=15955 +general json_lines=66,json_bytes=65332,flow_src_total_bytes=19883,flow_dst_total_bytes=15955 events flow_new_count=7,flow_end_count=1,flow_idle_count=6,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=8,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=29,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=6 breed flow_breed_safe_count=4,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/avast.pcap.out b/test/results/influxd/default/avast.pcap.out index 3b605daa0..e100afdbb 100644 --- a/test/results/influxd/default/avast.pcap.out +++ b/test/results/influxd/default/avast.pcap.out @@ -1,4 +1,4 @@ -general json_lines=101,json_bytes=68518,flow_src_total_bytes=1031,flow_dst_total_bytes=246 +general json_lines=101,json_bytes=68476,flow_src_total_bytes=1031,flow_dst_total_bytes=246 events flow_new_count=10,flow_end_count=2,flow_idle_count=8,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=10,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=50,init_count=1,reconnect_count=0,shutdown_count=1,status_count=19,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=10 breed flow_breed_safe_count=10,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/avast_securedns.pcapng.out b/test/results/influxd/default/avast_securedns.pcapng.out index b2ecf3cf5..e262d7e5a 100644 --- a/test/results/influxd/default/avast_securedns.pcapng.out +++ b/test/results/influxd/default/avast_securedns.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=218,json_bytes=177858,flow_src_total_bytes=1521,flow_dst_total_bytes=6688 +general json_lines=218,json_bytes=177828,flow_src_total_bytes=1521,flow_dst_total_bytes=6688 events flow_new_count=39,flow_end_count=0,flow_idle_count=39,flow_update_count=9,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=39,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=77,init_count=1,reconnect_count=0,shutdown_count=1,status_count=13,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=39 breed flow_breed_safe_count=39,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bacnet.pcap.out b/test/results/influxd/default/bacnet.pcap.out index 3257af0f8..38f88efab 100644 --- a/test/results/influxd/default/bacnet.pcap.out +++ b/test/results/influxd/default/bacnet.pcap.out @@ -1,4 +1,4 @@ -general json_lines=57,json_bytes=44588,flow_src_total_bytes=398,flow_dst_total_bytes=0 +general json_lines=57,json_bytes=44572,flow_src_total_bytes=398,flow_dst_total_bytes=0 events flow_new_count=10,flow_end_count=0,flow_idle_count=10,flow_update_count=5,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=10,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=14,init_count=1,reconnect_count=0,shutdown_count=1,status_count=6,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=10 breed flow_breed_safe_count=10,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bad-dns-traffic.pcap.out b/test/results/influxd/default/bad-dns-traffic.pcap.out index b8173ecd5..2a7e81a76 100644 --- a/test/results/influxd/default/bad-dns-traffic.pcap.out +++ b/test/results/influxd/default/bad-dns-traffic.pcap.out @@ -1,10 +1,10 @@ -general json_lines=39,json_bytes=40394,flow_src_total_bytes=44399,flow_dst_total_bytes=38931 +general json_lines=39,json_bytes=40424,flow_src_total_bytes=44399,flow_dst_total_bytes=38931 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=3,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=8,flow_not_detected_count=0,flow_risky_count=3,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=3,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=3,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=0,flow_severity_medium=0,flow_severity_high=12,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=0,flow_severity_medium=6,flow_severity_high=6,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=3,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=0,flow_l4_udp_count=3,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=3,flow_detected_count=3,flow_guessed_count=0,flow_not_detected_count=0 diff --git a/test/results/influxd/default/badpackets.pcap.out b/test/results/influxd/default/badpackets.pcap.out index 19811da06..cad91f12a 100644 --- a/test/results/influxd/default/badpackets.pcap.out +++ b/test/results/influxd/default/badpackets.pcap.out @@ -1,4 +1,4 @@ -general json_lines=194,json_bytes=127432,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=194,json_bytes=127424,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=95,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=89,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=6,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/beckhoff_ads.pcapng.out b/test/results/influxd/default/beckhoff_ads.pcapng.out index d8e8744ad..f676cb832 100644 --- a/test/results/influxd/default/beckhoff_ads.pcapng.out +++ b/test/results/influxd/default/beckhoff_ads.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9676,flow_src_total_bytes=1376,flow_dst_total_bytes=1934 +general json_lines=12,json_bytes=9670,flow_src_total_bytes=1376,flow_dst_total_bytes=1934 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bets.pcapng.out b/test/results/influxd/default/bets.pcapng.out index 7216cb10d..d0dabe80c 100644 --- a/test/results/influxd/default/bets.pcapng.out +++ b/test/results/influxd/default/bets.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=11390,flow_src_total_bytes=573,flow_dst_total_bytes=6919 +general json_lines=13,json_bytes=11384,flow_src_total_bytes=573,flow_dst_total_bytes=6919 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bfd.pcap.out b/test/results/influxd/default/bfd.pcap.out index bb8fe814e..be5f2a06d 100644 --- a/test/results/influxd/default/bfd.pcap.out +++ b/test/results/influxd/default/bfd.pcap.out @@ -1,4 +1,4 @@ -general json_lines=26,json_bytes=18517,flow_src_total_bytes=192,flow_dst_total_bytes=0 +general json_lines=26,json_bytes=18511,flow_src_total_bytes=192,flow_dst_total_bytes=0 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=11,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bitcoin.pcap.out b/test/results/influxd/default/bitcoin.pcap.out index f9be1aa2f..679f6bdac 100644 --- a/test/results/influxd/default/bitcoin.pcap.out +++ b/test/results/influxd/default/bitcoin.pcap.out @@ -1,4 +1,4 @@ -general json_lines=57,json_bytes=49970,flow_src_total_bytes=112000,flow_dst_total_bytes=279630 +general json_lines=57,json_bytes=49958,flow_src_total_bytes=112000,flow_dst_total_bytes=279630 events flow_new_count=6,flow_end_count=0,flow_idle_count=6,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=6 breed flow_breed_safe_count=0,flow_breed_acceptable_count=6,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bittorrent.pcap.out b/test/results/influxd/default/bittorrent.pcap.out index ce711ad96..75ee1a1f3 100644 --- a/test/results/influxd/default/bittorrent.pcap.out +++ b/test/results/influxd/default/bittorrent.pcap.out @@ -1,4 +1,4 @@ -general json_lines=164,json_bytes=148984,flow_src_total_bytes=6341,flow_dst_total_bytes=279641 +general json_lines=164,json_bytes=148978,flow_src_total_bytes=6341,flow_dst_total_bytes=279641 events flow_new_count=24,flow_end_count=11,flow_idle_count=13,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=24,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=22,packet_count=0,packet_flow_count=88,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=24 breed flow_breed_safe_count=0,flow_breed_acceptable_count=24,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bittorrent_tcp_miss.pcapng.out b/test/results/influxd/default/bittorrent_tcp_miss.pcapng.out index 464554eea..9f4f79811 100644 --- a/test/results/influxd/default/bittorrent_tcp_miss.pcapng.out +++ b/test/results/influxd/default/bittorrent_tcp_miss.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10989,flow_src_total_bytes=1093,flow_dst_total_bytes=90373 +general json_lines=12,json_bytes=10983,flow_src_total_bytes=1093,flow_dst_total_bytes=90373 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bittorrent_utp.pcap.out b/test/results/influxd/default/bittorrent_utp.pcap.out index 481b2a960..e061f5499 100644 --- a/test/results/influxd/default/bittorrent_utp.pcap.out +++ b/test/results/influxd/default/bittorrent_utp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=23,json_bytes=19385,flow_src_total_bytes=34748,flow_dst_total_bytes=3258 +general json_lines=23,json_bytes=19377,flow_src_total_bytes=34748,flow_dst_total_bytes=3258 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bjnp.pcap.out b/test/results/influxd/default/bjnp.pcap.out index 51d60a0bd..9e4e8243b 100644 --- a/test/results/influxd/default/bjnp.pcap.out +++ b/test/results/influxd/default/bjnp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=43,json_bytes=34000,flow_src_total_bytes=160,flow_dst_total_bytes=0 +general json_lines=43,json_bytes=33994,flow_src_total_bytes=160,flow_dst_total_bytes=0 events flow_new_count=10,flow_end_count=0,flow_idle_count=10,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=10,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=10 breed flow_breed_safe_count=0,flow_breed_acceptable_count=10,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bot.pcap.out b/test/results/influxd/default/bot.pcap.out index 44603e693..e9bd60e81 100644 --- a/test/results/influxd/default/bot.pcap.out +++ b/test/results/influxd/default/bot.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10428,flow_src_total_bytes=316,flow_dst_total_bytes=406780 +general json_lines=12,json_bytes=10422,flow_src_total_bytes=316,flow_dst_total_bytes=406780 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bt-dns.pcap.out b/test/results/influxd/default/bt-dns.pcap.out index 97a2a7889..d95c9893c 100644 --- a/test/results/influxd/default/bt-dns.pcap.out +++ b/test/results/influxd/default/bt-dns.pcap.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=6067,flow_src_total_bytes=30,flow_dst_total_bytes=46 +general json_lines=8,json_bytes=6063,flow_src_total_bytes=30,flow_dst_total_bytes=46 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=0,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bt-http.pcapng.out b/test/results/influxd/default/bt-http.pcapng.out index 6841259f3..675a36a9c 100644 --- a/test/results/influxd/default/bt-http.pcapng.out +++ b/test/results/influxd/default/bt-http.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8648,flow_src_total_bytes=370,flow_dst_total_bytes=340 +general json_lines=11,json_bytes=8642,flow_src_total_bytes=370,flow_dst_total_bytes=340 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/bt_search.pcap.out b/test/results/influxd/default/bt_search.pcap.out index 2c7e20c91..3bc1dad45 100644 --- a/test/results/influxd/default/bt_search.pcap.out +++ b/test/results/influxd/default/bt_search.pcap.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=5973,flow_src_total_bytes=238,flow_dst_total_bytes=0 +general json_lines=8,json_bytes=5967,flow_src_total_bytes=238,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/c1222.pcapng.out b/test/results/influxd/default/c1222.pcapng.out index 637d46d79..5cc440cac 100644 --- a/test/results/influxd/default/c1222.pcapng.out +++ b/test/results/influxd/default/c1222.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=9909,flow_src_total_bytes=244,flow_dst_total_bytes=111 +general json_lines=13,json_bytes=9903,flow_src_total_bytes=244,flow_dst_total_bytes=111 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/cachefly.pcapng.out b/test/results/influxd/default/cachefly.pcapng.out index 9dff49c6b..e8d1cf82f 100644 --- a/test/results/influxd/default/cachefly.pcapng.out +++ b/test/results/influxd/default/cachefly.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=17911,flow_src_total_bytes=5242,flow_dst_total_bytes=517 +general json_lines=13,json_bytes=17905,flow_src_total_bytes=5242,flow_dst_total_bytes=517 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/can.pcap.out b/test/results/influxd/default/can.pcap.out index b05f9b481..ed64b4339 100644 --- a/test/results/influxd/default/can.pcap.out +++ b/test/results/influxd/default/can.pcap.out @@ -1,4 +1,4 @@ -general json_lines=36,json_bytes=29214,flow_src_total_bytes=360,flow_dst_total_bytes=0 +general json_lines=36,json_bytes=29208,flow_src_total_bytes=360,flow_dst_total_bytes=0 events flow_new_count=8,flow_end_count=0,flow_idle_count=8,flow_update_count=1,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=8,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=8,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=8 breed flow_breed_safe_count=8,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/capwap.pcap.out b/test/results/influxd/default/capwap.pcap.out index 9f7a00154..186d16b76 100644 --- a/test/results/influxd/default/capwap.pcap.out +++ b/test/results/influxd/default/capwap.pcap.out @@ -1,4 +1,4 @@ -general json_lines=70,json_bytes=56303,flow_src_total_bytes=48656,flow_dst_total_bytes=33179 +general json_lines=70,json_bytes=56297,flow_src_total_bytes=48656,flow_dst_total_bytes=33179 events flow_new_count=5,flow_end_count=0,flow_idle_count=5,flow_update_count=15,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=9,packet_flow_count=17,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=9,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=5,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/capwap_data.pcapng.out b/test/results/influxd/default/capwap_data.pcapng.out index 4224dc75e..87a4ec7f8 100644 --- a/test/results/influxd/default/capwap_data.pcapng.out +++ b/test/results/influxd/default/capwap_data.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=31,json_bytes=14086,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=31,json_bytes=14080,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=14,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=14,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/cassandra.pcap.out b/test/results/influxd/default/cassandra.pcap.out index 41d3fee4c..1f6ff554f 100644 --- a/test/results/influxd/default/cassandra.pcap.out +++ b/test/results/influxd/default/cassandra.pcap.out @@ -1,4 +1,4 @@ -general json_lines=26,json_bytes=17839,flow_src_total_bytes=160,flow_dst_total_bytes=172 +general json_lines=26,json_bytes=17833,flow_src_total_bytes=160,flow_dst_total_bytes=172 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=14,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ceph.pcap.out b/test/results/influxd/default/ceph.pcap.out index f33736f0d..e90a527c0 100644 --- a/test/results/influxd/default/ceph.pcap.out +++ b/test/results/influxd/default/ceph.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9418,flow_src_total_bytes=1151,flow_dst_total_bytes=9638 +general json_lines=12,json_bytes=9412,flow_src_total_bytes=1151,flow_dst_total_bytes=9638 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/check_mk_new.pcap.out b/test/results/influxd/default/check_mk_new.pcap.out index 1d82e45c1..ec1cd33da 100644 --- a/test/results/influxd/default/check_mk_new.pcap.out +++ b/test/results/influxd/default/check_mk_new.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9572,flow_src_total_bytes=0,flow_dst_total_bytes=13758 +general json_lines=12,json_bytes=9566,flow_src_total_bytes=0,flow_dst_total_bytes=13758 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/chrome.pcap.out b/test/results/influxd/default/chrome.pcap.out index b83b00b8a..6fdd2f06c 100644 --- a/test/results/influxd/default/chrome.pcap.out +++ b/test/results/influxd/default/chrome.pcap.out @@ -1,4 +1,4 @@ -general json_lines=57,json_bytes=48730,flow_src_total_bytes=8227,flow_dst_total_bytes=51402 +general json_lines=57,json_bytes=48724,flow_src_total_bytes=8227,flow_dst_total_bytes=51402 events flow_new_count=6,flow_end_count=0,flow_idle_count=6,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=6,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=6,flow_state_finished=0 breed flow_breed_safe_count=6,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/cip_io.pcap.out b/test/results/influxd/default/cip_io.pcap.out index dc06f52a5..238d27a53 100644 --- a/test/results/influxd/default/cip_io.pcap.out +++ b/test/results/influxd/default/cip_io.pcap.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=6822,flow_src_total_bytes=60,flow_dst_total_bytes=68 +general json_lines=10,json_bytes=6816,flow_src_total_bytes=60,flow_dst_total_bytes=68 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/citrix.pcap.out b/test/results/influxd/default/citrix.pcap.out index 42b130f8f..8aac6f08e 100644 --- a/test/results/influxd/default/citrix.pcap.out +++ b/test/results/influxd/default/citrix.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8353,flow_src_total_bytes=3874,flow_dst_total_bytes=1616 +general json_lines=11,json_bytes=8349,flow_src_total_bytes=3874,flow_dst_total_bytes=1616 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=0,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/cloudflare-warp.pcap.out b/test/results/influxd/default/cloudflare-warp.pcap.out index 17c54f9e1..c2dcaf666 100644 --- a/test/results/influxd/default/cloudflare-warp.pcap.out +++ b/test/results/influxd/default/cloudflare-warp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=63,json_bytes=48760,flow_src_total_bytes=2276,flow_dst_total_bytes=6167 +general json_lines=63,json_bytes=48754,flow_src_total_bytes=2276,flow_dst_total_bytes=6167 events flow_new_count=8,flow_end_count=2,flow_idle_count=6,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=3,flow_detected_count=5,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=33,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=7,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=5,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/coap_mqtt.pcap.out b/test/results/influxd/default/coap_mqtt.pcap.out index b77bef660..507ce802c 100644 --- a/test/results/influxd/default/coap_mqtt.pcap.out +++ b/test/results/influxd/default/coap_mqtt.pcap.out @@ -1,4 +1,4 @@ -general json_lines=121,json_bytes=102092,flow_src_total_bytes=41887,flow_dst_total_bytes=11416 +general json_lines=121,json_bytes=102082,flow_src_total_bytes=41887,flow_dst_total_bytes=11416 events flow_new_count=16,flow_end_count=0,flow_idle_count=16,flow_update_count=2,flow_analyse_count=8,flow_guessed_count=0,flow_detected_count=16,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=58,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=16 breed flow_breed_safe_count=8,flow_breed_acceptable_count=8,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/collectd.pcap.out b/test/results/influxd/default/collectd.pcap.out index b1e3fab40..651a089a4 100644 --- a/test/results/influxd/default/collectd.pcap.out +++ b/test/results/influxd/default/collectd.pcap.out @@ -1,4 +1,4 @@ -general json_lines=74,json_bytes=103040,flow_src_total_bytes=105984,flow_dst_total_bytes=0 +general json_lines=74,json_bytes=103264,flow_src_total_bytes=105984,flow_dst_total_bytes=0 events flow_new_count=9,flow_end_count=0,flow_idle_count=9,flow_update_count=15,flow_analyse_count=1,flow_guessed_count=3,flow_detected_count=6,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=25,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=6 breed flow_breed_safe_count=0,flow_breed_acceptable_count=6,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/corba.pcap.out b/test/results/influxd/default/corba.pcap.out index 0fcb3777f..4758d8101 100644 --- a/test/results/influxd/default/corba.pcap.out +++ b/test/results/influxd/default/corba.pcap.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=14638,flow_src_total_bytes=20910,flow_dst_total_bytes=4122 +general json_lines=19,json_bytes=14632,flow_src_total_bytes=20910,flow_dst_total_bytes=4122 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/cpha.pcap.out b/test/results/influxd/default/cpha.pcap.out index ee676b053..4883c217b 100644 --- a/test/results/influxd/default/cpha.pcap.out +++ b/test/results/influxd/default/cpha.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5077,flow_src_total_bytes=50,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5071,flow_src_total_bytes=50,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/crawler_false_positive.pcapng.out b/test/results/influxd/default/crawler_false_positive.pcapng.out index ebb60c598..5e694e726 100644 --- a/test/results/influxd/default/crawler_false_positive.pcapng.out +++ b/test/results/influxd/default/crawler_false_positive.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=8746,flow_src_total_bytes=235,flow_dst_total_bytes=799 +general json_lines=12,json_bytes=8740,flow_src_total_bytes=235,flow_dst_total_bytes=799 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/crynet.pcap.out b/test/results/influxd/default/crynet.pcap.out index 7afa2fb16..b8ea1f306 100644 --- a/test/results/influxd/default/crynet.pcap.out +++ b/test/results/influxd/default/crynet.pcap.out @@ -1,4 +1,4 @@ -general json_lines=64,json_bytes=47548,flow_src_total_bytes=8204,flow_dst_total_bytes=1463 +general json_lines=64,json_bytes=47532,flow_src_total_bytes=8204,flow_dst_total_bytes=1463 events flow_new_count=7,flow_end_count=0,flow_idle_count=7,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=35,init_count=1,reconnect_count=0,shutdown_count=1,status_count=6,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=7,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/custom_categories.pcapng.out b/test/results/influxd/default/custom_categories.pcapng.out index 627d375bf..d854d2b74 100644 --- a/test/results/influxd/default/custom_categories.pcapng.out +++ b/test/results/influxd/default/custom_categories.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=30,json_bytes=26666,flow_src_total_bytes=2156,flow_dst_total_bytes=5216 +general json_lines=30,json_bytes=26656,flow_src_total_bytes=2156,flow_dst_total_bytes=5216 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=6,flow_not_detected_count=0,flow_risky_count=2,packet_count=1,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=1,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/custom_risk_mask.pcapng.out b/test/results/influxd/default/custom_risk_mask.pcapng.out index 57f855927..59e818764 100644 --- a/test/results/influxd/default/custom_risk_mask.pcapng.out +++ b/test/results/influxd/default/custom_risk_mask.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=9162,flow_src_total_bytes=60,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=9156,flow_src_total_bytes=60,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/custom_rules_ipv6.pcapng.out b/test/results/influxd/default/custom_rules_ipv6.pcapng.out index 1bbf52dfa..3ae6a8441 100644 --- a/test/results/influxd/default/custom_rules_ipv6.pcapng.out +++ b/test/results/influxd/default/custom_rules_ipv6.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=34,json_bytes=31400,flow_src_total_bytes=3502,flow_dst_total_bytes=448 +general json_lines=34,json_bytes=31390,flow_src_total_bytes=3502,flow_dst_total_bytes=448 events flow_new_count=7,flow_end_count=0,flow_idle_count=7,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=5,flow_risky_count=0,packet_count=0,packet_flow_count=8,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=5,flow_state_finished=2 breed flow_breed_safe_count=2,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/custom_rules_same-ip_multiple_ports.pcapng.out b/test/results/influxd/default/custom_rules_same-ip_multiple_ports.pcapng.out index 30541f3c1..6641011cf 100644 --- a/test/results/influxd/default/custom_rules_same-ip_multiple_ports.pcapng.out +++ b/test/results/influxd/default/custom_rules_same-ip_multiple_ports.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=15317,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=21,json_bytes=15309,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=2,flow_risky_count=0,packet_count=0,packet_flow_count=8,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dazn.pcapng.out b/test/results/influxd/default/dazn.pcapng.out index fad141dc5..dad62a14e 100644 --- a/test/results/influxd/default/dazn.pcapng.out +++ b/test/results/influxd/default/dazn.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=27,json_bytes=29301,flow_src_total_bytes=1551,flow_dst_total_bytes=4284 +general json_lines=27,json_bytes=29295,flow_src_total_bytes=1551,flow_dst_total_bytes=4284 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=12,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=3,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dcerpc.pcap.out b/test/results/influxd/default/dcerpc.pcap.out index a43379d1a..758c69263 100644 --- a/test/results/influxd/default/dcerpc.pcap.out +++ b/test/results/influxd/default/dcerpc.pcap.out @@ -1,4 +1,4 @@ -general json_lines=29,json_bytes=29220,flow_src_total_bytes=6194,flow_dst_total_bytes=0 +general json_lines=29,json_bytes=29214,flow_src_total_bytes=6194,flow_dst_total_bytes=0 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=14,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dhcp-fuzz.pcapng.out b/test/results/influxd/default/dhcp-fuzz.pcapng.out index 74f6266b5..dce14d47f 100644 --- a/test/results/influxd/default/dhcp-fuzz.pcapng.out +++ b/test/results/influxd/default/dhcp-fuzz.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5398,flow_src_total_bytes=300,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5392,flow_src_total_bytes=300,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/diameter.pcap.out b/test/results/influxd/default/diameter.pcap.out index 39d719929..3a2d89fe2 100644 --- a/test/results/influxd/default/diameter.pcap.out +++ b/test/results/influxd/default/diameter.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=9251,flow_src_total_bytes=1012,flow_dst_total_bytes=644 +general json_lines=11,json_bytes=9245,flow_src_total_bytes=1012,flow_dst_total_bytes=644 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/discord.pcap.out b/test/results/influxd/default/discord.pcap.out index d59c59eec..49bd34bd0 100644 --- a/test/results/influxd/default/discord.pcap.out +++ b/test/results/influxd/default/discord.pcap.out @@ -1,4 +1,4 @@ -general json_lines=316,json_bytes=262135,flow_src_total_bytes=32475,flow_dst_total_bytes=48285 +general json_lines=316,json_bytes=262123,flow_src_total_bytes=32475,flow_dst_total_bytes=48285 events flow_new_count=34,flow_end_count=0,flow_idle_count=34,flow_update_count=57,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=34,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=149,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=33 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=34,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/discord_mid_flow.pcap.out b/test/results/influxd/default/discord_mid_flow.pcap.out index 350781736..6e209b1ea 100644 --- a/test/results/influxd/default/discord_mid_flow.pcap.out +++ b/test/results/influxd/default/discord_mid_flow.pcap.out @@ -1,4 +1,4 @@ -general json_lines=35,json_bytes=14085,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=35,json_bytes=14079,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=16,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=16,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dlep.pcapng.out b/test/results/influxd/default/dlep.pcapng.out index c09aa4941..dc90731c8 100644 --- a/test/results/influxd/default/dlep.pcapng.out +++ b/test/results/influxd/default/dlep.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=16,json_bytes=12344,flow_src_total_bytes=106,flow_dst_total_bytes=145 +general json_lines=16,json_bytes=12338,flow_src_total_bytes=106,flow_dst_total_bytes=145 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dlms.pcap.out b/test/results/influxd/default/dlms.pcap.out index 37fe807a9..ca672e36c 100644 --- a/test/results/influxd/default/dlms.pcap.out +++ b/test/results/influxd/default/dlms.pcap.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=13721,flow_src_total_bytes=2659,flow_dst_total_bytes=32 +general json_lines=20,json_bytes=13713,flow_src_total_bytes=2659,flow_dst_total_bytes=32 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dlt_ppp.pcap.out b/test/results/influxd/default/dlt_ppp.pcap.out index 3e9d955fe..250f683f4 100644 --- a/test/results/influxd/default/dlt_ppp.pcap.out +++ b/test/results/influxd/default/dlt_ppp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=4,json_bytes=3446,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=4,json_bytes=3442,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=1,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=0,error_unknown_datalink=0,error_unknown_l3_protocol=1,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dnp3.pcap.out b/test/results/influxd/default/dnp3.pcap.out index 4ba3ffe41..f5c4e095f 100644 --- a/test/results/influxd/default/dnp3.pcap.out +++ b/test/results/influxd/default/dnp3.pcap.out @@ -1,4 +1,4 @@ -general json_lines=81,json_bytes=64303,flow_src_total_bytes=2559,flow_dst_total_bytes=5229 +general json_lines=81,json_bytes=64283,flow_src_total_bytes=2559,flow_dst_total_bytes=5229 events flow_new_count=8,flow_end_count=2,flow_idle_count=6,flow_update_count=0,flow_analyse_count=7,flow_guessed_count=0,flow_detected_count=8,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=40,init_count=1,reconnect_count=0,shutdown_count=1,status_count=8,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=8 breed flow_breed_safe_count=0,flow_breed_acceptable_count=8,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns-exf.pcap.out b/test/results/influxd/default/dns-exf.pcap.out index 34767ed17..ee4fc12e3 100644 --- a/test/results/influxd/default/dns-exf.pcap.out +++ b/test/results/influxd/default/dns-exf.pcap.out @@ -4,7 +4,7 @@ state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=1,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=1,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=0,flow_severity_medium=0,flow_severity_high=4,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=0,flow_severity_medium=2,flow_severity_high=2,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=1,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=0,flow_l4_udp_count=1,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=1,flow_detected_count=1,flow_guessed_count=0,flow_not_detected_count=0 diff --git a/test/results/influxd/default/dns-google-nsid.pcapng.out b/test/results/influxd/default/dns-google-nsid.pcapng.out index 72956258b..d1d5e53b1 100644 --- a/test/results/influxd/default/dns-google-nsid.pcapng.out +++ b/test/results/influxd/default/dns-google-nsid.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=46,json_bytes=40054,flow_src_total_bytes=368,flow_dst_total_bytes=1054 +general json_lines=46,json_bytes=40046,flow_src_total_bytes=368,flow_dst_total_bytes=1054 events flow_new_count=7,flow_end_count=0,flow_idle_count=7,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=7,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=14,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=7 breed flow_breed_safe_count=4,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns-invalid-chars.pcap.out b/test/results/influxd/default/dns-invalid-chars.pcap.out index 9e3b79652..0c49b314b 100644 --- a/test/results/influxd/default/dns-invalid-chars.pcap.out +++ b/test/results/influxd/default/dns-invalid-chars.pcap.out @@ -1,4 +1,4 @@ -general json_lines=9,json_bytes=7436,flow_src_total_bytes=48,flow_dst_total_bytes=64 +general json_lines=9,json_bytes=7430,flow_src_total_bytes=48,flow_dst_total_bytes=64 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns-tunnel-iodine.pcap.out b/test/results/influxd/default/dns-tunnel-iodine.pcap.out index baf9b2e56..3f0e9d9d8 100644 --- a/test/results/influxd/default/dns-tunnel-iodine.pcap.out +++ b/test/results/influxd/default/dns-tunnel-iodine.pcap.out @@ -4,7 +4,7 @@ state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=1,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=1,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=1,flow_severity_medium=0,flow_severity_high=1,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=1,flow_severity_medium=1,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=1,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=0,flow_l4_udp_count=1,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=1,flow_detected_count=1,flow_guessed_count=0,flow_not_detected_count=0 diff --git a/test/results/influxd/default/dns.pcap.out b/test/results/influxd/default/dns.pcap.out index 6302e7db1..8b2ca34d6 100644 --- a/test/results/influxd/default/dns.pcap.out +++ b/test/results/influxd/default/dns.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=8601,flow_src_total_bytes=67,flow_dst_total_bytes=33 +general json_lines=14,json_bytes=8593,flow_src_total_bytes=67,flow_dst_total_bytes=33 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=2,packet_flow_count=3,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=2,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns2tcp_tunnel.pcap.out b/test/results/influxd/default/dns2tcp_tunnel.pcap.out index c5a2b6088..6e2eb4447 100644 --- a/test/results/influxd/default/dns2tcp_tunnel.pcap.out +++ b/test/results/influxd/default/dns2tcp_tunnel.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=12336,flow_src_total_bytes=1343,flow_dst_total_bytes=4713 +general json_lines=13,json_bytes=12330,flow_src_total_bytes=1343,flow_dst_total_bytes=4713 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns_ambiguous_names.pcap.out b/test/results/influxd/default/dns_ambiguous_names.pcap.out index 50b9a44cc..1619fc7bc 100644 --- a/test/results/influxd/default/dns_ambiguous_names.pcap.out +++ b/test/results/influxd/default/dns_ambiguous_names.pcap.out @@ -1,4 +1,4 @@ -general json_lines=63,json_bytes=55455,flow_src_total_bytes=509,flow_dst_total_bytes=1438 +general json_lines=63,json_bytes=55449,flow_src_total_bytes=509,flow_dst_total_bytes=1438 events flow_new_count=10,flow_end_count=0,flow_idle_count=10,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=10,flow_detection_update_count=10,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=10 breed flow_breed_safe_count=4,flow_breed_acceptable_count=4,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns_doh.pcap.out b/test/results/influxd/default/dns_doh.pcap.out index fcb99902d..7cc82a9cf 100644 --- a/test/results/influxd/default/dns_doh.pcap.out +++ b/test/results/influxd/default/dns_doh.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=11807,flow_src_total_bytes=3792,flow_dst_total_bytes=8866 +general json_lines=13,json_bytes=11801,flow_src_total_bytes=3792,flow_dst_total_bytes=8866 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns_dot.pcap.out b/test/results/influxd/default/dns_dot.pcap.out index e520ec95e..f27588afb 100644 --- a/test/results/influxd/default/dns_dot.pcap.out +++ b/test/results/influxd/default/dns_dot.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10474,flow_src_total_bytes=548,flow_dst_total_bytes=3721 +general json_lines=12,json_bytes=10468,flow_src_total_bytes=548,flow_dst_total_bytes=3721 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns_exfiltration.pcap.out b/test/results/influxd/default/dns_exfiltration.pcap.out index 42dcb0a52..49876abb2 100644 --- a/test/results/influxd/default/dns_exfiltration.pcap.out +++ b/test/results/influxd/default/dns_exfiltration.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=14279,flow_src_total_bytes=26119,flow_dst_total_bytes=34826 +general json_lines=14,json_bytes=14273,flow_src_total_bytes=26119,flow_dst_total_bytes=34826 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=1,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns_fragmented.pcap.out b/test/results/influxd/default/dns_fragmented.pcap.out index 8562eeb45..7638c8991 100644 --- a/test/results/influxd/default/dns_fragmented.pcap.out +++ b/test/results/influxd/default/dns_fragmented.pcap.out @@ -1,4 +1,4 @@ -general json_lines=153,json_bytes=146536,flow_src_total_bytes=1207,flow_dst_total_bytes=16654 +general json_lines=153,json_bytes=146526,flow_src_total_bytes=1207,flow_dst_total_bytes=16654 events flow_new_count=21,flow_end_count=2,flow_idle_count=19,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=21,flow_detection_update_count=22,flow_not_detected_count=0,flow_risky_count=10,packet_count=7,packet_flow_count=49,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=4,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=3,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=20 breed flow_breed_safe_count=0,flow_breed_acceptable_count=21,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns_invert_query.pcapng.out b/test/results/influxd/default/dns_invert_query.pcapng.out index 4c26c9b8a..b1ec3a576 100644 --- a/test/results/influxd/default/dns_invert_query.pcapng.out +++ b/test/results/influxd/default/dns_invert_query.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=5864,flow_src_total_bytes=36,flow_dst_total_bytes=12 +general json_lines=8,json_bytes=5858,flow_src_total_bytes=36,flow_dst_total_bytes=12 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dns_long_domainname.pcap.out b/test/results/influxd/default/dns_long_domainname.pcap.out index 348c79853..a45ebb0de 100644 --- a/test/results/influxd/default/dns_long_domainname.pcap.out +++ b/test/results/influxd/default/dns_long_domainname.pcap.out @@ -1,4 +1,4 @@ -general json_lines=9,json_bytes=7405,flow_src_total_bytes=61,flow_dst_total_bytes=117 +general json_lines=9,json_bytes=7399,flow_src_total_bytes=61,flow_dst_total_bytes=117 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dnscrypt-v1-and-resolver-pings.pcap.out b/test/results/influxd/default/dnscrypt-v1-and-resolver-pings.pcap.out index 26e5c6fe4..38409d0a5 100644 --- a/test/results/influxd/default/dnscrypt-v1-and-resolver-pings.pcap.out +++ b/test/results/influxd/default/dnscrypt-v1-and-resolver-pings.pcap.out @@ -1,4 +1,4 @@ -general json_lines=1539,json_bytes=1581014,flow_src_total_bytes=244416,flow_dst_total_bytes=44650 +general json_lines=1539,json_bytes=1581006,flow_src_total_bytes=244416,flow_dst_total_bytes=44650 events flow_new_count=245,flow_end_count=0,flow_idle_count=245,flow_update_count=200,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=245,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=56,packet_flow_count=488,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=56,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=245 breed flow_breed_safe_count=0,flow_breed_acceptable_count=245,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dnscrypt-v2-doh.pcap.out b/test/results/influxd/default/dnscrypt-v2-doh.pcap.out index 999405ba6..6dd8c2e5f 100644 --- a/test/results/influxd/default/dnscrypt-v2-doh.pcap.out +++ b/test/results/influxd/default/dnscrypt-v2-doh.pcap.out @@ -1,4 +1,4 @@ -general json_lines=309,json_bytes=416409,flow_src_total_bytes=32683,flow_dst_total_bytes=152737 +general json_lines=309,json_bytes=416403,flow_src_total_bytes=32683,flow_dst_total_bytes=152737 events flow_new_count=34,flow_end_count=0,flow_idle_count=34,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=34,flow_detection_update_count=36,flow_not_detected_count=0,flow_risky_count=6,packet_count=0,packet_flow_count=168,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=32 breed flow_breed_safe_count=0,flow_breed_acceptable_count=34,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dnscrypt-v2.pcap.out b/test/results/influxd/default/dnscrypt-v2.pcap.out index c6d87e6f3..bc37427fd 100644 --- a/test/results/influxd/default/dnscrypt-v2.pcap.out +++ b/test/results/influxd/default/dnscrypt-v2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=18,json_bytes=18621,flow_src_total_bytes=3264,flow_dst_total_bytes=784 +general json_lines=18,json_bytes=18615,flow_src_total_bytes=3264,flow_dst_total_bytes=784 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=6,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dnscrypt_skype_false_positive.pcapng.out b/test/results/influxd/default/dnscrypt_skype_false_positive.pcapng.out index eda2f2055..662ab988a 100644 --- a/test/results/influxd/default/dnscrypt_skype_false_positive.pcapng.out +++ b/test/results/influxd/default/dnscrypt_skype_false_positive.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=11692,flow_src_total_bytes=1536,flow_dst_total_bytes=592 +general json_lines=13,json_bytes=11684,flow_src_total_bytes=1536,flow_dst_total_bytes=592 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=1,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/doh.pcapng.out b/test/results/influxd/default/doh.pcapng.out index a54683ace..cf7558c77 100644 --- a/test/results/influxd/default/doh.pcapng.out +++ b/test/results/influxd/default/doh.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=12229,flow_src_total_bytes=1881,flow_dst_total_bytes=5821 +general json_lines=13,json_bytes=12223,flow_src_total_bytes=1881,flow_dst_total_bytes=5821 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/doq.pcapng.out b/test/results/influxd/default/doq.pcapng.out index c23f97af4..5f6f75bd2 100644 --- a/test/results/influxd/default/doq.pcapng.out +++ b/test/results/influxd/default/doq.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=18417,flow_src_total_bytes=2350,flow_dst_total_bytes=2416 +general json_lines=19,json_bytes=18411,flow_src_total_bytes=2350,flow_dst_total_bytes=2416 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/doq_adguard.pcapng.out b/test/results/influxd/default/doq_adguard.pcapng.out index 8bb13cb06..71d731fae 100644 --- a/test/results/influxd/default/doq_adguard.pcapng.out +++ b/test/results/influxd/default/doq_adguard.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=16737,flow_src_total_bytes=10308,flow_dst_total_bytes=21705 +general json_lines=12,json_bytes=16731,flow_src_total_bytes=10308,flow_dst_total_bytes=21705 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dos_win98_smb_netbeui.pcap.out b/test/results/influxd/default/dos_win98_smb_netbeui.pcap.out index a7969594e..b67ec309a 100644 --- a/test/results/influxd/default/dos_win98_smb_netbeui.pcap.out +++ b/test/results/influxd/default/dos_win98_smb_netbeui.pcap.out @@ -1,4 +1,4 @@ -general json_lines=110,json_bytes=60104,flow_src_total_bytes=5953,flow_dst_total_bytes=0 +general json_lines=110,json_bytes=60098,flow_src_total_bytes=5953,flow_dst_total_bytes=0 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=8,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=35,packet_flow_count=16,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=35,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=1,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dotenv.pcap.out b/test/results/influxd/default/dotenv.pcap.out index a7ff1758a..a4b1bf85f 100644 --- a/test/results/influxd/default/dotenv.pcap.out +++ b/test/results/influxd/default/dotenv.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9465,flow_src_total_bytes=82,flow_dst_total_bytes=231 +general json_lines=12,json_bytes=9475,flow_src_total_bytes=82,flow_dst_total_bytes=231 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/drda_db2.pcap.out b/test/results/influxd/default/drda_db2.pcap.out index 20ae310e2..8e4065e83 100644 --- a/test/results/influxd/default/drda_db2.pcap.out +++ b/test/results/influxd/default/drda_db2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9750,flow_src_total_bytes=2081,flow_dst_total_bytes=2542 +general json_lines=12,json_bytes=9744,flow_src_total_bytes=2081,flow_dst_total_bytes=2542 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dropbox.pcap.out b/test/results/influxd/default/dropbox.pcap.out index 533c0e74c..aa5d9af72 100644 --- a/test/results/influxd/default/dropbox.pcap.out +++ b/test/results/influxd/default/dropbox.pcap.out @@ -1,4 +1,4 @@ -general json_lines=132,json_bytes=114246,flow_src_total_bytes=43692,flow_dst_total_bytes=11224 +general json_lines=132,json_bytes=114236,flow_src_total_bytes=43692,flow_dst_total_bytes=11224 events flow_new_count=15,flow_end_count=0,flow_idle_count=15,flow_update_count=4,flow_analyse_count=4,flow_guessed_count=0,flow_detected_count=15,flow_detection_update_count=11,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=63,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=15 breed flow_breed_safe_count=0,flow_breed_acceptable_count=15,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dtls.pcap.out b/test/results/influxd/default/dtls.pcap.out index dac932b21..32a34148d 100644 --- a/test/results/influxd/default/dtls.pcap.out +++ b/test/results/influxd/default/dtls.pcap.out @@ -1,4 +1,4 @@ -general json_lines=9,json_bytes=8227,flow_src_total_bytes=310,flow_dst_total_bytes=0 +general json_lines=9,json_bytes=8221,flow_src_total_bytes=310,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dtls2.pcap.out b/test/results/influxd/default/dtls2.pcap.out index 158e1076e..273aca1bc 100644 --- a/test/results/influxd/default/dtls2.pcap.out +++ b/test/results/influxd/default/dtls2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=17,json_bytes=18040,flow_src_total_bytes=1658,flow_dst_total_bytes=2073 +general json_lines=17,json_bytes=18034,flow_src_total_bytes=1658,flow_dst_total_bytes=2073 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=5,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dtls_certificate.pcapng.out b/test/results/influxd/default/dtls_certificate.pcapng.out index aa3ba2a0a..db5a024d2 100644 --- a/test/results/influxd/default/dtls_certificate.pcapng.out +++ b/test/results/influxd/default/dtls_certificate.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=7863,flow_src_total_bytes=1444,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=7857,flow_src_total_bytes=1444,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dtls_certificate_fragments.pcap.out b/test/results/influxd/default/dtls_certificate_fragments.pcap.out index c7698b776..26c75761b 100644 --- a/test/results/influxd/default/dtls_certificate_fragments.pcap.out +++ b/test/results/influxd/default/dtls_certificate_fragments.pcap.out @@ -1,4 +1,4 @@ -general json_lines=25,json_bytes=30875,flow_src_total_bytes=3051,flow_dst_total_bytes=6050 +general json_lines=25,json_bytes=30867,flow_src_total_bytes=3051,flow_dst_total_bytes=6050 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=5,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=2,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dtls_mid_sessions.pcapng.out b/test/results/influxd/default/dtls_mid_sessions.pcapng.out index 6064c56e5..8ae9ad1ff 100644 --- a/test/results/influxd/default/dtls_mid_sessions.pcapng.out +++ b/test/results/influxd/default/dtls_mid_sessions.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=31,json_bytes=32984,flow_src_total_bytes=29417,flow_dst_total_bytes=4629 +general json_lines=31,json_bytes=32978,flow_src_total_bytes=29417,flow_dst_total_bytes=4629 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=16,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=4,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dtls_old_version.pcapng.out b/test/results/influxd/default/dtls_old_version.pcapng.out index 9937181ab..08be99f14 100644 --- a/test/results/influxd/default/dtls_old_version.pcapng.out +++ b/test/results/influxd/default/dtls_old_version.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=11578,flow_src_total_bytes=416,flow_dst_total_bytes=284 +general json_lines=14,json_bytes=11572,flow_src_total_bytes=416,flow_dst_total_bytes=284 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/dtls_session_id_and_coockie_both.pcap.out b/test/results/influxd/default/dtls_session_id_and_coockie_both.pcap.out index d9b292a04..43d4f1b42 100644 --- a/test/results/influxd/default/dtls_session_id_and_coockie_both.pcap.out +++ b/test/results/influxd/default/dtls_session_id_and_coockie_both.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=9589,flow_src_total_bytes=218,flow_dst_total_bytes=218 +general json_lines=11,json_bytes=9583,flow_src_total_bytes=218,flow_dst_total_bytes=218 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/edonkey.pcap.out b/test/results/influxd/default/edonkey.pcap.out index 37bf45a78..2c0579a17 100644 --- a/test/results/influxd/default/edonkey.pcap.out +++ b/test/results/influxd/default/edonkey.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7878,flow_src_total_bytes=248,flow_dst_total_bytes=792 +general json_lines=11,json_bytes=7872,flow_src_total_bytes=248,flow_dst_total_bytes=792 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=1,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/elasticsearch.pcap.out b/test/results/influxd/default/elasticsearch.pcap.out index 57d5863e5..4180a73ca 100644 --- a/test/results/influxd/default/elasticsearch.pcap.out +++ b/test/results/influxd/default/elasticsearch.pcap.out @@ -1,4 +1,4 @@ -general json_lines=44,json_bytes=38548,flow_src_total_bytes=8322,flow_dst_total_bytes=1267 +general json_lines=44,json_bytes=38540,flow_src_total_bytes=8322,flow_dst_total_bytes=1267 events flow_new_count=7,flow_end_count=1,flow_idle_count=6,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=19,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=7,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/elf.pcap.out b/test/results/influxd/default/elf.pcap.out new file mode 100644 index 000000000..79663b919 --- /dev/null +++ b/test/results/influxd/default/elf.pcap.out @@ -0,0 +1,11 @@ +general json_lines=16,json_bytes=45104,flow_src_total_bytes=62064,flow_dst_total_bytes=0 +events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=2,flow_risky_count=0,packet_count=0,packet_flow_count=7,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +state flow_state_info=2,flow_state_finished=0 +breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 +category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=0,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 +confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=0,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 +severity flow_severity_low=0,flow_severity_medium=0,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +layer3 flow_l3_ip4_count=2,flow_l3_ip6_count=0,flow_l3_other_count=0 +layer4 flow_l4_tcp_count=1,flow_l4_udp_count=1,flow_l4_icmp_count=0,flow_l4_other_count=0 +detection flow_active_count=2,flow_detected_count=0,flow_guessed_count=0,flow_not_detected_count=2 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/emotet.pcap.out b/test/results/influxd/default/emotet.pcap.out index 1bfdbf697..bc5713d66 100644 --- a/test/results/influxd/default/emotet.pcap.out +++ b/test/results/influxd/default/emotet.pcap.out @@ -1,11 +1,11 @@ -general json_lines=60,json_bytes=52881,flow_src_total_bytes=17972,flow_dst_total_bytes=71884 +general json_lines=60,json_bytes=53381,flow_src_total_bytes=17972,flow_dst_total_bytes=71884 events flow_new_count=6,flow_end_count=1,flow_idle_count=5,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=4,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=5 breed flow_breed_safe_count=2,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=1,flow_category_data_transfer_count=0,flow_category_web_count=5,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=0,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=6,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=4,flow_severity_medium=3,flow_severity_high=3,flow_severity_severe=2,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=4,flow_severity_medium=5,flow_severity_high=3,flow_severity_severe=2,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=6,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=6,flow_l4_udp_count=0,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=6,flow_detected_count=6,flow_guessed_count=0,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=2,flow_risk_5_count=0,flow_risk_6_count=1,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=2,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=4,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=4,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=2,flow_risk_5_count=0,flow_risk_6_count=1,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=2,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=4,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=4,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=2 diff --git a/test/results/influxd/default/encrypted_sni.pcap.out b/test/results/influxd/default/encrypted_sni.pcap.out index e2297b1a1..5dc30df47 100644 --- a/test/results/influxd/default/encrypted_sni.pcap.out +++ b/test/results/influxd/default/encrypted_sni.pcap.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=15362,flow_src_total_bytes=2148,flow_dst_total_bytes=0 +general json_lines=15,json_bytes=15356,flow_src_total_bytes=2148,flow_dst_total_bytes=0 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=3,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=0 breed flow_breed_safe_count=3,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/epicgames.pcapng.out b/test/results/influxd/default/epicgames.pcapng.out index e0334fdad..1435973d8 100644 --- a/test/results/influxd/default/epicgames.pcapng.out +++ b/test/results/influxd/default/epicgames.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=35,json_bytes=24744,flow_src_total_bytes=5959,flow_dst_total_bytes=1825 +general json_lines=35,json_bytes=24738,flow_src_total_bytes=5959,flow_dst_total_bytes=1825 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=4,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/esp.pcapng.out b/test/results/influxd/default/esp.pcapng.out index 6e4d5dc03..8323219a0 100644 --- a/test/results/influxd/default/esp.pcapng.out +++ b/test/results/influxd/default/esp.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=12330,flow_src_total_bytes=834,flow_dst_total_bytes=786 +general json_lines=15,json_bytes=12324,flow_src_total_bytes=834,flow_dst_total_bytes=786 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=6,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=2,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ethereum.pcap.out b/test/results/influxd/default/ethereum.pcap.out index 1e9b8e438..6fc8c5c42 100644 --- a/test/results/influxd/default/ethereum.pcap.out +++ b/test/results/influxd/default/ethereum.pcap.out @@ -1,4 +1,4 @@ -general json_lines=573,json_bytes=509231,flow_src_total_bytes=43570,flow_dst_total_bytes=43398 +general json_lines=573,json_bytes=509225,flow_src_total_bytes=43570,flow_dst_total_bytes=43398 events flow_new_count=74,flow_end_count=47,flow_idle_count=27,flow_update_count=0,flow_analyse_count=33,flow_guessed_count=3,flow_detected_count=71,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=315,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=71 breed flow_breed_safe_count=0,flow_breed_acceptable_count=71,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ethernetIP.pcap.out b/test/results/influxd/default/ethernetIP.pcap.out index 8532488ce..bb08724b1 100644 --- a/test/results/influxd/default/ethernetIP.pcap.out +++ b/test/results/influxd/default/ethernetIP.pcap.out @@ -1,4 +1,4 @@ -general json_lines=35,json_bytes=28701,flow_src_total_bytes=6348,flow_dst_total_bytes=5528 +general json_lines=35,json_bytes=28695,flow_src_total_bytes=6348,flow_dst_total_bytes=5528 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ethersbus.pcap.out b/test/results/influxd/default/ethersbus.pcap.out index 153b0030d..2ef88d6c5 100644 --- a/test/results/influxd/default/ethersbus.pcap.out +++ b/test/results/influxd/default/ethersbus.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7314,flow_src_total_bytes=162,flow_dst_total_bytes=230 +general json_lines=11,json_bytes=7308,flow_src_total_bytes=162,flow_dst_total_bytes=230 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ethersio.pcap.out b/test/results/influxd/default/ethersio.pcap.out index 314b36834..26a85b645 100644 --- a/test/results/influxd/default/ethersio.pcap.out +++ b/test/results/influxd/default/ethersio.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9680,flow_src_total_bytes=1714,flow_dst_total_bytes=0 +general json_lines=12,json_bytes=9674,flow_src_total_bytes=1714,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/exe_download.pcap.out b/test/results/influxd/default/exe_download.pcap.out index af6e2babd..b56e5e80e 100644 --- a/test/results/influxd/default/exe_download.pcap.out +++ b/test/results/influxd/default/exe_download.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9960,flow_src_total_bytes=153,flow_dst_total_bytes=13620 +general json_lines=12,json_bytes=10210,flow_src_total_bytes=153,flow_dst_total_bytes=13620 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 @@ -8,4 +8,4 @@ severity flow_severity_low=1,flow_severity_medium=0,flow_severity_high=2,flow_se layer3 flow_l3_ip4_count=1,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=1,flow_l4_udp_count=0,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=1,flow_detected_count=1,flow_guessed_count=0,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=1,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=2,flow_risk_12_count=2,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=1,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=1,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=2,flow_risk_12_count=2,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=1,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=1 diff --git a/test/results/influxd/default/exe_download_as_png.pcap.out b/test/results/influxd/default/exe_download_as_png.pcap.out index 902492507..0e3c90b4d 100644 --- a/test/results/influxd/default/exe_download_as_png.pcap.out +++ b/test/results/influxd/default/exe_download_as_png.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=12231,flow_src_total_bytes=149,flow_dst_total_bytes=88660 +general json_lines=13,json_bytes=12225,flow_src_total_bytes=149,flow_dst_total_bytes=88660 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/facebook.pcap.out b/test/results/influxd/default/facebook.pcap.out index 56de8ca4e..f33f73fda 100644 --- a/test/results/influxd/default/facebook.pcap.out +++ b/test/results/influxd/default/facebook.pcap.out @@ -1,4 +1,4 @@ -general json_lines=23,json_bytes=20862,flow_src_total_bytes=2145,flow_dst_total_bytes=24374 +general json_lines=23,json_bytes=20856,flow_src_total_bytes=2145,flow_dst_total_bytes=24374 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/fastcgi.pcap.out b/test/results/influxd/default/fastcgi.pcap.out index 53cc94c09..79d73f2b3 100644 --- a/test/results/influxd/default/fastcgi.pcap.out +++ b/test/results/influxd/default/fastcgi.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10892,flow_src_total_bytes=1095,flow_dst_total_bytes=64400 +general json_lines=12,json_bytes=10886,flow_src_total_bytes=1095,flow_dst_total_bytes=64400 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/fins.pcap.out b/test/results/influxd/default/fins.pcap.out index 0ff11cb2d..1240713cb 100644 --- a/test/results/influxd/default/fins.pcap.out +++ b/test/results/influxd/default/fins.pcap.out @@ -1,4 +1,4 @@ -general json_lines=50,json_bytes=28316,flow_src_total_bytes=6659,flow_dst_total_bytes=252 +general json_lines=50,json_bytes=28308,flow_src_total_bytes=6659,flow_dst_total_bytes=252 events flow_new_count=3,flow_end_count=1,flow_idle_count=2,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=12,packet_flow_count=12,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=12,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/firefox.pcap.out b/test/results/influxd/default/firefox.pcap.out index 201ea0eb4..a847053a6 100644 --- a/test/results/influxd/default/firefox.pcap.out +++ b/test/results/influxd/default/firefox.pcap.out @@ -1,4 +1,4 @@ -general json_lines=57,json_bytes=49168,flow_src_total_bytes=7370,flow_dst_total_bytes=44229 +general json_lines=57,json_bytes=49162,flow_src_total_bytes=7370,flow_dst_total_bytes=44229 events flow_new_count=6,flow_end_count=0,flow_idle_count=6,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=6,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=5,flow_state_finished=1 breed flow_breed_safe_count=6,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/fix.pcap.out b/test/results/influxd/default/fix.pcap.out index e449793a4..046a5a910 100644 --- a/test/results/influxd/default/fix.pcap.out +++ b/test/results/influxd/default/fix.pcap.out @@ -1,4 +1,4 @@ -general json_lines=104,json_bytes=80498,flow_src_total_bytes=34736,flow_dst_total_bytes=2850 +general json_lines=104,json_bytes=80492,flow_src_total_bytes=34736,flow_dst_total_bytes=2850 events flow_new_count=12,flow_end_count=0,flow_idle_count=12,flow_update_count=0,flow_analyse_count=5,flow_guessed_count=0,flow_detected_count=12,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=60,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=12 breed flow_breed_safe_count=12,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/fix2.pcap.out b/test/results/influxd/default/fix2.pcap.out index 17c2f5e3d..582d630fd 100644 --- a/test/results/influxd/default/fix2.pcap.out +++ b/test/results/influxd/default/fix2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=17079,flow_src_total_bytes=24259,flow_dst_total_bytes=43697 +general json_lines=21,json_bytes=17073,flow_src_total_bytes=24259,flow_dst_total_bytes=43697 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=2,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/flute.pcapng.out b/test/results/influxd/default/flute.pcapng.out index 7e5464ceb..26da738b7 100644 --- a/test/results/influxd/default/flute.pcapng.out +++ b/test/results/influxd/default/flute.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=8219,flow_src_total_bytes=1179,flow_dst_total_bytes=0 +general json_lines=10,json_bytes=8213,flow_src_total_bytes=1179,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/forticlient.pcap.out b/test/results/influxd/default/forticlient.pcap.out index c61f9030c..e4d412b84 100644 --- a/test/results/influxd/default/forticlient.pcap.out +++ b/test/results/influxd/default/forticlient.pcap.out @@ -1,4 +1,4 @@ -general json_lines=54,json_bytes=53525,flow_src_total_bytes=73125,flow_dst_total_bytes=225634 +general json_lines=54,json_bytes=53519,flow_src_total_bytes=73125,flow_dst_total_bytes=225634 events flow_new_count=5,flow_end_count=4,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=10,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=25,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=4,flow_state_finished=1 breed flow_breed_safe_count=5,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ftp-start-tls.pcap.out b/test/results/influxd/default/ftp-start-tls.pcap.out index 3de78ca07..73c95b1a9 100644 --- a/test/results/influxd/default/ftp-start-tls.pcap.out +++ b/test/results/influxd/default/ftp-start-tls.pcap.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=14722,flow_src_total_bytes=856,flow_dst_total_bytes=3834 +general json_lines=15,json_bytes=14716,flow_src_total_bytes=856,flow_dst_total_bytes=3834 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=1,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ftp.pcap.out b/test/results/influxd/default/ftp.pcap.out index 56c22a31a..2b9d6a21b 100644 --- a/test/results/influxd/default/ftp.pcap.out +++ b/test/results/influxd/default/ftp.pcap.out @@ -1,11 +1,11 @@ -general json_lines=29,json_bytes=26724,flow_src_total_bytes=174,flow_dst_total_bytes=111534 -events flow_new_count=3,flow_end_count=2,flow_idle_count=1,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=2,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +general json_lines=29,json_bytes=26454,flow_src_total_bytes=174,flow_dst_total_bytes=111534 +events flow_new_count=3,flow_end_count=2,flow_idle_count=1,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=1,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=1,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=2,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=0,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=2,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=1,flow_severity_medium=1,flow_severity_high=1,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=1,flow_severity_medium=0,flow_severity_high=1,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=3,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=3,flow_l4_udp_count=0,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=3,flow_detected_count=2,flow_guessed_count=0,flow_not_detected_count=1 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=1,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=1,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=1,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=1,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=1,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/ftp_failed.pcap.out b/test/results/influxd/default/ftp_failed.pcap.out index c0b40946f..78d2bfe19 100644 --- a/test/results/influxd/default/ftp_failed.pcap.out +++ b/test/results/influxd/default/ftp_failed.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8112,flow_src_total_bytes=24,flow_dst_total_bytes=112 +general json_lines=11,json_bytes=8106,flow_src_total_bytes=24,flow_dst_total_bytes=112 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=1,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/fuzz-2006-06-26-2594.pcap.out b/test/results/influxd/default/fuzz-2006-06-26-2594.pcap.out index 519d7d630..bd73afdf2 100644 --- a/test/results/influxd/default/fuzz-2006-06-26-2594.pcap.out +++ b/test/results/influxd/default/fuzz-2006-06-26-2594.pcap.out @@ -1,4 +1,4 @@ -general json_lines=2134,json_bytes=1900503,flow_src_total_bytes=44774,flow_dst_total_bytes=16036 +general json_lines=2134,json_bytes=1900493,flow_src_total_bytes=44774,flow_dst_total_bytes=16036 events flow_new_count=257,flow_end_count=2,flow_idle_count=255,flow_update_count=666,flow_analyse_count=2,flow_guessed_count=27,flow_detected_count=191,flow_detection_update_count=105,flow_not_detected_count=39,flow_risky_count=86,packet_count=79,packet_flow_count=427,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=6,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=35,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=37,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=1,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=175,flow_state_finished=82 breed flow_breed_safe_count=1,flow_breed_acceptable_count=186,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=4,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/fuzz-2006-09-29-28586.pcap.out b/test/results/influxd/default/fuzz-2006-09-29-28586.pcap.out index 595fad997..19121f7e0 100644 --- a/test/results/influxd/default/fuzz-2006-09-29-28586.pcap.out +++ b/test/results/influxd/default/fuzz-2006-09-29-28586.pcap.out @@ -1,4 +1,4 @@ -general json_lines=219,json_bytes=190554,flow_src_total_bytes=14756,flow_dst_total_bytes=10874 +general json_lines=219,json_bytes=190548,flow_src_total_bytes=14756,flow_dst_total_bytes=10874 events flow_new_count=39,flow_end_count=12,flow_idle_count=27,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=23,flow_detected_count=12,flow_detection_update_count=1,flow_not_detected_count=4,flow_risky_count=11,packet_count=8,packet_flow_count=82,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=2,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=6,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=35,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=12,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/fuzz-2020-02-16-11740.pcap.out b/test/results/influxd/default/fuzz-2020-02-16-11740.pcap.out index ce30b1233..0ead718c0 100644 --- a/test/results/influxd/default/fuzz-2020-02-16-11740.pcap.out +++ b/test/results/influxd/default/fuzz-2020-02-16-11740.pcap.out @@ -1,4 +1,4 @@ -general json_lines=615,json_bytes=548029,flow_src_total_bytes=109463,flow_dst_total_bytes=20335 +general json_lines=615,json_bytes=548015,flow_src_total_bytes=109463,flow_dst_total_bytes=20335 events flow_new_count=79,flow_end_count=0,flow_idle_count=79,flow_update_count=133,flow_analyse_count=1,flow_guessed_count=3,flow_detected_count=57,flow_detection_update_count=0,flow_not_detected_count=19,flow_risky_count=0,packet_count=65,packet_flow_count=107,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=11,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=27,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=27,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=22,flow_state_finished=57 breed flow_breed_safe_count=0,flow_breed_acceptable_count=57,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/fuzz-2021-06-07-c6c72a0a56.pcap.out b/test/results/influxd/default/fuzz-2021-06-07-c6c72a0a56.pcap.out index 5d1c979c4..1dcbed781 100644 --- a/test/results/influxd/default/fuzz-2021-06-07-c6c72a0a56.pcap.out +++ b/test/results/influxd/default/fuzz-2021-06-07-c6c72a0a56.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=3408,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=3402,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=2,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=1,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=1,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/fuzz-2021-10-13.pcap.out b/test/results/influxd/default/fuzz-2021-10-13.pcap.out index d702d17e4..71356932d 100644 --- a/test/results/influxd/default/fuzz-2021-10-13.pcap.out +++ b/test/results/influxd/default/fuzz-2021-10-13.pcap.out @@ -1,4 +1,4 @@ -general json_lines=5,json_bytes=2771,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=5,json_bytes=2765,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=1,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=1,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gaijin_mobile_mixed.pcap.out b/test/results/influxd/default/gaijin_mobile_mixed.pcap.out index 1ced12666..41c8adeda 100644 --- a/test/results/influxd/default/gaijin_mobile_mixed.pcap.out +++ b/test/results/influxd/default/gaijin_mobile_mixed.pcap.out @@ -1,4 +1,4 @@ -general json_lines=30,json_bytes=24840,flow_src_total_bytes=1542,flow_dst_total_bytes=8296 +general json_lines=30,json_bytes=24832,flow_src_total_bytes=1542,flow_dst_total_bytes=8296 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=3,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gaijin_warthunder.pcap.out b/test/results/influxd/default/gaijin_warthunder.pcap.out index 63341fbc9..c1b9db7a1 100644 --- a/test/results/influxd/default/gaijin_warthunder.pcap.out +++ b/test/results/influxd/default/gaijin_warthunder.pcap.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=14243,flow_src_total_bytes=887,flow_dst_total_bytes=58 +general json_lines=19,json_bytes=14237,flow_src_total_bytes=887,flow_dst_total_bytes=58 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gearman.pcap.out b/test/results/influxd/default/gearman.pcap.out index 34fc33ca2..89cbf3efd 100644 --- a/test/results/influxd/default/gearman.pcap.out +++ b/test/results/influxd/default/gearman.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7289,flow_src_total_bytes=26,flow_dst_total_bytes=12 +general json_lines=11,json_bytes=7283,flow_src_total_bytes=26,flow_dst_total_bytes=12 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/geforcenow.pcapng.out b/test/results/influxd/default/geforcenow.pcapng.out index a85edfc5c..f13139dfa 100644 --- a/test/results/influxd/default/geforcenow.pcapng.out +++ b/test/results/influxd/default/geforcenow.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=27,json_bytes=32033,flow_src_total_bytes=9542,flow_dst_total_bytes=53610 +general json_lines=27,json_bytes=32027,flow_src_total_bytes=9542,flow_dst_total_bytes=53610 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=6,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/genshin-impact.pcap.out b/test/results/influxd/default/genshin-impact.pcap.out index f856ff4cf..fb519b8e0 100644 --- a/test/results/influxd/default/genshin-impact.pcap.out +++ b/test/results/influxd/default/genshin-impact.pcap.out @@ -1,4 +1,4 @@ -general json_lines=56,json_bytes=39820,flow_src_total_bytes=8247,flow_dst_total_bytes=5700 +general json_lines=56,json_bytes=39804,flow_src_total_bytes=8247,flow_dst_total_bytes=5700 events flow_new_count=6,flow_end_count=0,flow_idle_count=6,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=6,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=6 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=6,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/git.pcap.out b/test/results/influxd/default/git.pcap.out index 1c4c23362..d06f42d4f 100644 --- a/test/results/influxd/default/git.pcap.out +++ b/test/results/influxd/default/git.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9565,flow_src_total_bytes=605,flow_dst_total_bytes=67444 +general json_lines=12,json_bytes=9559,flow_src_total_bytes=605,flow_dst_total_bytes=67444 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gnutella.pcap.out b/test/results/influxd/default/gnutella.pcap.out index 0633e1158..6f1d4127c 100644 --- a/test/results/influxd/default/gnutella.pcap.out +++ b/test/results/influxd/default/gnutella.pcap.out @@ -1,4 +1,4 @@ -general json_lines=6866,json_bytes=5752913,flow_src_total_bytes=149308,flow_dst_total_bytes=234286 +general json_lines=6866,json_bytes=5753419,flow_src_total_bytes=149308,flow_dst_total_bytes=234286 events flow_new_count=801,flow_end_count=66,flow_idle_count=735,flow_update_count=2519,flow_analyse_count=6,flow_guessed_count=1,flow_detected_count=401,flow_detection_update_count=5,flow_not_detected_count=399,flow_risky_count=359,packet_count=1,packet_flow_count=1928,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=1,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=405,flow_state_finished=396 breed flow_breed_safe_count=1,flow_breed_acceptable_count=42,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=356,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=2,flow_breed_unrated_count=0,flow_breed_unknown_count=0 @@ -8,4 +8,4 @@ severity flow_severity_low=362,flow_severity_medium=8,flow_severity_high=0,flow_ layer3 flow_l3_ip4_count=787,flow_l3_ip6_count=14,flow_l3_other_count=0 layer4 flow_l4_tcp_count=137,flow_l4_udp_count=653,flow_l4_icmp_count=5,flow_l4_other_count=6 detection flow_active_count=801,flow_detected_count=401,flow_guessed_count=1,flow_not_detected_count=399 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=7,flow_risk_6_count=1,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=1,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=5,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=2,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=360,flow_risk_23_count=0,flow_risk_24_count=2,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=7,flow_risk_6_count=1,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=1,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=5,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=2,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=360,flow_risk_23_count=0,flow_risk_24_count=2,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=2 diff --git a/test/results/influxd/default/google_chat.pcapng.out b/test/results/influxd/default/google_chat.pcapng.out index 66b8c11eb..226f91c40 100644 --- a/test/results/influxd/default/google_chat.pcapng.out +++ b/test/results/influxd/default/google_chat.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9887,flow_src_total_bytes=663,flow_dst_total_bytes=2800 +general json_lines=12,json_bytes=9881,flow_src_total_bytes=663,flow_dst_total_bytes=2800 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/google_meet.pcapng.out b/test/results/influxd/default/google_meet.pcapng.out index 5484b1aeb..dafb9d2a4 100644 --- a/test/results/influxd/default/google_meet.pcapng.out +++ b/test/results/influxd/default/google_meet.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=22246,flow_src_total_bytes=1824,flow_dst_total_bytes=6400 +general json_lines=20,json_bytes=22240,flow_src_total_bytes=1824,flow_dst_total_bytes=6400 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/google_ssl.pcap.out b/test/results/influxd/default/google_ssl.pcap.out index 8155de817..deed4e798 100644 --- a/test/results/influxd/default/google_ssl.pcap.out +++ b/test/results/influxd/default/google_ssl.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7280,flow_src_total_bytes=644,flow_dst_total_bytes=6924 +general json_lines=11,json_bytes=7274,flow_src_total_bytes=644,flow_dst_total_bytes=6924 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/googledns_android10.pcap.out b/test/results/influxd/default/googledns_android10.pcap.out index 5e9565331..b275691ed 100644 --- a/test/results/influxd/default/googledns_android10.pcap.out +++ b/test/results/influxd/default/googledns_android10.pcap.out @@ -1,4 +1,4 @@ -general json_lines=77,json_bytes=70746,flow_src_total_bytes=21058,flow_dst_total_bytes=76784 +general json_lines=77,json_bytes=70740,flow_src_total_bytes=21058,flow_dst_total_bytes=76784 events flow_new_count=8,flow_end_count=6,flow_idle_count=2,flow_update_count=2,flow_analyse_count=3,flow_guessed_count=2,flow_detected_count=6,flow_detection_update_count=9,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=36,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=4,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=6,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gquic.pcap.out b/test/results/influxd/default/gquic.pcap.out index 65016e81e..535b5cd40 100644 --- a/test/results/influxd/default/gquic.pcap.out +++ b/test/results/influxd/default/gquic.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=7048,flow_src_total_bytes=1350,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=7042,flow_src_total_bytes=1350,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gquic_only_from_server.pcap.out b/test/results/influxd/default/gquic_only_from_server.pcap.out index a01c4a1d3..a84328604 100644 --- a/test/results/influxd/default/gquic_only_from_server.pcap.out +++ b/test/results/influxd/default/gquic_only_from_server.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=14745,flow_src_total_bytes=38360,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=14739,flow_src_total_bytes=38360,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gre.pcapng.out b/test/results/influxd/default/gre.pcapng.out index 3099625c5..631d5f57c 100644 --- a/test/results/influxd/default/gre.pcapng.out +++ b/test/results/influxd/default/gre.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5416,flow_src_total_bytes=346,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5410,flow_src_total_bytes=346,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gtp_c.pcap.out b/test/results/influxd/default/gtp_c.pcap.out index 7bfd5af8d..c7e9668d7 100644 --- a/test/results/influxd/default/gtp_c.pcap.out +++ b/test/results/influxd/default/gtp_c.pcap.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=7318,flow_src_total_bytes=281,flow_dst_total_bytes=235 +general json_lines=10,json_bytes=7312,flow_src_total_bytes=281,flow_dst_total_bytes=235 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gtp_false_positive.pcapng.out b/test/results/influxd/default/gtp_false_positive.pcapng.out index 8b0f23611..3c30cf939 100644 --- a/test/results/influxd/default/gtp_false_positive.pcapng.out +++ b/test/results/influxd/default/gtp_false_positive.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=22,json_bytes=16450,flow_src_total_bytes=552,flow_dst_total_bytes=0 +general json_lines=22,json_bytes=16440,flow_src_total_bytes=552,flow_dst_total_bytes=0 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=1,flow_analyse_count=0,flow_guessed_count=2,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=0,packet_count=0,packet_flow_count=7,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/gtp_prime.pcapng.out b/test/results/influxd/default/gtp_prime.pcapng.out index eb2041b1a..908e7ebdf 100644 --- a/test/results/influxd/default/gtp_prime.pcapng.out +++ b/test/results/influxd/default/gtp_prime.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=5,json_bytes=2880,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=5,json_bytes=2874,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=1,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=1,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/h323-overflow.pcap.out b/test/results/influxd/default/h323-overflow.pcap.out index eb0999072..119df191d 100644 --- a/test/results/influxd/default/h323-overflow.pcap.out +++ b/test/results/influxd/default/h323-overflow.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5058,flow_src_total_bytes=4,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5052,flow_src_total_bytes=4,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/h323.pcap.out b/test/results/influxd/default/h323.pcap.out index 6727be143..91338c1d6 100644 --- a/test/results/influxd/default/h323.pcap.out +++ b/test/results/influxd/default/h323.pcap.out @@ -1,4 +1,4 @@ -general json_lines=16,json_bytes=12122,flow_src_total_bytes=692,flow_dst_total_bytes=605 +general json_lines=16,json_bytes=12116,flow_src_total_bytes=692,flow_dst_total_bytes=605 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=7,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/h323_tcp.pcap.out b/test/results/influxd/default/h323_tcp.pcap.out index bbd5fa2a9..8367870d0 100644 --- a/test/results/influxd/default/h323_tcp.pcap.out +++ b/test/results/influxd/default/h323_tcp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7547,flow_src_total_bytes=225,flow_dst_total_bytes=160 +general json_lines=11,json_bytes=7541,flow_src_total_bytes=225,flow_dst_total_bytes=160 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/haproxy.pcap.out b/test/results/influxd/default/haproxy.pcap.out index 5ab6a47f1..df6b7c63f 100644 --- a/test/results/influxd/default/haproxy.pcap.out +++ b/test/results/influxd/default/haproxy.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5481,flow_src_total_bytes=309,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5475,flow_src_total_bytes=309,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/hart_ip.pcap.out b/test/results/influxd/default/hart_ip.pcap.out index 59f374f82..ad7d4a3c9 100644 --- a/test/results/influxd/default/hart_ip.pcap.out +++ b/test/results/influxd/default/hart_ip.pcap.out @@ -1,4 +1,4 @@ -general json_lines=24,json_bytes=18169,flow_src_total_bytes=581,flow_dst_total_bytes=555 +general json_lines=24,json_bytes=18163,flow_src_total_bytes=581,flow_dst_total_bytes=555 events flow_new_count=3,flow_end_count=1,flow_idle_count=2,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=11,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/heuristic_tcp_ack_payload.pcap.out b/test/results/influxd/default/heuristic_tcp_ack_payload.pcap.out index 794017364..689e91241 100644 --- a/test/results/influxd/default/heuristic_tcp_ack_payload.pcap.out +++ b/test/results/influxd/default/heuristic_tcp_ack_payload.pcap.out @@ -1,4 +1,4 @@ -general json_lines=57,json_bytes=45401,flow_src_total_bytes=14860,flow_dst_total_bytes=81741 +general json_lines=57,json_bytes=45391,flow_src_total_bytes=14860,flow_dst_total_bytes=81741 events flow_new_count=6,flow_end_count=5,flow_idle_count=1,flow_update_count=0,flow_analyse_count=4,flow_guessed_count=6,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=6,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/hislip.pcap.out b/test/results/influxd/default/hislip.pcap.out index 6420c60c5..76281a19f 100644 --- a/test/results/influxd/default/hislip.pcap.out +++ b/test/results/influxd/default/hislip.pcap.out @@ -1,4 +1,4 @@ -general json_lines=39,json_bytes=32630,flow_src_total_bytes=830,flow_dst_total_bytes=1033 +general json_lines=39,json_bytes=32624,flow_src_total_bytes=830,flow_dst_total_bytes=1033 events flow_new_count=4,flow_end_count=4,flow_idle_count=0,flow_update_count=0,flow_analyse_count=4,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/hl7.pcap.out b/test/results/influxd/default/hl7.pcap.out index 55214d544..cb5e79e6e 100644 --- a/test/results/influxd/default/hl7.pcap.out +++ b/test/results/influxd/default/hl7.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8328,flow_src_total_bytes=477,flow_dst_total_bytes=168 +general json_lines=11,json_bytes=8322,flow_src_total_bytes=477,flow_dst_total_bytes=168 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/hots.pcapng.out b/test/results/influxd/default/hots.pcapng.out index 611b8561a..0e92c8775 100644 --- a/test/results/influxd/default/hots.pcapng.out +++ b/test/results/influxd/default/hots.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=32,json_bytes=25608,flow_src_total_bytes=5321,flow_dst_total_bytes=624 +general json_lines=32,json_bytes=25598,flow_src_total_bytes=5321,flow_dst_total_bytes=624 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=1,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=3,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/hpvirtgrp.pcap.out b/test/results/influxd/default/hpvirtgrp.pcap.out index 8b79827c5..efa234bca 100644 --- a/test/results/influxd/default/hpvirtgrp.pcap.out +++ b/test/results/influxd/default/hpvirtgrp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=82,json_bytes=57222,flow_src_total_bytes=3797,flow_dst_total_bytes=1308 +general json_lines=82,json_bytes=57202,flow_src_total_bytes=3797,flow_dst_total_bytes=1308 events flow_new_count=9,flow_end_count=0,flow_idle_count=9,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=9,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=45,init_count=1,reconnect_count=0,shutdown_count=1,status_count=8,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=9 breed flow_breed_safe_count=0,flow_breed_acceptable_count=9,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/hsrp0.pcap.out b/test/results/influxd/default/hsrp0.pcap.out index 02529248e..c8b7019e3 100644 --- a/test/results/influxd/default/hsrp0.pcap.out +++ b/test/results/influxd/default/hsrp0.pcap.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=14756,flow_src_total_bytes=80,flow_dst_total_bytes=0 +general json_lines=19,json_bytes=14750,flow_src_total_bytes=80,flow_dst_total_bytes=0 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/hsrp2.pcap.out b/test/results/influxd/default/hsrp2.pcap.out index 590280f8e..4d2510fe4 100644 --- a/test/results/influxd/default/hsrp2.pcap.out +++ b/test/results/influxd/default/hsrp2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8394,flow_src_total_bytes=104,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=8388,flow_src_total_bytes=104,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/hsrp2_ipv6.pcapng.out b/test/results/influxd/default/hsrp2_ipv6.pcapng.out index efdcb5e23..54778cf99 100644 --- a/test/results/influxd/default/hsrp2_ipv6.pcapng.out +++ b/test/results/influxd/default/hsrp2_ipv6.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=23,json_bytes=18281,flow_src_total_bytes=1998,flow_dst_total_bytes=0 +general json_lines=23,json_bytes=18275,flow_src_total_bytes=1998,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=4,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http-crash-content-disposition.pcap.out b/test/results/influxd/default/http-crash-content-disposition.pcap.out index bf2c65e7d..089c86030 100644 --- a/test/results/influxd/default/http-crash-content-disposition.pcap.out +++ b/test/results/influxd/default/http-crash-content-disposition.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8328,flow_src_total_bytes=475,flow_dst_total_bytes=2369 +general json_lines=11,json_bytes=8322,flow_src_total_bytes=475,flow_dst_total_bytes=2369 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http-lines-split.pcap.out b/test/results/influxd/default/http-lines-split.pcap.out index ee6b35ffb..8f109d38b 100644 --- a/test/results/influxd/default/http-lines-split.pcap.out +++ b/test/results/influxd/default/http-lines-split.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9070,flow_src_total_bytes=67,flow_dst_total_bytes=1632 +general json_lines=12,json_bytes=9064,flow_src_total_bytes=67,flow_dst_total_bytes=1632 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http-manipulated.pcap.out b/test/results/influxd/default/http-manipulated.pcap.out index ad61cfb2e..75a2b8772 100644 --- a/test/results/influxd/default/http-manipulated.pcap.out +++ b/test/results/influxd/default/http-manipulated.pcap.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=14920,flow_src_total_bytes=797,flow_dst_total_bytes=42034 +general json_lines=20,json_bytes=14912,flow_src_total_bytes=797,flow_dst_total_bytes=42034 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http-proxy.pcapng.out b/test/results/influxd/default/http-proxy.pcapng.out index 47aeedd7e..9b3026bf9 100644 --- a/test/results/influxd/default/http-proxy.pcapng.out +++ b/test/results/influxd/default/http-proxy.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7933,flow_src_total_bytes=294,flow_dst_total_bytes=716 +general json_lines=11,json_bytes=7927,flow_src_total_bytes=294,flow_dst_total_bytes=716 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http.pcapng.out b/test/results/influxd/default/http.pcapng.out index c30a65709..69fddeba7 100644 --- a/test/results/influxd/default/http.pcapng.out +++ b/test/results/influxd/default/http.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7551,flow_src_total_bytes=74,flow_dst_total_bytes=528 +general json_lines=11,json_bytes=7545,flow_src_total_bytes=74,flow_dst_total_bytes=528 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http2.pcapng.out b/test/results/influxd/default/http2.pcapng.out index 3a2edcf53..337918982 100644 --- a/test/results/influxd/default/http2.pcapng.out +++ b/test/results/influxd/default/http2.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7817,flow_src_total_bytes=319,flow_dst_total_bytes=272 +general json_lines=11,json_bytes=7811,flow_src_total_bytes=319,flow_dst_total_bytes=272 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_asymmetric.pcapng.out b/test/results/influxd/default/http_asymmetric.pcapng.out index 6f8d1d4de..3d76480a9 100644 --- a/test/results/influxd/default/http_asymmetric.pcapng.out +++ b/test/results/influxd/default/http_asymmetric.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=20864,flow_src_total_bytes=8665,flow_dst_total_bytes=0 +general json_lines=20,json_bytes=20858,flow_src_total_bytes=8665,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_auth.pcap.out b/test/results/influxd/default/http_auth.pcap.out index 6187ce251..89c6476b0 100644 --- a/test/results/influxd/default/http_auth.pcap.out +++ b/test/results/influxd/default/http_auth.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=12880,flow_src_total_bytes=739,flow_dst_total_bytes=17637 +general json_lines=13,json_bytes=12874,flow_src_total_bytes=739,flow_dst_total_bytes=17637 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_connect.pcap.out b/test/results/influxd/default/http_connect.pcap.out index 4bcaac04c..214ac7df8 100644 --- a/test/results/influxd/default/http_connect.pcap.out +++ b/test/results/influxd/default/http_connect.pcap.out @@ -1,4 +1,4 @@ -general json_lines=28,json_bytes=24967,flow_src_total_bytes=3644,flow_dst_total_bytes=53729 +general json_lines=28,json_bytes=24961,flow_src_total_bytes=3644,flow_dst_total_bytes=53729 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=12,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=1,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_guessed_host_and_guessed.pcapng.out b/test/results/influxd/default/http_guessed_host_and_guessed.pcapng.out index 4f07c164b..24f5d0940 100644 --- a/test/results/influxd/default/http_guessed_host_and_guessed.pcapng.out +++ b/test/results/influxd/default/http_guessed_host_and_guessed.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5537,flow_src_total_bytes=49,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5531,flow_src_total_bytes=49,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_invalid_server.pcap.out b/test/results/influxd/default/http_invalid_server.pcap.out index 116487ec0..041606564 100644 --- a/test/results/influxd/default/http_invalid_server.pcap.out +++ b/test/results/influxd/default/http_invalid_server.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9413,flow_src_total_bytes=82,flow_dst_total_bytes=407 +general json_lines=12,json_bytes=9407,flow_src_total_bytes=82,flow_dst_total_bytes=407 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_ipv6.pcap.out b/test/results/influxd/default/http_ipv6.pcap.out index d10a35218..0fd0c3691 100644 --- a/test/results/influxd/default/http_ipv6.pcap.out +++ b/test/results/influxd/default/http_ipv6.pcap.out @@ -1,4 +1,4 @@ -general json_lines=117,json_bytes=105893,flow_src_total_bytes=10659,flow_dst_total_bytes=40534 +general json_lines=117,json_bytes=106005,flow_src_total_bytes=10659,flow_dst_total_bytes=40534 events flow_new_count=15,flow_end_count=3,flow_idle_count=12,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=7,flow_detected_count=8,flow_detection_update_count=13,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=55,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=13,flow_state_finished=2 breed flow_breed_safe_count=5,flow_breed_acceptable_count=1,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_on_sip_port.pcap.out b/test/results/influxd/default/http_on_sip_port.pcap.out index 85b13bc09..b3278bc12 100644 --- a/test/results/influxd/default/http_on_sip_port.pcap.out +++ b/test/results/influxd/default/http_on_sip_port.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=11319,flow_src_total_bytes=223,flow_dst_total_bytes=1360 +general json_lines=11,json_bytes=11313,flow_src_total_bytes=223,flow_dst_total_bytes=1360 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_origin_different_than_host.pcap.out b/test/results/influxd/default/http_origin_different_than_host.pcap.out index d730232c3..6f966e288 100644 --- a/test/results/influxd/default/http_origin_different_than_host.pcap.out +++ b/test/results/influxd/default/http_origin_different_than_host.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=6192,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=6186,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=4,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=4,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_starting_with_reply.pcapng.out b/test/results/influxd/default/http_starting_with_reply.pcapng.out index 1af745944..ca0590863 100644 --- a/test/results/influxd/default/http_starting_with_reply.pcapng.out +++ b/test/results/influxd/default/http_starting_with_reply.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=16346,flow_src_total_bytes=7613,flow_dst_total_bytes=688 +general json_lines=14,json_bytes=16340,flow_src_total_bytes=7613,flow_dst_total_bytes=688 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/http_ua_splitted_in_two_pkts.pcapng.out b/test/results/influxd/default/http_ua_splitted_in_two_pkts.pcapng.out index cbcf58f55..0b419727a 100644 --- a/test/results/influxd/default/http_ua_splitted_in_two_pkts.pcapng.out +++ b/test/results/influxd/default/http_ua_splitted_in_two_pkts.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=13340,flow_src_total_bytes=62424,flow_dst_total_bytes=6280 +general json_lines=13,json_bytes=13334,flow_src_total_bytes=62424,flow_dst_total_bytes=6280 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/i3d.pcap.out b/test/results/influxd/default/i3d.pcap.out index 6b3490d03..68d2b9241 100644 --- a/test/results/influxd/default/i3d.pcap.out +++ b/test/results/influxd/default/i3d.pcap.out @@ -1,4 +1,4 @@ -general json_lines=37,json_bytes=33186,flow_src_total_bytes=33668,flow_dst_total_bytes=304 +general json_lines=37,json_bytes=33176,flow_src_total_bytes=33668,flow_dst_total_bytes=304 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=4,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/iax.pcap.out b/test/results/influxd/default/iax.pcap.out index 45ac3fe31..5d889eddc 100644 --- a/test/results/influxd/default/iax.pcap.out +++ b/test/results/influxd/default/iax.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9447,flow_src_total_bytes=4046,flow_dst_total_bytes=3008 +general json_lines=12,json_bytes=9441,flow_src_total_bytes=4046,flow_dst_total_bytes=3008 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/icmp-tunnel.pcap.out b/test/results/influxd/default/icmp-tunnel.pcap.out index 42855405a..e001147dd 100644 --- a/test/results/influxd/default/icmp-tunnel.pcap.out +++ b/test/results/influxd/default/icmp-tunnel.pcap.out @@ -1,4 +1,4 @@ -general json_lines=39,json_bytes=39278,flow_src_total_bytes=83334,flow_dst_total_bytes=78134 +general json_lines=39,json_bytes=39270,flow_src_total_bytes=83334,flow_dst_total_bytes=78134 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=26,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/iec60780-5-104.pcap.out b/test/results/influxd/default/iec60780-5-104.pcap.out index 4b5423ffd..b4eef3f80 100644 --- a/test/results/influxd/default/iec60780-5-104.pcap.out +++ b/test/results/influxd/default/iec60780-5-104.pcap.out @@ -1,4 +1,4 @@ -general json_lines=53,json_bytes=37842,flow_src_total_bytes=413,flow_dst_total_bytes=335 +general json_lines=53,json_bytes=37834,flow_src_total_bytes=413,flow_dst_total_bytes=335 events flow_new_count=6,flow_end_count=6,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=6 breed flow_breed_safe_count=0,flow_breed_acceptable_count=6,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ieee_c37118.pcap.out b/test/results/influxd/default/ieee_c37118.pcap.out index 56ab92fc8..159cdf542 100644 --- a/test/results/influxd/default/ieee_c37118.pcap.out +++ b/test/results/influxd/default/ieee_c37118.pcap.out @@ -1,4 +1,4 @@ -general json_lines=22,json_bytes=18472,flow_src_total_bytes=126,flow_dst_total_bytes=31204 +general json_lines=22,json_bytes=18464,flow_src_total_bytes=126,flow_dst_total_bytes=31204 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/imap-starttls.pcap.out b/test/results/influxd/default/imap-starttls.pcap.out index da4cd7589..7cffdadfb 100644 --- a/test/results/influxd/default/imap-starttls.pcap.out +++ b/test/results/influxd/default/imap-starttls.pcap.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=14697,flow_src_total_bytes=540,flow_dst_total_bytes=5653 +general json_lines=15,json_bytes=14691,flow_src_total_bytes=540,flow_dst_total_bytes=5653 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/imap.pcap.out b/test/results/influxd/default/imap.pcap.out index bedfe6121..cc6cb5194 100644 --- a/test/results/influxd/default/imap.pcap.out +++ b/test/results/influxd/default/imap.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10232,flow_src_total_bytes=179,flow_dst_total_bytes=1401 +general json_lines=12,json_bytes=10226,flow_src_total_bytes=179,flow_dst_total_bytes=1401 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=1,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/imaps.pcap.out b/test/results/influxd/default/imaps.pcap.out index 21b7a88c5..ec6086131 100644 --- a/test/results/influxd/default/imaps.pcap.out +++ b/test/results/influxd/default/imaps.pcap.out @@ -1,4 +1,4 @@ -general json_lines=23,json_bytes=18231,flow_src_total_bytes=1582,flow_dst_total_bytes=6084 +general json_lines=23,json_bytes=18223,flow_src_total_bytes=1582,flow_dst_total_bytes=6084 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=0 breed flow_breed_safe_count=2,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/imo.pcap.out b/test/results/influxd/default/imo.pcap.out index 663619f2c..9f12f6f45 100644 --- a/test/results/influxd/default/imo.pcap.out +++ b/test/results/influxd/default/imo.pcap.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=19512,flow_src_total_bytes=18943,flow_dst_total_bytes=12237 +general json_lines=21,json_bytes=19506,flow_src_total_bytes=18943,flow_dst_total_bytes=12237 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/instagram.pcap.out b/test/results/influxd/default/instagram.pcap.out index 2a7eac6b6..eeb52856d 100644 --- a/test/results/influxd/default/instagram.pcap.out +++ b/test/results/influxd/default/instagram.pcap.out @@ -1,4 +1,4 @@ -general json_lines=299,json_bytes=319254,flow_src_total_bytes=116573,flow_dst_total_bytes=413697 +general json_lines=299,json_bytes=319718,flow_src_total_bytes=116573,flow_dst_total_bytes=413697 events flow_new_count=38,flow_end_count=6,flow_idle_count=32,flow_update_count=4,flow_analyse_count=9,flow_guessed_count=7,flow_detected_count=30,flow_detection_update_count=18,flow_not_detected_count=1,flow_risky_count=5,packet_count=0,packet_flow_count=150,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=23,flow_state_finished=15 breed flow_breed_safe_count=5,flow_breed_acceptable_count=3,flow_breed_fun_count=22,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ip_fragmented_garbage.pcap.out b/test/results/influxd/default/ip_fragmented_garbage.pcap.out index 197bae2a0..5e3900034 100644 --- a/test/results/influxd/default/ip_fragmented_garbage.pcap.out +++ b/test/results/influxd/default/ip_fragmented_garbage.pcap.out @@ -1,4 +1,4 @@ -general json_lines=51,json_bytes=25523,flow_src_total_bytes=8,flow_dst_total_bytes=0 +general json_lines=51,json_bytes=25517,flow_src_total_bytes=8,flow_dst_total_bytes=0 events flow_new_count=4,flow_end_count=4,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=4,flow_risky_count=0,packet_count=16,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=16,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=4,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/iphone.pcap.out b/test/results/influxd/default/iphone.pcap.out index b9966c362..bc4b49e6e 100644 --- a/test/results/influxd/default/iphone.pcap.out +++ b/test/results/influxd/default/iphone.pcap.out @@ -1,4 +1,4 @@ -general json_lines=356,json_bytes=323613,flow_src_total_bytes=99351,flow_dst_total_bytes=91009 +general json_lines=356,json_bytes=323607,flow_src_total_bytes=99351,flow_dst_total_bytes=91009 events flow_new_count=51,flow_end_count=3,flow_idle_count=48,flow_update_count=0,flow_analyse_count=4,flow_guessed_count=1,flow_detected_count=50,flow_detection_update_count=40,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=156,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=11,flow_state_finished=40 breed flow_breed_safe_count=17,flow_breed_acceptable_count=24,flow_breed_fun_count=9,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ipp.pcap.out b/test/results/influxd/default/ipp.pcap.out index ecaa4cf3b..0a1e6342a 100644 --- a/test/results/influxd/default/ipp.pcap.out +++ b/test/results/influxd/default/ipp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=28,json_bytes=24124,flow_src_total_bytes=228781,flow_dst_total_bytes=1443 +general json_lines=28,json_bytes=24118,flow_src_total_bytes=228781,flow_dst_total_bytes=1443 events flow_new_count=3,flow_end_count=3,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=3,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ipsec_isakmp_esp.pcap.out b/test/results/influxd/default/ipsec_isakmp_esp.pcap.out index b6e5024e9..43a6d4b1d 100644 --- a/test/results/influxd/default/ipsec_isakmp_esp.pcap.out +++ b/test/results/influxd/default/ipsec_isakmp_esp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=321,json_bytes=314822,flow_src_total_bytes=271448,flow_dst_total_bytes=145246 +general json_lines=321,json_bytes=314796,flow_src_total_bytes=271448,flow_dst_total_bytes=145246 events flow_new_count=36,flow_end_count=0,flow_idle_count=36,flow_update_count=20,flow_analyse_count=6,flow_guessed_count=0,flow_detected_count=36,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=174,init_count=1,reconnect_count=0,shutdown_count=1,status_count=11,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=36 breed flow_breed_safe_count=36,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ipv6_in_gtp.pcap.out b/test/results/influxd/default/ipv6_in_gtp.pcap.out index fe67e4e54..4c419bc02 100644 --- a/test/results/influxd/default/ipv6_in_gtp.pcap.out +++ b/test/results/influxd/default/ipv6_in_gtp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=4164,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=8,json_bytes=4156,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=2,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=2,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/irc.pcap.out b/test/results/influxd/default/irc.pcap.out index dea661e0f..5787a876a 100644 --- a/test/results/influxd/default/irc.pcap.out +++ b/test/results/influxd/default/irc.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8026,flow_src_total_bytes=114,flow_dst_total_bytes=6901 +general json_lines=11,json_bytes=8020,flow_src_total_bytes=114,flow_dst_total_bytes=6901 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=1,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/iso9506-1-mms.pcap.out b/test/results/influxd/default/iso9506-1-mms.pcap.out index 49dc66947..50e555e48 100644 --- a/test/results/influxd/default/iso9506-1-mms.pcap.out +++ b/test/results/influxd/default/iso9506-1-mms.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7388,flow_src_total_bytes=374,flow_dst_total_bytes=283 +general json_lines=11,json_bytes=7382,flow_src_total_bytes=374,flow_dst_total_bytes=283 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ja3_lots_of_cipher_suites.pcap.out b/test/results/influxd/default/ja3_lots_of_cipher_suites.pcap.out index 5a227d97e..9cfa1688d 100644 --- a/test/results/influxd/default/ja3_lots_of_cipher_suites.pcap.out +++ b/test/results/influxd/default/ja3_lots_of_cipher_suites.pcap.out @@ -1,4 +1,4 @@ -general json_lines=25,json_bytes=15871,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=25,json_bytes=15865,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=11,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=11,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ja3_lots_of_cipher_suites_2_anon.pcap.out b/test/results/influxd/default/ja3_lots_of_cipher_suites_2_anon.pcap.out index 51894c151..c7d12ad84 100644 --- a/test/results/influxd/default/ja3_lots_of_cipher_suites_2_anon.pcap.out +++ b/test/results/influxd/default/ja3_lots_of_cipher_suites_2_anon.pcap.out @@ -1,4 +1,4 @@ -general json_lines=37,json_bytes=22385,flow_src_total_bytes=2974,flow_dst_total_bytes=2858 +general json_lines=37,json_bytes=22379,flow_src_total_bytes=2974,flow_dst_total_bytes=2858 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=13,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=13,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/jabber.pcap.out b/test/results/influxd/default/jabber.pcap.out index fe6d8ace0..038d97661 100644 --- a/test/results/influxd/default/jabber.pcap.out +++ b/test/results/influxd/default/jabber.pcap.out @@ -1,4 +1,4 @@ -general json_lines=110,json_bytes=81357,flow_src_total_bytes=11121,flow_dst_total_bytes=27335 +general json_lines=110,json_bytes=81335,flow_src_total_bytes=11121,flow_dst_total_bytes=27335 events flow_new_count=12,flow_end_count=3,flow_idle_count=9,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=12,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=60,init_count=1,reconnect_count=0,shutdown_count=1,status_count=9,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=12 breed flow_breed_safe_count=0,flow_breed_acceptable_count=12,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/jsonrpc.pcap.out b/test/results/influxd/default/jsonrpc.pcap.out index 02ae8881b..282556d11 100644 --- a/test/results/influxd/default/jsonrpc.pcap.out +++ b/test/results/influxd/default/jsonrpc.pcap.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=16294,flow_src_total_bytes=1176,flow_dst_total_bytes=615 +general json_lines=20,json_bytes=16288,flow_src_total_bytes=1176,flow_dst_total_bytes=615 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/kafka.pcapng.out b/test/results/influxd/default/kafka.pcapng.out index 1f9d3d466..d4c844669 100644 --- a/test/results/influxd/default/kafka.pcapng.out +++ b/test/results/influxd/default/kafka.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7390,flow_src_total_bytes=307,flow_dst_total_bytes=660 +general json_lines=11,json_bytes=7388,flow_src_total_bytes=307,flow_dst_total_bytes=660 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/kcp.pcap.out b/test/results/influxd/default/kcp.pcap.out index 2eeb84c10..a793c8864 100644 --- a/test/results/influxd/default/kcp.pcap.out +++ b/test/results/influxd/default/kcp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=36,json_bytes=46199,flow_src_total_bytes=28368,flow_dst_total_bytes=4816 +general json_lines=36,json_bytes=46193,flow_src_total_bytes=28368,flow_dst_total_bytes=4816 events flow_new_count=7,flow_end_count=0,flow_idle_count=7,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=11,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=7,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/kerberos-error.pcap.out b/test/results/influxd/default/kerberos-error.pcap.out index 215eaed5c..ac2519a78 100644 --- a/test/results/influxd/default/kerberos-error.pcap.out +++ b/test/results/influxd/default/kerberos-error.pcap.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=6282,flow_src_total_bytes=287,flow_dst_total_bytes=102 +general json_lines=8,json_bytes=6276,flow_src_total_bytes=287,flow_dst_total_bytes=102 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/kerberos-login.pcap.out b/test/results/influxd/default/kerberos-login.pcap.out index 6939828a8..eafe16776 100644 --- a/test/results/influxd/default/kerberos-login.pcap.out +++ b/test/results/influxd/default/kerberos-login.pcap.out @@ -1,4 +1,4 @@ -general json_lines=80,json_bytes=101255,flow_src_total_bytes=17733,flow_dst_total_bytes=17509 +general json_lines=80,json_bytes=101247,flow_src_total_bytes=17733,flow_dst_total_bytes=17509 events flow_new_count=13,flow_end_count=1,flow_idle_count=12,flow_update_count=7,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=13,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=29,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=13 breed flow_breed_safe_count=0,flow_breed_acceptable_count=13,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/kerberos.pcap.out b/test/results/influxd/default/kerberos.pcap.out index f62f31dbb..3b359b7ba 100644 --- a/test/results/influxd/default/kerberos.pcap.out +++ b/test/results/influxd/default/kerberos.pcap.out @@ -1,4 +1,4 @@ -general json_lines=190,json_bytes=172997,flow_src_total_bytes=13668,flow_dst_total_bytes=10465 +general json_lines=190,json_bytes=174525,flow_src_total_bytes=13668,flow_dst_total_bytes=10465 events flow_new_count=36,flow_end_count=0,flow_idle_count=36,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=23,flow_detected_count=11,flow_detection_update_count=3,flow_not_detected_count=2,flow_risky_count=0,packet_count=0,packet_flow_count=76,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=29,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=11,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/kerberos_fuzz.pcapng.out b/test/results/influxd/default/kerberos_fuzz.pcapng.out index 74ed36077..f0a5696f8 100644 --- a/test/results/influxd/default/kerberos_fuzz.pcapng.out +++ b/test/results/influxd/default/kerberos_fuzz.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5589,flow_src_total_bytes=260,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5583,flow_src_total_bytes=260,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/kismet.pcap.out b/test/results/influxd/default/kismet.pcap.out index ef8659055..b8e3aec7d 100644 --- a/test/results/influxd/default/kismet.pcap.out +++ b/test/results/influxd/default/kismet.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9764,flow_src_total_bytes=1045,flow_dst_total_bytes=1912 +general json_lines=12,json_bytes=9758,flow_src_total_bytes=1045,flow_dst_total_bytes=1912 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/kontiki.pcap.out b/test/results/influxd/default/kontiki.pcap.out index 5215b70bd..b8b6a89ed 100644 --- a/test/results/influxd/default/kontiki.pcap.out +++ b/test/results/influxd/default/kontiki.pcap.out @@ -1,4 +1,4 @@ -general json_lines=48,json_bytes=38397,flow_src_total_bytes=2261,flow_dst_total_bytes=33151 +general json_lines=48,json_bytes=38509,flow_src_total_bytes=2261,flow_dst_total_bytes=33151 events flow_new_count=8,flow_end_count=0,flow_idle_count=8,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=0,flow_not_detected_count=2,flow_risky_count=2,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=6 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=2,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/line.pcap.out b/test/results/influxd/default/line.pcap.out index c9acf3860..cf247194c 100644 --- a/test/results/influxd/default/line.pcap.out +++ b/test/results/influxd/default/line.pcap.out @@ -1,4 +1,4 @@ -general json_lines=51,json_bytes=52145,flow_src_total_bytes=25568,flow_dst_total_bytes=23936 +general json_lines=51,json_bytes=52137,flow_src_total_bytes=25568,flow_dst_total_bytes=23936 events flow_new_count=5,flow_end_count=1,flow_idle_count=4,flow_update_count=1,flow_analyse_count=4,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=25,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=5 breed flow_breed_safe_count=1,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/linecall_falsepositve.pcap.out b/test/results/influxd/default/linecall_falsepositve.pcap.out index 81ae5176e..1f9022fc5 100644 --- a/test/results/influxd/default/linecall_falsepositve.pcap.out +++ b/test/results/influxd/default/linecall_falsepositve.pcap.out @@ -1,4 +1,4 @@ -general json_lines=67,json_bytes=39115,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=67,json_bytes=39109,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=32,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=32,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/lisp_registration.pcap.out b/test/results/influxd/default/lisp_registration.pcap.out index 6e757fe97..03db581b6 100644 --- a/test/results/influxd/default/lisp_registration.pcap.out +++ b/test/results/influxd/default/lisp_registration.pcap.out @@ -1,4 +1,4 @@ -general json_lines=35,json_bytes=26539,flow_src_total_bytes=1976,flow_dst_total_bytes=1814 +general json_lines=35,json_bytes=26533,flow_src_total_bytes=1976,flow_dst_total_bytes=1814 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/log4j-webapp-exploit.pcap.out b/test/results/influxd/default/log4j-webapp-exploit.pcap.out index 8972f4976..6e679d23d 100644 --- a/test/results/influxd/default/log4j-webapp-exploit.pcap.out +++ b/test/results/influxd/default/log4j-webapp-exploit.pcap.out @@ -1,4 +1,4 @@ -general json_lines=67,json_bytes=51205,flow_src_total_bytes=2128,flow_dst_total_bytes=3702 +general json_lines=67,json_bytes=51199,flow_src_total_bytes=2128,flow_dst_total_bytes=3702 events flow_new_count=7,flow_end_count=6,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=2,flow_not_detected_count=2,flow_risky_count=5,packet_count=4,packet_flow_count=32,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=4,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=5 breed flow_breed_safe_count=0,flow_breed_acceptable_count=5,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/lol_wild_rift_udp.pcap.out b/test/results/influxd/default/lol_wild_rift_udp.pcap.out index 1c50df557..866a27dc0 100644 --- a/test/results/influxd/default/lol_wild_rift_udp.pcap.out +++ b/test/results/influxd/default/lol_wild_rift_udp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=30,json_bytes=24051,flow_src_total_bytes=251,flow_dst_total_bytes=1077 +general json_lines=30,json_bytes=24037,flow_src_total_bytes=251,flow_dst_total_bytes=1077 events flow_new_count=5,flow_end_count=0,flow_idle_count=5,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=8,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=5 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=5,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/long_tls_certificate.pcap.out b/test/results/influxd/default/long_tls_certificate.pcap.out index e35cfdbd6..30fdb1ecf 100644 --- a/test/results/influxd/default/long_tls_certificate.pcap.out +++ b/test/results/influxd/default/long_tls_certificate.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=17333,flow_src_total_bytes=1073,flow_dst_total_bytes=11027 +general json_lines=14,json_bytes=17327,flow_src_total_bytes=1073,flow_dst_total_bytes=11027 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/lru_ipv6_caches.pcapng.out b/test/results/influxd/default/lru_ipv6_caches.pcapng.out index 740417936..ea1c2968c 100644 --- a/test/results/influxd/default/lru_ipv6_caches.pcapng.out +++ b/test/results/influxd/default/lru_ipv6_caches.pcapng.out @@ -1,11 +1,11 @@ -general json_lines=86,json_bytes=87625,flow_src_total_bytes=14408,flow_dst_total_bytes=846 -events flow_new_count=12,flow_end_count=0,flow_idle_count=12,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=12,flow_detection_update_count=6,flow_not_detected_count=0,flow_risky_count=8,packet_count=0,packet_flow_count=41,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 -state flow_state_info=6,flow_state_finished=6 +general json_lines=89,json_bytes=91461,flow_src_total_bytes=14408,flow_dst_total_bytes=846 +events flow_new_count=12,flow_end_count=0,flow_idle_count=12,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=12,flow_detection_update_count=9,flow_not_detected_count=0,flow_risky_count=11,packet_count=0,packet_flow_count=41,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +state flow_state_info=7,flow_state_finished=5 breed flow_breed_safe_count=1,flow_breed_acceptable_count=11,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=3,flow_category_social_network_count=0,flow_category_download_count=5,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=3,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=1,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=4,flow_confidence_dpi=8,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=10,flow_severity_medium=8,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=13,flow_severity_medium=8,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=0,flow_l3_ip6_count=12,flow_l3_other_count=0 layer4 flow_l4_tcp_count=3,flow_l4_udp_count=9,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=12,flow_detected_count=12,flow_guessed_count=0,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=8,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=10,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=8,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=13,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/malformed_dns.pcap.out b/test/results/influxd/default/malformed_dns.pcap.out index a1cba3662..87cb7cb42 100644 --- a/test/results/influxd/default/malformed_dns.pcap.out +++ b/test/results/influxd/default/malformed_dns.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=15780,flow_src_total_bytes=56,flow_dst_total_bytes=5552 +general json_lines=12,json_bytes=15774,flow_src_total_bytes=56,flow_dst_total_bytes=5552 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/malformed_icmp.pcap.out b/test/results/influxd/default/malformed_icmp.pcap.out index ab489de99..e3514e2a8 100644 --- a/test/results/influxd/default/malformed_icmp.pcap.out +++ b/test/results/influxd/default/malformed_icmp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5254,flow_src_total_bytes=8,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5248,flow_src_total_bytes=8,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/malware.pcap.out b/test/results/influxd/default/malware.pcap.out index 62862c7ae..548eacf13 100644 --- a/test/results/influxd/default/malware.pcap.out +++ b/test/results/influxd/default/malware.pcap.out @@ -1,4 +1,4 @@ -general json_lines=44,json_bytes=39809,flow_src_total_bytes=3925,flow_dst_total_bytes=51588 +general json_lines=44,json_bytes=39799,flow_src_total_bytes=3925,flow_dst_total_bytes=51588 events flow_new_count=6,flow_end_count=1,flow_idle_count=5,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=1,flow_detected_count=5,flow_detection_update_count=4,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=16,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=3 breed flow_breed_safe_count=2,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/memcached.cap.out b/test/results/influxd/default/memcached.cap.out index 700bfabb5..9a6ce6d4e 100644 --- a/test/results/influxd/default/memcached.cap.out +++ b/test/results/influxd/default/memcached.cap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7354,flow_src_total_bytes=7,flow_dst_total_bytes=1028 +general json_lines=11,json_bytes=7348,flow_src_total_bytes=7,flow_dst_total_bytes=1028 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/merakicloud.pcapng.out b/test/results/influxd/default/merakicloud.pcapng.out index c0b577aa9..4fb38219e 100644 --- a/test/results/influxd/default/merakicloud.pcapng.out +++ b/test/results/influxd/default/merakicloud.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=17135,flow_src_total_bytes=2679,flow_dst_total_bytes=1522 +general json_lines=19,json_bytes=17129,flow_src_total_bytes=2679,flow_dst_total_bytes=1522 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=7,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mgcp.pcap.out b/test/results/influxd/default/mgcp.pcap.out index 1ea7f9019..7fc3863b1 100644 --- a/test/results/influxd/default/mgcp.pcap.out +++ b/test/results/influxd/default/mgcp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=36,json_bytes=26350,flow_src_total_bytes=1364,flow_dst_total_bytes=393 +general json_lines=36,json_bytes=26336,flow_src_total_bytes=1364,flow_dst_total_bytes=393 events flow_new_count=5,flow_end_count=0,flow_idle_count=5,flow_update_count=1,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=13,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=5 breed flow_breed_safe_count=0,flow_breed_acceptable_count=5,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mining.pcapng.out b/test/results/influxd/default/mining.pcapng.out index f88240197..2a0990b4d 100644 --- a/test/results/influxd/default/mining.pcapng.out +++ b/test/results/influxd/default/mining.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=41,json_bytes=36316,flow_src_total_bytes=146948,flow_dst_total_bytes=30432 +general json_lines=41,json_bytes=36306,flow_src_total_bytes=146948,flow_dst_total_bytes=30432 events flow_new_count=4,flow_end_count=1,flow_idle_count=3,flow_update_count=0,flow_analyse_count=4,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=4,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/modbus.pcap.out b/test/results/influxd/default/modbus.pcap.out index a4b89dc0d..448ee4702 100644 --- a/test/results/influxd/default/modbus.pcap.out +++ b/test/results/influxd/default/modbus.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9518,flow_src_total_bytes=612,flow_dst_total_bytes=561 +general json_lines=12,json_bytes=9512,flow_src_total_bytes=612,flow_dst_total_bytes=561 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/monero.pcap.out b/test/results/influxd/default/monero.pcap.out index 757e69a66..b1873dc3c 100644 --- a/test/results/influxd/default/monero.pcap.out +++ b/test/results/influxd/default/monero.pcap.out @@ -1,4 +1,4 @@ -general json_lines=35,json_bytes=25220,flow_src_total_bytes=1180,flow_dst_total_bytes=56628 +general json_lines=35,json_bytes=25214,flow_src_total_bytes=1180,flow_dst_total_bytes=56628 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mongo_false_positive.pcapng.out b/test/results/influxd/default/mongo_false_positive.pcapng.out index 0fe343d77..7e7ba7582 100644 --- a/test/results/influxd/default/mongo_false_positive.pcapng.out +++ b/test/results/influxd/default/mongo_false_positive.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=10464,flow_src_total_bytes=9246,flow_dst_total_bytes=1485 +general json_lines=11,json_bytes=10458,flow_src_total_bytes=9246,flow_dst_total_bytes=1485 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mongodb.pcap.out b/test/results/influxd/default/mongodb.pcap.out index 779dd8fd8..8f17deb00 100644 --- a/test/results/influxd/default/mongodb.pcap.out +++ b/test/results/influxd/default/mongodb.pcap.out @@ -1,4 +1,4 @@ -general json_lines=45,json_bytes=31685,flow_src_total_bytes=706,flow_dst_total_bytes=0 +general json_lines=45,json_bytes=31671,flow_src_total_bytes=706,flow_dst_total_bytes=0 events flow_new_count=5,flow_end_count=0,flow_idle_count=5,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=23,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=5 breed flow_breed_safe_count=0,flow_breed_acceptable_count=5,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mpeg-dash.pcap.out b/test/results/influxd/default/mpeg-dash.pcap.out index 214e82996..b4e898cca 100644 --- a/test/results/influxd/default/mpeg-dash.pcap.out +++ b/test/results/influxd/default/mpeg-dash.pcap.out @@ -1,4 +1,4 @@ -general json_lines=30,json_bytes=27834,flow_src_total_bytes=2220,flow_dst_total_bytes=1591 +general json_lines=30,json_bytes=27826,flow_src_total_bytes=2220,flow_dst_total_bytes=1591 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=13,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=4,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mpeg.pcap.out b/test/results/influxd/default/mpeg.pcap.out index 6fc5ce5d6..563b259cf 100644 --- a/test/results/influxd/default/mpeg.pcap.out +++ b/test/results/influxd/default/mpeg.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=8754,flow_src_total_bytes=148,flow_dst_total_bytes=9215 +general json_lines=12,json_bytes=8748,flow_src_total_bytes=148,flow_dst_total_bytes=9215 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mpegts.pcap.out b/test/results/influxd/default/mpegts.pcap.out index 732bcede0..f9958bea0 100644 --- a/test/results/influxd/default/mpegts.pcap.out +++ b/test/results/influxd/default/mpegts.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=7348,flow_src_total_bytes=1316,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=7342,flow_src_total_bytes=1316,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mqtt.pcap.out b/test/results/influxd/default/mqtt.pcap.out index 131876b8a..28a2eac29 100644 --- a/test/results/influxd/default/mqtt.pcap.out +++ b/test/results/influxd/default/mqtt.pcap.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=11047,flow_src_total_bytes=383,flow_dst_total_bytes=492 +general json_lines=15,json_bytes=11041,flow_src_total_bytes=383,flow_dst_total_bytes=492 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=6,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mssql_tds.pcap.out b/test/results/influxd/default/mssql_tds.pcap.out index ca74cfbe3..aee8ecbc9 100644 --- a/test/results/influxd/default/mssql_tds.pcap.out +++ b/test/results/influxd/default/mssql_tds.pcap.out @@ -1,4 +1,4 @@ -general json_lines=65,json_bytes=64535,flow_src_total_bytes=12590,flow_dst_total_bytes=1552 +general json_lines=65,json_bytes=64525,flow_src_total_bytes=12590,flow_dst_total_bytes=1552 events flow_new_count=12,flow_end_count=0,flow_idle_count=12,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=11,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=24,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=11 breed flow_breed_safe_count=0,flow_breed_acceptable_count=11,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mullvad_dns.pcap.out b/test/results/influxd/default/mullvad_dns.pcap.out index e0e8f5cc6..289d47a82 100644 --- a/test/results/influxd/default/mullvad_dns.pcap.out +++ b/test/results/influxd/default/mullvad_dns.pcap.out @@ -1,4 +1,4 @@ -general json_lines=9,json_bytes=7023,flow_src_total_bytes=56,flow_dst_total_bytes=74 +general json_lines=9,json_bytes=7017,flow_src_total_bytes=56,flow_dst_total_bytes=74 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mullvad_wireguard.pcap.out b/test/results/influxd/default/mullvad_wireguard.pcap.out index 6d17731f8..bd8c8f187 100644 --- a/test/results/influxd/default/mullvad_wireguard.pcap.out +++ b/test/results/influxd/default/mullvad_wireguard.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8245,flow_src_total_bytes=576,flow_dst_total_bytes=928 +general json_lines=11,json_bytes=8239,flow_src_total_bytes=576,flow_dst_total_bytes=928 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mumble.pcapng.out b/test/results/influxd/default/mumble.pcapng.out index 88c92098c..9d7d41a12 100644 --- a/test/results/influxd/default/mumble.pcapng.out +++ b/test/results/influxd/default/mumble.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=22,json_bytes=17497,flow_src_total_bytes=541,flow_dst_total_bytes=1488 +general json_lines=22,json_bytes=17491,flow_src_total_bytes=541,flow_dst_total_bytes=1488 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=9,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=3,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/munin.pcap.out b/test/results/influxd/default/munin.pcap.out index 851fbad06..febd51d8f 100644 --- a/test/results/influxd/default/munin.pcap.out +++ b/test/results/influxd/default/munin.pcap.out @@ -1,4 +1,4 @@ -general json_lines=38,json_bytes=25843,flow_src_total_bytes=242,flow_dst_total_bytes=1156 +general json_lines=38,json_bytes=25831,flow_src_total_bytes=242,flow_dst_total_bytes=1156 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/mysql.pcapng.out b/test/results/influxd/default/mysql.pcapng.out index e26efea75..76686d75b 100644 --- a/test/results/influxd/default/mysql.pcapng.out +++ b/test/results/influxd/default/mysql.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=13762,flow_src_total_bytes=1084,flow_dst_total_bytes=3187 +general json_lines=20,json_bytes=13754,flow_src_total_bytes=1084,flow_dst_total_bytes=3187 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/natpmp.pcap.out b/test/results/influxd/default/natpmp.pcap.out index c7580753b..bb0cd7ac0 100644 --- a/test/results/influxd/default/natpmp.pcap.out +++ b/test/results/influxd/default/natpmp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=31,json_bytes=24155,flow_src_total_bytes=88,flow_dst_total_bytes=28 +general json_lines=31,json_bytes=24147,flow_src_total_bytes=88,flow_dst_total_bytes=28 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=4,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=11,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=4,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/nats.pcap.out b/test/results/influxd/default/nats.pcap.out index bc0f4015d..fa486f3ae 100644 --- a/test/results/influxd/default/nats.pcap.out +++ b/test/results/influxd/default/nats.pcap.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=13447,flow_src_total_bytes=276,flow_dst_total_bytes=636 +general json_lines=19,json_bytes=13441,flow_src_total_bytes=276,flow_dst_total_bytes=636 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ndpi_match_string_subprotocol__error.pcapng.out b/test/results/influxd/default/ndpi_match_string_subprotocol__error.pcapng.out index 5cc082e2c..0f59f9a8e 100644 --- a/test/results/influxd/default/ndpi_match_string_subprotocol__error.pcapng.out +++ b/test/results/influxd/default/ndpi_match_string_subprotocol__error.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=12521,flow_src_total_bytes=1648,flow_dst_total_bytes=1053 +general json_lines=13,json_bytes=12513,flow_src_total_bytes=1648,flow_dst_total_bytes=1053 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/nest_log_sink.pcap.out b/test/results/influxd/default/nest_log_sink.pcap.out index 7ef945949..44bb4effa 100644 --- a/test/results/influxd/default/nest_log_sink.pcap.out +++ b/test/results/influxd/default/nest_log_sink.pcap.out @@ -1,4 +1,4 @@ -general json_lines=168,json_bytes=146447,flow_src_total_bytes=55213,flow_dst_total_bytes=20167 +general json_lines=168,json_bytes=146419,flow_src_total_bytes=55213,flow_dst_total_bytes=20167 events flow_new_count=17,flow_end_count=12,flow_idle_count=5,flow_update_count=8,flow_analyse_count=10,flow_guessed_count=1,flow_detected_count=16,flow_detection_update_count=5,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=80,init_count=1,reconnect_count=0,shutdown_count=1,status_count=12,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=17 breed flow_breed_safe_count=0,flow_breed_acceptable_count=16,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/netbios.pcap.out b/test/results/influxd/default/netbios.pcap.out index 7bc78513b..582c4ec1c 100644 --- a/test/results/influxd/default/netbios.pcap.out +++ b/test/results/influxd/default/netbios.pcap.out @@ -1,4 +1,4 @@ -general json_lines=83,json_bytes=68942,flow_src_total_bytes=13027,flow_dst_total_bytes=700 +general json_lines=83,json_bytes=68936,flow_src_total_bytes=13027,flow_dst_total_bytes=700 events flow_new_count=15,flow_end_count=0,flow_idle_count=15,flow_update_count=3,flow_analyse_count=2,flow_guessed_count=1,flow_detected_count=14,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=14 breed flow_breed_safe_count=0,flow_breed_acceptable_count=12,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=2,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/netbios_wildcard_dns_query.pcap.out b/test/results/influxd/default/netbios_wildcard_dns_query.pcap.out index 3b23600b1..045c62ccd 100644 --- a/test/results/influxd/default/netbios_wildcard_dns_query.pcap.out +++ b/test/results/influxd/default/netbios_wildcard_dns_query.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5390,flow_src_total_bytes=50,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5384,flow_src_total_bytes=50,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/netease_games.pcapng.out b/test/results/influxd/default/netease_games.pcapng.out index e715d20cd..d0d2c9949 100644 --- a/test/results/influxd/default/netease_games.pcapng.out +++ b/test/results/influxd/default/netease_games.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=42,json_bytes=33521,flow_src_total_bytes=874,flow_dst_total_bytes=782 +general json_lines=42,json_bytes=33511,flow_src_total_bytes=874,flow_dst_total_bytes=782 events flow_new_count=5,flow_end_count=0,flow_idle_count=5,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=19,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=5,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/netflix.pcap.out b/test/results/influxd/default/netflix.pcap.out index 1ea8efeda..a19fa5ce7 100644 --- a/test/results/influxd/default/netflix.pcap.out +++ b/test/results/influxd/default/netflix.pcap.out @@ -1,11 +1,11 @@ -general json_lines=557,json_bytes=555733,flow_src_total_bytes=117204,flow_dst_total_bytes=768140 +general json_lines=557,json_bytes=556677,flow_src_total_bytes=117204,flow_dst_total_bytes=768140 events flow_new_count=61,flow_end_count=31,flow_idle_count=30,flow_update_count=9,flow_analyse_count=27,flow_guessed_count=1,flow_detected_count=60,flow_detection_update_count=69,flow_not_detected_count=0,flow_risky_count=33,packet_count=0,packet_flow_count=266,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=8,flow_state_finished=53 breed flow_breed_safe_count=0,flow_breed_acceptable_count=22,flow_breed_fun_count=38,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=18,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=13,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=1,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=28,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=60,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=70,flow_severity_medium=0,flow_severity_high=1,flow_severity_severe=18,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=70,flow_severity_medium=18,flow_severity_high=1,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=61,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=47,flow_l4_udp_count=13,flow_l4_icmp_count=0,flow_l4_other_count=1 detection flow_active_count=61,flow_detected_count=60,flow_guessed_count=1,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=18,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=36,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=32,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=1,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=2,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=36,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=32,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=1,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=2,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=18 diff --git a/test/results/influxd/default/netflow-fritz.pcap.out b/test/results/influxd/default/netflow-fritz.pcap.out index f5a40b8a9..6bfe8869a 100644 --- a/test/results/influxd/default/netflow-fritz.pcap.out +++ b/test/results/influxd/default/netflow-fritz.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5365,flow_src_total_bytes=180,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5359,flow_src_total_bytes=180,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/netflowv9.pcap.out b/test/results/influxd/default/netflowv9.pcap.out index 9d6f64795..ed66439da 100644 --- a/test/results/influxd/default/netflowv9.pcap.out +++ b/test/results/influxd/default/netflowv9.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=16551,flow_src_total_bytes=13468,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=16545,flow_src_total_bytes=13468,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/nfsv2.pcap.out b/test/results/influxd/default/nfsv2.pcap.out index 37abc9490..456d49190 100644 --- a/test/results/influxd/default/nfsv2.pcap.out +++ b/test/results/influxd/default/nfsv2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=42,json_bytes=34513,flow_src_total_bytes=10080,flow_dst_total_bytes=6512 +general json_lines=42,json_bytes=34507,flow_src_total_bytes=10080,flow_dst_total_bytes=6512 events flow_new_count=7,flow_end_count=0,flow_idle_count=7,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=17,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=7,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/nfsv3.pcap.out b/test/results/influxd/default/nfsv3.pcap.out index 1b040d304..448d54bc2 100644 --- a/test/results/influxd/default/nfsv3.pcap.out +++ b/test/results/influxd/default/nfsv3.pcap.out @@ -1,4 +1,4 @@ -general json_lines=47,json_bytes=38784,flow_src_total_bytes=8508,flow_dst_total_bytes=8932 +general json_lines=47,json_bytes=38778,flow_src_total_bytes=8508,flow_dst_total_bytes=8932 events flow_new_count=8,flow_end_count=0,flow_idle_count=8,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=8,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=6,packet_count=0,packet_flow_count=19,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=8 breed flow_breed_safe_count=0,flow_breed_acceptable_count=8,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/nintendo.pcap.out b/test/results/influxd/default/nintendo.pcap.out index f9830320d..60723f7bc 100644 --- a/test/results/influxd/default/nintendo.pcap.out +++ b/test/results/influxd/default/nintendo.pcap.out @@ -1,4 +1,4 @@ -general json_lines=164,json_bytes=135379,flow_src_total_bytes=151475,flow_dst_total_bytes=137750 +general json_lines=164,json_bytes=135476,flow_src_total_bytes=151475,flow_dst_total_bytes=137750 events flow_new_count=21,flow_end_count=2,flow_idle_count=19,flow_update_count=0,flow_analyse_count=5,flow_guessed_count=6,flow_detected_count=15,flow_detection_update_count=9,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=84,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=8,flow_state_finished=13 breed flow_breed_safe_count=1,flow_breed_acceptable_count=2,flow_breed_fun_count=12,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/nntp.pcap.out b/test/results/influxd/default/nntp.pcap.out index 95db1cccd..d681edf6f 100644 --- a/test/results/influxd/default/nntp.pcap.out +++ b/test/results/influxd/default/nntp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9676,flow_src_total_bytes=113,flow_dst_total_bytes=4808 +general json_lines=12,json_bytes=9670,flow_src_total_bytes=113,flow_dst_total_bytes=4808 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/no_sni.pcap.out b/test/results/influxd/default/no_sni.pcap.out index 0ce87ca61..06b5afae1 100644 --- a/test/results/influxd/default/no_sni.pcap.out +++ b/test/results/influxd/default/no_sni.pcap.out @@ -1,4 +1,4 @@ -general json_lines=79,json_bytes=71222,flow_src_total_bytes=14690,flow_dst_total_bytes=42821 +general json_lines=79,json_bytes=71216,flow_src_total_bytes=14690,flow_dst_total_bytes=42821 events flow_new_count=8,flow_end_count=3,flow_idle_count=5,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=8,flow_detection_update_count=9,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=40,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=5 breed flow_breed_safe_count=7,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/nomachine.pcapng.out b/test/results/influxd/default/nomachine.pcapng.out index ddf8dd043..10522e3d3 100644 --- a/test/results/influxd/default/nomachine.pcapng.out +++ b/test/results/influxd/default/nomachine.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=15611,flow_src_total_bytes=655,flow_dst_total_bytes=2744 +general json_lines=20,json_bytes=15605,flow_src_total_bytes=655,flow_dst_total_bytes=2744 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ocs.pcap.out b/test/results/influxd/default/ocs.pcap.out index fb1083857..e491e7818 100644 --- a/test/results/influxd/default/ocs.pcap.out +++ b/test/results/influxd/default/ocs.pcap.out @@ -1,4 +1,4 @@ -general json_lines=137,json_bytes=113495,flow_src_total_bytes=12361,flow_dst_total_bytes=0 +general json_lines=137,json_bytes=113489,flow_src_total_bytes=12361,flow_dst_total_bytes=0 events flow_new_count=20,flow_end_count=5,flow_idle_count=15,flow_update_count=7,flow_analyse_count=2,flow_guessed_count=2,flow_detected_count=18,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=10,packet_count=0,packet_flow_count=65,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=13,flow_state_finished=7 breed flow_breed_safe_count=3,flow_breed_acceptable_count=8,flow_breed_fun_count=7,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ocsp.pcapng.out b/test/results/influxd/default/ocsp.pcapng.out index 69edd1b17..ed7d0b50b 100644 --- a/test/results/influxd/default/ocsp.pcapng.out +++ b/test/results/influxd/default/ocsp.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=93,json_bytes=84569,flow_src_total_bytes=6995,flow_dst_total_bytes=26118 +general json_lines=93,json_bytes=84555,flow_src_total_bytes=6995,flow_dst_total_bytes=26118 events flow_new_count=10,flow_end_count=10,flow_idle_count=0,flow_update_count=0,flow_analyse_count=6,flow_guessed_count=0,flow_detected_count=10,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=50,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=10 breed flow_breed_safe_count=9,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/oicq.pcap.out b/test/results/influxd/default/oicq.pcap.out index 60cc30037..384a9ba7f 100644 --- a/test/results/influxd/default/oicq.pcap.out +++ b/test/results/influxd/default/oicq.pcap.out @@ -1,4 +1,4 @@ -general json_lines=146,json_bytes=118301,flow_src_total_bytes=1324,flow_dst_total_bytes=0 +general json_lines=146,json_bytes=118269,flow_src_total_bytes=1324,flow_dst_total_bytes=0 events flow_new_count=29,flow_end_count=0,flow_idle_count=29,flow_update_count=14,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=29,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=29,init_count=1,reconnect_count=0,shutdown_count=1,status_count=14,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=29 breed flow_breed_safe_count=0,flow_breed_acceptable_count=29,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ookla.pcap.out b/test/results/influxd/default/ookla.pcap.out index a73209400..603ba4844 100644 --- a/test/results/influxd/default/ookla.pcap.out +++ b/test/results/influxd/default/ookla.pcap.out @@ -1,4 +1,4 @@ -general json_lines=56,json_bytes=43520,flow_src_total_bytes=22732,flow_dst_total_bytes=8117 +general json_lines=56,json_bytes=43512,flow_src_total_bytes=22732,flow_dst_total_bytes=8117 events flow_new_count=6,flow_end_count=1,flow_idle_count=5,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=5,flow_detection_update_count=4,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=4 breed flow_breed_safe_count=5,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/opc-ua.pcap.out b/test/results/influxd/default/opc-ua.pcap.out index 6f2eb16e4..811eb8959 100644 --- a/test/results/influxd/default/opc-ua.pcap.out +++ b/test/results/influxd/default/opc-ua.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9463,flow_src_total_bytes=12547,flow_dst_total_bytes=11671 +general json_lines=12,json_bytes=9457,flow_src_total_bytes=12547,flow_dst_total_bytes=11671 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/openflow.pcap.out b/test/results/influxd/default/openflow.pcap.out index d7fa01c81..f9497ccdb 100644 --- a/test/results/influxd/default/openflow.pcap.out +++ b/test/results/influxd/default/openflow.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7388,flow_src_total_bytes=332,flow_dst_total_bytes=92 +general json_lines=11,json_bytes=7382,flow_src_total_bytes=332,flow_dst_total_bytes=92 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/openvpn-tlscrypt.pcap.out b/test/results/influxd/default/openvpn-tlscrypt.pcap.out index f9eb18b41..bd312f769 100644 --- a/test/results/influxd/default/openvpn-tlscrypt.pcap.out +++ b/test/results/influxd/default/openvpn-tlscrypt.pcap.out @@ -1,4 +1,4 @@ -general json_lines=29,json_bytes=17361,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=29,json_bytes=17355,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=13,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=13,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/openvpn.pcap.out b/test/results/influxd/default/openvpn.pcap.out index 8c56f8dfd..0201599d2 100644 --- a/test/results/influxd/default/openvpn.pcap.out +++ b/test/results/influxd/default/openvpn.pcap.out @@ -1,4 +1,4 @@ -general json_lines=78,json_bytes=72468,flow_src_total_bytes=44541,flow_dst_total_bytes=41567 +general json_lines=78,json_bytes=72452,flow_src_total_bytes=44541,flow_dst_total_bytes=41567 events flow_new_count=8,flow_end_count=1,flow_idle_count=7,flow_update_count=0,flow_analyse_count=6,flow_guessed_count=0,flow_detected_count=8,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=6,packet_count=0,packet_flow_count=40,init_count=1,reconnect_count=0,shutdown_count=1,status_count=6,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=8 breed flow_breed_safe_count=0,flow_breed_acceptable_count=8,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/openvpn_nohmac.pcapng.out b/test/results/influxd/default/openvpn_nohmac.pcapng.out index 1632782c4..7a9ac834c 100644 --- a/test/results/influxd/default/openvpn_nohmac.pcapng.out +++ b/test/results/influxd/default/openvpn_nohmac.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=10820,flow_src_total_bytes=113447,flow_dst_total_bytes=150832 +general json_lines=13,json_bytes=10814,flow_src_total_bytes=113447,flow_dst_total_bytes=150832 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=1,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/openvpn_nohmac_tcp.pcapng.out b/test/results/influxd/default/openvpn_nohmac_tcp.pcapng.out index 6bba1c114..a36df4ce2 100644 --- a/test/results/influxd/default/openvpn_nohmac_tcp.pcapng.out +++ b/test/results/influxd/default/openvpn_nohmac_tcp.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9709,flow_src_total_bytes=6986,flow_dst_total_bytes=7709 +general json_lines=12,json_bytes=9703,flow_src_total_bytes=6986,flow_dst_total_bytes=7709 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/opera-vpn.pcapng.out b/test/results/influxd/default/opera-vpn.pcapng.out index 7f0257c36..ab753b9dd 100644 --- a/test/results/influxd/default/opera-vpn.pcapng.out +++ b/test/results/influxd/default/opera-vpn.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=618,json_bytes=617531,flow_src_total_bytes=206752,flow_dst_total_bytes=980038 +general json_lines=618,json_bytes=617525,flow_src_total_bytes=206752,flow_dst_total_bytes=980038 events flow_new_count=62,flow_end_count=28,flow_idle_count=34,flow_update_count=0,flow_analyse_count=60,flow_guessed_count=1,flow_detected_count=61,flow_detection_update_count=61,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=308,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=60 breed flow_breed_safe_count=0,flow_breed_acceptable_count=61,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/oracle12.pcapng.out b/test/results/influxd/default/oracle12.pcapng.out index a3f67c394..c3fd64e0a 100644 --- a/test/results/influxd/default/oracle12.pcapng.out +++ b/test/results/influxd/default/oracle12.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7424,flow_src_total_bytes=941,flow_dst_total_bytes=441 +general json_lines=11,json_bytes=7418,flow_src_total_bytes=941,flow_dst_total_bytes=441 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/os_detected.pcapng.out b/test/results/influxd/default/os_detected.pcapng.out index 6e4d005e0..176b1cd3e 100644 --- a/test/results/influxd/default/os_detected.pcapng.out +++ b/test/results/influxd/default/os_detected.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=7700,flow_src_total_bytes=1252,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=7694,flow_src_total_bytes=1252,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ospfv2_add_new_prefix.pcap.out b/test/results/influxd/default/ospfv2_add_new_prefix.pcap.out index b81634eaa..b764734a9 100644 --- a/test/results/influxd/default/ospfv2_add_new_prefix.pcap.out +++ b/test/results/influxd/default/ospfv2_add_new_prefix.pcap.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=5737,flow_src_total_bytes=88,flow_dst_total_bytes=44 +general json_lines=8,json_bytes=5731,flow_src_total_bytes=88,flow_dst_total_bytes=44 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ossfuzz_seed_fake_traces_1.pcapng.out b/test/results/influxd/default/ossfuzz_seed_fake_traces_1.pcapng.out index 6d8234c67..33cf49582 100644 --- a/test/results/influxd/default/ossfuzz_seed_fake_traces_1.pcapng.out +++ b/test/results/influxd/default/ossfuzz_seed_fake_traces_1.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=59,json_bytes=48788,flow_src_total_bytes=2613,flow_dst_total_bytes=28 +general json_lines=59,json_bytes=48772,flow_src_total_bytes=2613,flow_dst_total_bytes=28 events flow_new_count=10,flow_end_count=0,flow_idle_count=10,flow_update_count=3,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=9,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=7,packet_count=0,packet_flow_count=18,init_count=1,reconnect_count=0,shutdown_count=1,status_count=6,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=9 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=6,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=2,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ossfuzz_seed_fake_traces_2.pcapng.out b/test/results/influxd/default/ossfuzz_seed_fake_traces_2.pcapng.out index 9b8343bde..93bb85914 100644 --- a/test/results/influxd/default/ossfuzz_seed_fake_traces_2.pcapng.out +++ b/test/results/influxd/default/ossfuzz_seed_fake_traces_2.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=65,json_bytes=49019,flow_src_total_bytes=13912,flow_dst_total_bytes=15230 +general json_lines=65,json_bytes=49007,flow_src_total_bytes=13912,flow_dst_total_bytes=15230 events flow_new_count=8,flow_end_count=3,flow_idle_count=5,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=1,flow_detected_count=7,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=34,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=7,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ossfuzz_seed_fake_traces_3.pcapng.out b/test/results/influxd/default/ossfuzz_seed_fake_traces_3.pcapng.out index 4c7702b6d..71eaabd00 100644 --- a/test/results/influxd/default/ossfuzz_seed_fake_traces_3.pcapng.out +++ b/test/results/influxd/default/ossfuzz_seed_fake_traces_3.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=7091,flow_src_total_bytes=82,flow_dst_total_bytes=0 +general json_lines=10,json_bytes=7085,flow_src_total_bytes=82,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ossfuzz_seed_fake_traces_4.pcapng.out b/test/results/influxd/default/ossfuzz_seed_fake_traces_4.pcapng.out index f39f541a8..9f4b3b914 100644 --- a/test/results/influxd/default/ossfuzz_seed_fake_traces_4.pcapng.out +++ b/test/results/influxd/default/ossfuzz_seed_fake_traces_4.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=5447,flow_src_total_bytes=4,flow_dst_total_bytes=8 +general json_lines=8,json_bytes=5441,flow_src_total_bytes=4,flow_dst_total_bytes=8 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/path_of_exile.pcapng.out b/test/results/influxd/default/path_of_exile.pcapng.out index 280e9453d..12e2b7b7a 100644 --- a/test/results/influxd/default/path_of_exile.pcapng.out +++ b/test/results/influxd/default/path_of_exile.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=6897,flow_src_total_bytes=31,flow_dst_total_bytes=0 +general json_lines=10,json_bytes=6891,flow_src_total_bytes=31,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pfcp.pcapng.out b/test/results/influxd/default/pfcp.pcapng.out index 2e3eca164..e760152c3 100644 --- a/test/results/influxd/default/pfcp.pcapng.out +++ b/test/results/influxd/default/pfcp.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8377,flow_src_total_bytes=2395,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=8371,flow_src_total_bytes=2395,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pgm.pcap.out b/test/results/influxd/default/pgm.pcap.out index 2fc09047e..30a6c2d12 100644 --- a/test/results/influxd/default/pgm.pcap.out +++ b/test/results/influxd/default/pgm.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=11556,flow_src_total_bytes=162302,flow_dst_total_bytes=0 +general json_lines=12,json_bytes=11550,flow_src_total_bytes=162302,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pgsql.pcap.out b/test/results/influxd/default/pgsql.pcap.out index 9ae15f8b6..796b9a848 100644 --- a/test/results/influxd/default/pgsql.pcap.out +++ b/test/results/influxd/default/pgsql.pcap.out @@ -1,4 +1,4 @@ -general json_lines=52,json_bytes=35501,flow_src_total_bytes=1157,flow_dst_total_bytes=1836 +general json_lines=52,json_bytes=35493,flow_src_total_bytes=1157,flow_dst_total_bytes=1836 events flow_new_count=6,flow_end_count=3,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=6 breed flow_breed_safe_count=0,flow_breed_acceptable_count=6,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pia.pcap.out b/test/results/influxd/default/pia.pcap.out index e4acd80ec..66b040a08 100644 --- a/test/results/influxd/default/pia.pcap.out +++ b/test/results/influxd/default/pia.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=12165,flow_src_total_bytes=610,flow_dst_total_bytes=2622 +general json_lines=13,json_bytes=12159,flow_src_total_bytes=610,flow_dst_total_bytes=2622 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pim.pcap.out b/test/results/influxd/default/pim.pcap.out index 7462d7c6e..3fad10cc2 100644 --- a/test/results/influxd/default/pim.pcap.out +++ b/test/results/influxd/default/pim.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7317,flow_src_total_bytes=580,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=7311,flow_src_total_bytes=580,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pinterest.pcap.out b/test/results/influxd/default/pinterest.pcap.out index 6cfb769f4..0e38b118e 100644 --- a/test/results/influxd/default/pinterest.pcap.out +++ b/test/results/influxd/default/pinterest.pcap.out @@ -1,4 +1,4 @@ -general json_lines=297,json_bytes=297367,flow_src_total_bytes=30054,flow_dst_total_bytes=337815 +general json_lines=297,json_bytes=297361,flow_src_total_bytes=30054,flow_dst_total_bytes=337815 events flow_new_count=37,flow_end_count=5,flow_idle_count=32,flow_update_count=0,flow_analyse_count=13,flow_guessed_count=16,flow_detected_count=21,flow_detection_update_count=33,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=137,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=24,flow_state_finished=13 breed flow_breed_safe_count=3,flow_breed_acceptable_count=6,flow_breed_fun_count=11,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=1,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pluralsight.pcap.out b/test/results/influxd/default/pluralsight.pcap.out index 18ea1eb8b..be6a6ed17 100644 --- a/test/results/influxd/default/pluralsight.pcap.out +++ b/test/results/influxd/default/pluralsight.pcap.out @@ -1,4 +1,4 @@ -general json_lines=59,json_bytes=73347,flow_src_total_bytes=3540,flow_dst_total_bytes=23176 +general json_lines=59,json_bytes=73341,flow_src_total_bytes=3540,flow_dst_total_bytes=23176 events flow_new_count=6,flow_end_count=0,flow_idle_count=6,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=10,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=28,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=6,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=6,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pop3.pcap.out b/test/results/influxd/default/pop3.pcap.out index 4ea89d53b..dcc45e737 100644 --- a/test/results/influxd/default/pop3.pcap.out +++ b/test/results/influxd/default/pop3.pcap.out @@ -1,4 +1,4 @@ -general json_lines=53,json_bytes=39538,flow_src_total_bytes=417,flow_dst_total_bytes=22283 +general json_lines=53,json_bytes=39530,flow_src_total_bytes=417,flow_dst_total_bytes=22283 events flow_new_count=6,flow_end_count=6,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=6,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=6,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pop3_stls.pcap.out b/test/results/influxd/default/pop3_stls.pcap.out index 7f79756c5..587f6aeab 100644 --- a/test/results/influxd/default/pop3_stls.pcap.out +++ b/test/results/influxd/default/pop3_stls.pcap.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=13668,flow_src_total_bytes=805,flow_dst_total_bytes=7462 +general json_lines=15,json_bytes=13662,flow_src_total_bytes=805,flow_dst_total_bytes=7462 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=1,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/pops.pcapng.out b/test/results/influxd/default/pops.pcapng.out index fea9aa0bc..47955cee4 100644 --- a/test/results/influxd/default/pops.pcapng.out +++ b/test/results/influxd/default/pops.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=12204,flow_src_total_bytes=184,flow_dst_total_bytes=2520 +general json_lines=12,json_bytes=12198,flow_src_total_bytes=184,flow_dst_total_bytes=2520 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/portable_executable.pcap.out b/test/results/influxd/default/portable_executable.pcap.out new file mode 100644 index 000000000..631ebe65d --- /dev/null +++ b/test/results/influxd/default/portable_executable.pcap.out @@ -0,0 +1,11 @@ +general json_lines=19,json_bytes=18073,flow_src_total_bytes=11308,flow_dst_total_bytes=11308 +events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +state flow_state_info=2,flow_state_finished=0 +breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 +category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=0,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 +confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=0,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 +severity flow_severity_low=0,flow_severity_medium=0,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +layer3 flow_l3_ip4_count=2,flow_l3_ip6_count=0,flow_l3_other_count=0 +layer4 flow_l4_tcp_count=2,flow_l4_udp_count=0,flow_l4_icmp_count=0,flow_l4_other_count=0 +detection flow_active_count=2,flow_detected_count=0,flow_guessed_count=1,flow_not_detected_count=1 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/pps.pcap.out b/test/results/influxd/default/pps.pcap.out index 477c7aa40..641333b2f 100644 --- a/test/results/influxd/default/pps.pcap.out +++ b/test/results/influxd/default/pps.pcap.out @@ -1,11 +1,11 @@ -general json_lines=701,json_bytes=728606,flow_src_total_bytes=122772,flow_dst_total_bytes=232827 +general json_lines=701,json_bytes=729652,flow_src_total_bytes=122772,flow_dst_total_bytes=232827 events flow_new_count=107,flow_end_count=2,flow_idle_count=105,flow_update_count=35,flow_analyse_count=5,flow_guessed_count=2,flow_detected_count=76,flow_detection_update_count=49,flow_not_detected_count=29,flow_risky_count=47,packet_count=0,packet_flow_count=288,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=38,flow_state_finished=69 breed flow_breed_safe_count=1,flow_breed_acceptable_count=55,flow_breed_fun_count=20,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=25,flow_category_social_network_count=0,flow_category_download_count=1,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=0,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=39,flow_category_system_count=10,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=1,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=76,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=11,flow_severity_medium=33,flow_severity_high=10,flow_severity_severe=9,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=13,flow_severity_medium=40,flow_severity_high=10,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=107,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=63,flow_l4_udp_count=44,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=107,flow_detected_count=76,flow_guessed_count=2,flow_not_detected_count=29 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=9,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=11,flow_risk_12_count=4,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=2,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=7,flow_risk_47_count=35,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=11,flow_risk_12_count=4,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=2,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=7,flow_risk_47_count=35,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=11 diff --git a/test/results/influxd/default/pptp.pcap.out b/test/results/influxd/default/pptp.pcap.out index 74247170e..aba08c3a7 100644 --- a/test/results/influxd/default/pptp.pcap.out +++ b/test/results/influxd/default/pptp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7513,flow_src_total_bytes=356,flow_dst_total_bytes=384 +general json_lines=11,json_bytes=7507,flow_src_total_bytes=356,flow_dst_total_bytes=384 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/profinet-io-le.pcap.out b/test/results/influxd/default/profinet-io-le.pcap.out index f4774672b..a24166335 100644 --- a/test/results/influxd/default/profinet-io-le.pcap.out +++ b/test/results/influxd/default/profinet-io-le.pcap.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=6551,flow_src_total_bytes=164,flow_dst_total_bytes=268 +general json_lines=8,json_bytes=6545,flow_src_total_bytes=164,flow_dst_total_bytes=268 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/protobuf.pcap.out b/test/results/influxd/default/protobuf.pcap.out index afcf693b2..9500d14ba 100644 --- a/test/results/influxd/default/protobuf.pcap.out +++ b/test/results/influxd/default/protobuf.pcap.out @@ -1,4 +1,4 @@ -general json_lines=47,json_bytes=32576,flow_src_total_bytes=1086,flow_dst_total_bytes=0 +general json_lines=47,json_bytes=32562,flow_src_total_bytes=1086,flow_dst_total_bytes=0 events flow_new_count=5,flow_end_count=5,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=25,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=5 breed flow_breed_safe_count=5,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/protonvpn.pcap.out b/test/results/influxd/default/protonvpn.pcap.out index a3a928fd6..17f636596 100644 --- a/test/results/influxd/default/protonvpn.pcap.out +++ b/test/results/influxd/default/protonvpn.pcap.out @@ -1,4 +1,4 @@ -general json_lines=25,json_bytes=19871,flow_src_total_bytes=1624,flow_dst_total_bytes=6451 +general json_lines=25,json_bytes=19865,flow_src_total_bytes=1624,flow_dst_total_bytes=6451 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=2,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=11,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/psiphon3.pcap.out b/test/results/influxd/default/psiphon3.pcap.out index c04d1e80a..7c158ec17 100644 --- a/test/results/influxd/default/psiphon3.pcap.out +++ b/test/results/influxd/default/psiphon3.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=13634,flow_src_total_bytes=3700,flow_dst_total_bytes=5574 +general json_lines=14,json_bytes=13628,flow_src_total_bytes=3700,flow_dst_total_bytes=5574 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ptpv2.pcap.out b/test/results/influxd/default/ptpv2.pcap.out index 0dd485260..b935b2cbd 100644 --- a/test/results/influxd/default/ptpv2.pcap.out +++ b/test/results/influxd/default/ptpv2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=23,json_bytes=16994,flow_src_total_bytes=796,flow_dst_total_bytes=0 +general json_lines=23,json_bytes=16988,flow_src_total_bytes=796,flow_dst_total_bytes=0 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=11,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/punycode-idn.pcap.out b/test/results/influxd/default/punycode-idn.pcap.out index 40b13d5d2..c3391bd72 100644 --- a/test/results/influxd/default/punycode-idn.pcap.out +++ b/test/results/influxd/default/punycode-idn.pcap.out @@ -1,4 +1,4 @@ -general json_lines=24,json_bytes=20074,flow_src_total_bytes=232,flow_dst_total_bytes=836 +general json_lines=24,json_bytes=20068,flow_src_total_bytes=232,flow_dst_total_bytes=836 events flow_new_count=3,flow_end_count=1,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=9,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-23.pcap.out b/test/results/influxd/default/quic-23.pcap.out index b6e1fbe32..0b3686741 100644 --- a/test/results/influxd/default/quic-23.pcap.out +++ b/test/results/influxd/default/quic-23.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=13168,flow_src_total_bytes=1993,flow_dst_total_bytes=3958 +general json_lines=11,json_bytes=13162,flow_src_total_bytes=1993,flow_dst_total_bytes=3958 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-24.pcap.out b/test/results/influxd/default/quic-24.pcap.out index 85705e565..8970ec7b4 100644 --- a/test/results/influxd/default/quic-24.pcap.out +++ b/test/results/influxd/default/quic-24.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=12876,flow_src_total_bytes=4378,flow_dst_total_bytes=2992 +general json_lines=11,json_bytes=12870,flow_src_total_bytes=4378,flow_dst_total_bytes=2992 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-27.pcap.out b/test/results/influxd/default/quic-27.pcap.out index dc9c22298..128a4a703 100644 --- a/test/results/influxd/default/quic-27.pcap.out +++ b/test/results/influxd/default/quic-27.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=16842,flow_src_total_bytes=5523,flow_dst_total_bytes=6124 +general json_lines=11,json_bytes=16836,flow_src_total_bytes=5523,flow_dst_total_bytes=6124 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-28.pcap.out b/test/results/influxd/default/quic-28.pcap.out index c5d396803..86b0ed066 100644 --- a/test/results/influxd/default/quic-28.pcap.out +++ b/test/results/influxd/default/quic-28.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=13270,flow_src_total_bytes=5428,flow_dst_total_bytes=230739 +general json_lines=12,json_bytes=13264,flow_src_total_bytes=5428,flow_dst_total_bytes=230739 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-29.pcap.out b/test/results/influxd/default/quic-29.pcap.out index a010aa860..e76326a28 100644 --- a/test/results/influxd/default/quic-29.pcap.out +++ b/test/results/influxd/default/quic-29.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=12869,flow_src_total_bytes=4303,flow_dst_total_bytes=4453 +general json_lines=11,json_bytes=12863,flow_src_total_bytes=4303,flow_dst_total_bytes=4453 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-33.pcapng.out b/test/results/influxd/default/quic-33.pcapng.out index c837484ba..b55c82330 100644 --- a/test/results/influxd/default/quic-33.pcapng.out +++ b/test/results/influxd/default/quic-33.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=14747,flow_src_total_bytes=1432,flow_dst_total_bytes=3470 +general json_lines=11,json_bytes=14741,flow_src_total_bytes=1432,flow_dst_total_bytes=3470 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-34.pcap.out b/test/results/influxd/default/quic-34.pcap.out index 2a1dc85fd..65f751d8d 100644 --- a/test/results/influxd/default/quic-34.pcap.out +++ b/test/results/influxd/default/quic-34.pcap.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=14125,flow_src_total_bytes=1252,flow_dst_total_bytes=3416 +general json_lines=10,json_bytes=14119,flow_src_total_bytes=1252,flow_dst_total_bytes=3416 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-forcing-vn-with-data.pcapng.out b/test/results/influxd/default/quic-forcing-vn-with-data.pcapng.out index f8270b848..bc356fa20 100644 --- a/test/results/influxd/default/quic-forcing-vn-with-data.pcapng.out +++ b/test/results/influxd/default/quic-forcing-vn-with-data.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=14641,flow_src_total_bytes=5466,flow_dst_total_bytes=2691 +general json_lines=12,json_bytes=14635,flow_src_total_bytes=5466,flow_dst_total_bytes=2691 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-fuzz-overflow.pcapng.out b/test/results/influxd/default/quic-fuzz-overflow.pcapng.out index e7f652d63..b0de6bf13 100644 --- a/test/results/influxd/default/quic-fuzz-overflow.pcapng.out +++ b/test/results/influxd/default/quic-fuzz-overflow.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=8266,flow_src_total_bytes=1252,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=8260,flow_src_total_bytes=1252,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-mvfst-22.pcap.out b/test/results/influxd/default/quic-mvfst-22.pcap.out index b6fc7e7ad..a606f6789 100644 --- a/test/results/influxd/default/quic-mvfst-22.pcap.out +++ b/test/results/influxd/default/quic-mvfst-22.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=15285,flow_src_total_bytes=72648,flow_dst_total_bytes=195075 +general json_lines=12,json_bytes=15281,flow_src_total_bytes=72648,flow_dst_total_bytes=195075 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=1,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=0,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-mvfst-22_decryption_error.pcap.out b/test/results/influxd/default/quic-mvfst-22_decryption_error.pcap.out index 9a12ad61a..f834baedd 100644 --- a/test/results/influxd/default/quic-mvfst-22_decryption_error.pcap.out +++ b/test/results/influxd/default/quic-mvfst-22_decryption_error.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=10266,flow_src_total_bytes=3572,flow_dst_total_bytes=38 +general json_lines=11,json_bytes=10260,flow_src_total_bytes=3572,flow_dst_total_bytes=38 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-mvfst-27.pcapng.out b/test/results/influxd/default/quic-mvfst-27.pcapng.out index 6dab4d774..6c9783b55 100644 --- a/test/results/influxd/default/quic-mvfst-27.pcapng.out +++ b/test/results/influxd/default/quic-mvfst-27.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=15580,flow_src_total_bytes=2538,flow_dst_total_bytes=6981 +general json_lines=10,json_bytes=15576,flow_src_total_bytes=2538,flow_dst_total_bytes=6981 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=0,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-mvfst-exp.pcap.out b/test/results/influxd/default/quic-mvfst-exp.pcap.out index 21bb8a35d..c8b80f3ac 100644 --- a/test/results/influxd/default/quic-mvfst-exp.pcap.out +++ b/test/results/influxd/default/quic-mvfst-exp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=15355,flow_src_total_bytes=3496,flow_dst_total_bytes=20953 +general json_lines=11,json_bytes=15349,flow_src_total_bytes=3496,flow_dst_total_bytes=20953 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic-v2.pcapng.out b/test/results/influxd/default/quic-v2.pcapng.out index 25d37d2aa..e38364a79 100644 --- a/test/results/influxd/default/quic-v2.pcapng.out +++ b/test/results/influxd/default/quic-v2.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=14511,flow_src_total_bytes=2222,flow_dst_total_bytes=9532 +general json_lines=11,json_bytes=14505,flow_src_total_bytes=2222,flow_dst_total_bytes=9532 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic.pcap.out b/test/results/influxd/default/quic.pcap.out index af77595b1..d2e8aca1f 100644 --- a/test/results/influxd/default/quic.pcap.out +++ b/test/results/influxd/default/quic.pcap.out @@ -1,4 +1,4 @@ -general json_lines=80,json_bytes=115600,flow_src_total_bytes=41486,flow_dst_total_bytes=285324 +general json_lines=80,json_bytes=115588,flow_src_total_bytes=41486,flow_dst_total_bytes=285324 events flow_new_count=10,flow_end_count=0,flow_idle_count=10,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=1,flow_detected_count=9,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=42,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=9 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=5,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic046.pcap.out b/test/results/influxd/default/quic046.pcap.out index a0f416538..97feec41f 100644 --- a/test/results/influxd/default/quic046.pcap.out +++ b/test/results/influxd/default/quic046.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=12575,flow_src_total_bytes=5170,flow_dst_total_bytes=81927 +general json_lines=12,json_bytes=12569,flow_src_total_bytes=5170,flow_dst_total_bytes=81927 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_0RTT.pcap.out b/test/results/influxd/default/quic_0RTT.pcap.out index 6360e8bb6..17a3a2260 100644 --- a/test/results/influxd/default/quic_0RTT.pcap.out +++ b/test/results/influxd/default/quic_0RTT.pcap.out @@ -1,4 +1,4 @@ -general json_lines=17,json_bytes=20112,flow_src_total_bytes=3106,flow_dst_total_bytes=3906 +general json_lines=17,json_bytes=20104,flow_src_total_bytes=3106,flow_dst_total_bytes=3906 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=7,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_cc_ack.pcapng.out b/test/results/influxd/default/quic_cc_ack.pcapng.out index 562d7d5e0..d188f8a5d 100644 --- a/test/results/influxd/default/quic_cc_ack.pcapng.out +++ b/test/results/influxd/default/quic_cc_ack.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=12110,flow_src_total_bytes=2700,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=12104,flow_src_total_bytes=2700,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_crypto_aes_auth_size.pcap.out b/test/results/influxd/default/quic_crypto_aes_auth_size.pcap.out index de944488f..c7f40a50f 100644 --- a/test/results/influxd/default/quic_crypto_aes_auth_size.pcap.out +++ b/test/results/influxd/default/quic_crypto_aes_auth_size.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=12786,flow_src_total_bytes=2700,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=12780,flow_src_total_bytes=2700,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_frags_ch_in_multiple_packets.pcapng.out b/test/results/influxd/default/quic_frags_ch_in_multiple_packets.pcapng.out index ab232cd46..abcea65ec 100644 --- a/test/results/influxd/default/quic_frags_ch_in_multiple_packets.pcapng.out +++ b/test/results/influxd/default/quic_frags_ch_in_multiple_packets.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=14576,flow_src_total_bytes=2464,flow_dst_total_bytes=1286 +general json_lines=11,json_bytes=14570,flow_src_total_bytes=2464,flow_dst_total_bytes=1286 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out b/test/results/influxd/default/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out index 75f8631a2..46987baf9 100644 --- a/test/results/influxd/default/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out +++ b/test/results/influxd/default/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=667,json_bytes=941886,flow_src_total_bytes=241650,flow_dst_total_bytes=0 +general json_lines=667,json_bytes=941834,flow_src_total_bytes=241650,flow_dst_total_bytes=0 events flow_new_count=113,flow_end_count=0,flow_idle_count=113,flow_update_count=123,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=113,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=179,init_count=1,reconnect_count=0,shutdown_count=1,status_count=24,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=113 breed flow_breed_safe_count=3,flow_breed_acceptable_count=88,flow_breed_fun_count=22,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_frags_different_dcid.pcapng.out b/test/results/influxd/default/quic_frags_different_dcid.pcapng.out index 2baa7be28..6545c6b01 100644 --- a/test/results/influxd/default/quic_frags_different_dcid.pcapng.out +++ b/test/results/influxd/default/quic_frags_different_dcid.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=13591,flow_src_total_bytes=2500,flow_dst_total_bytes=1200 +general json_lines=11,json_bytes=13585,flow_src_total_bytes=2500,flow_dst_total_bytes=1200 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=3,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_interop_V.pcapng.out b/test/results/influxd/default/quic_interop_V.pcapng.out index d2a6e25f6..ba91b15a4 100644 --- a/test/results/influxd/default/quic_interop_V.pcapng.out +++ b/test/results/influxd/default/quic_interop_V.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=471,json_bytes=631383,flow_src_total_bytes=229418,flow_dst_total_bytes=1702 +general json_lines=471,json_bytes=631377,flow_src_total_bytes=229418,flow_dst_total_bytes=1702 events flow_new_count=77,flow_end_count=0,flow_idle_count=77,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=77,flow_detection_update_count=30,flow_not_detected_count=0,flow_risky_count=58,packet_count=0,packet_flow_count=207,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=33,flow_state_finished=44 breed flow_breed_safe_count=0,flow_breed_acceptable_count=77,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_q39.pcap.out b/test/results/influxd/default/quic_q39.pcap.out index 1d2934f03..2781f9df6 100644 --- a/test/results/influxd/default/quic_q39.pcap.out +++ b/test/results/influxd/default/quic_q39.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=14826,flow_src_total_bytes=18965,flow_dst_total_bytes=2686 +general json_lines=12,json_bytes=14820,flow_src_total_bytes=18965,flow_dst_total_bytes=2686 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_q43.pcap.out b/test/results/influxd/default/quic_q43.pcap.out index 232b32552..d385cdfb1 100644 --- a/test/results/influxd/default/quic_q43.pcap.out +++ b/test/results/influxd/default/quic_q43.pcap.out @@ -1,4 +1,4 @@ -general json_lines=8,json_bytes=7547,flow_src_total_bytes=1350,flow_dst_total_bytes=30 +general json_lines=8,json_bytes=7541,flow_src_total_bytes=1350,flow_dst_total_bytes=30 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_q46.pcap.out b/test/results/influxd/default/quic_q46.pcap.out index b1bc09bcd..500b94d0a 100644 --- a/test/results/influxd/default/quic_q46.pcap.out +++ b/test/results/influxd/default/quic_q46.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=14673,flow_src_total_bytes=1465,flow_dst_total_bytes=18936 +general json_lines=11,json_bytes=14667,flow_src_total_bytes=1465,flow_dst_total_bytes=18936 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_q46_b.pcap.out b/test/results/influxd/default/quic_q46_b.pcap.out index f144e2056..9ca1ae117 100644 --- a/test/results/influxd/default/quic_q46_b.pcap.out +++ b/test/results/influxd/default/quic_q46_b.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=11481,flow_src_total_bytes=2376,flow_dst_total_bytes=2844 +general json_lines=11,json_bytes=11475,flow_src_total_bytes=2376,flow_dst_total_bytes=2844 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_q50.pcap.out b/test/results/influxd/default/quic_q50.pcap.out index 56ddee7fd..cfd6b30c8 100644 --- a/test/results/influxd/default/quic_q50.pcap.out +++ b/test/results/influxd/default/quic_q50.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=12961,flow_src_total_bytes=3327,flow_dst_total_bytes=16267 +general json_lines=11,json_bytes=12955,flow_src_total_bytes=3327,flow_dst_total_bytes=16267 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_t50.pcap.out b/test/results/influxd/default/quic_t50.pcap.out index 12ac1df31..a0f0e5a64 100644 --- a/test/results/influxd/default/quic_t50.pcap.out +++ b/test/results/influxd/default/quic_t50.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=15377,flow_src_total_bytes=2894,flow_dst_total_bytes=5022 +general json_lines=11,json_bytes=15371,flow_src_total_bytes=2894,flow_dst_total_bytes=5022 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quic_t51.pcap.out b/test/results/influxd/default/quic_t51.pcap.out index 85761e6fa..f116776cf 100644 --- a/test/results/influxd/default/quic_t51.pcap.out +++ b/test/results/influxd/default/quic_t51.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=16728,flow_src_total_bytes=2888,flow_dst_total_bytes=5904 +general json_lines=11,json_bytes=16722,flow_src_total_bytes=2888,flow_dst_total_bytes=5904 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/quickplay.pcap.out b/test/results/influxd/default/quickplay.pcap.out index a37f3af7e..d9b42525d 100644 --- a/test/results/influxd/default/quickplay.pcap.out +++ b/test/results/influxd/default/quickplay.pcap.out @@ -1,11 +1,11 @@ -general json_lines=145,json_bytes=170573,flow_src_total_bytes=37682,flow_dst_total_bytes=58185 +general json_lines=145,json_bytes=170719,flow_src_total_bytes=37682,flow_dst_total_bytes=58185 events flow_new_count=21,flow_end_count=2,flow_idle_count=19,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=21,flow_detection_update_count=10,flow_not_detected_count=0,flow_risky_count=7,packet_count=0,packet_flow_count=68,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=8,flow_state_finished=13 breed flow_breed_safe_count=0,flow_breed_acceptable_count=13,flow_breed_fun_count=8,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=2,flow_category_social_network_count=3,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=5,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=0,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=11,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=21,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=3,flow_severity_medium=11,flow_severity_high=0,flow_severity_severe=4,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=3,flow_severity_medium=15,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=21,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=21,flow_l4_udp_count=0,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=21,flow_detected_count=21,flow_guessed_count=0,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=4,flow_risk_5_count=11,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=3,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=11,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=3,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=4 diff --git a/test/results/influxd/default/radius_false_positive.pcapng.out b/test/results/influxd/default/radius_false_positive.pcapng.out index c84782eb0..cc7062bcb 100644 --- a/test/results/influxd/default/radius_false_positive.pcapng.out +++ b/test/results/influxd/default/radius_false_positive.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=11593,flow_src_total_bytes=6859,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=11587,flow_src_total_bytes=6859,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/radmin3.pcapng.out b/test/results/influxd/default/radmin3.pcapng.out index 850fc67c6..971c21378 100644 --- a/test/results/influxd/default/radmin3.pcapng.out +++ b/test/results/influxd/default/radmin3.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=13305,flow_src_total_bytes=24,flow_dst_total_bytes=60 +general json_lines=19,json_bytes=13299,flow_src_total_bytes=24,flow_dst_total_bytes=60 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/raft.pcap.out b/test/results/influxd/default/raft.pcap.out index 4e0ca4fa6..fa68beee2 100644 --- a/test/results/influxd/default/raft.pcap.out +++ b/test/results/influxd/default/raft.pcap.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=17037,flow_src_total_bytes=2000,flow_dst_total_bytes=0 +general json_lines=21,json_bytes=17031,flow_src_total_bytes=2000,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/raknet.pcap.out b/test/results/influxd/default/raknet.pcap.out index d8b0b0525..876e6cc8b 100644 --- a/test/results/influxd/default/raknet.pcap.out +++ b/test/results/influxd/default/raknet.pcap.out @@ -1,4 +1,4 @@ -general json_lines=95,json_bytes=80650,flow_src_total_bytes=5863,flow_dst_total_bytes=753 +general json_lines=95,json_bytes=80642,flow_src_total_bytes=5863,flow_dst_total_bytes=753 events flow_new_count=12,flow_end_count=0,flow_idle_count=12,flow_update_count=19,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=12,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=3,packet_count=0,packet_flow_count=36,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=12 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=12,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rdp.pcap.out b/test/results/influxd/default/rdp.pcap.out index ba322d80e..fa46ef268 100644 --- a/test/results/influxd/default/rdp.pcap.out +++ b/test/results/influxd/default/rdp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7478,flow_src_total_bytes=1081,flow_dst_total_bytes=1661 +general json_lines=11,json_bytes=7472,flow_src_total_bytes=1081,flow_dst_total_bytes=1661 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rdp2.pcap.out b/test/results/influxd/default/rdp2.pcap.out index 70f8a8dd4..17d82f4b6 100644 --- a/test/results/influxd/default/rdp2.pcap.out +++ b/test/results/influxd/default/rdp2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=29,json_bytes=29548,flow_src_total_bytes=5097,flow_dst_total_bytes=4480 +general json_lines=29,json_bytes=29538,flow_src_total_bytes=5097,flow_dst_total_bytes=4480 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=3,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rdp3.pcap.out b/test/results/influxd/default/rdp3.pcap.out index faa2299fd..edbbb16a1 100644 --- a/test/results/influxd/default/rdp3.pcap.out +++ b/test/results/influxd/default/rdp3.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7558,flow_src_total_bytes=1629,flow_dst_total_bytes=862 +general json_lines=11,json_bytes=7552,flow_src_total_bytes=1629,flow_dst_total_bytes=862 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/reasm_crash_anon.pcapng.out b/test/results/influxd/default/reasm_crash_anon.pcapng.out index 5afb5f4df..6ab440bad 100644 --- a/test/results/influxd/default/reasm_crash_anon.pcapng.out +++ b/test/results/influxd/default/reasm_crash_anon.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=10719,flow_src_total_bytes=979,flow_dst_total_bytes=5441 +general json_lines=14,json_bytes=10709,flow_src_total_bytes=979,flow_dst_total_bytes=5441 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/reasm_segv_anon.pcapng.out b/test/results/influxd/default/reasm_segv_anon.pcapng.out index 83bda2c31..50c9eb455 100644 --- a/test/results/influxd/default/reasm_segv_anon.pcapng.out +++ b/test/results/influxd/default/reasm_segv_anon.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=44,json_bytes=27013,flow_src_total_bytes=2008,flow_dst_total_bytes=72488 +general json_lines=44,json_bytes=27007,flow_src_total_bytes=2008,flow_dst_total_bytes=72488 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=16,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=16,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/reddit.pcap.out b/test/results/influxd/default/reddit.pcap.out index c3428cc28..c6dc71798 100644 --- a/test/results/influxd/default/reddit.pcap.out +++ b/test/results/influxd/default/reddit.pcap.out @@ -1,4 +1,4 @@ -general json_lines=582,json_bytes=564378,flow_src_total_bytes=64920,flow_dst_total_bytes=481968 +general json_lines=582,json_bytes=564372,flow_src_total_bytes=64920,flow_dst_total_bytes=481968 events flow_new_count=60,flow_end_count=23,flow_idle_count=37,flow_update_count=0,flow_analyse_count=17,flow_guessed_count=1,flow_detected_count=59,flow_detection_update_count=84,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=298,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=39,flow_state_finished=21 breed flow_breed_safe_count=6,flow_breed_acceptable_count=26,flow_breed_fun_count=26,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=1,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/resp.pcap.out b/test/results/influxd/default/resp.pcap.out index 59c2c65c5..e9192962a 100644 --- a/test/results/influxd/default/resp.pcap.out +++ b/test/results/influxd/default/resp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9533,flow_src_total_bytes=96,flow_dst_total_bytes=90212 +general json_lines=12,json_bytes=9527,flow_src_total_bytes=96,flow_dst_total_bytes=90212 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/riot.pcapng.out b/test/results/influxd/default/riot.pcapng.out index b823497c5..d967b3dad 100644 --- a/test/results/influxd/default/riot.pcapng.out +++ b/test/results/influxd/default/riot.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=18,json_bytes=25237,flow_src_total_bytes=8202,flow_dst_total_bytes=0 +general json_lines=18,json_bytes=25334,flow_src_total_bytes=8202,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=7,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/riotgames.pcap.out b/test/results/influxd/default/riotgames.pcap.out index faccd9d41..88bd15faf 100644 --- a/test/results/influxd/default/riotgames.pcap.out +++ b/test/results/influxd/default/riotgames.pcap.out @@ -1,4 +1,4 @@ -general json_lines=62,json_bytes=45140,flow_src_total_bytes=1342,flow_dst_total_bytes=743 +general json_lines=62,json_bytes=45118,flow_src_total_bytes=1342,flow_dst_total_bytes=743 events flow_new_count=9,flow_end_count=0,flow_idle_count=9,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=9,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=24,init_count=1,reconnect_count=0,shutdown_count=1,status_count=9,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=9 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=9,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rmcp.pcap.out b/test/results/influxd/default/rmcp.pcap.out index a38dd2464..5b8c1e518 100644 --- a/test/results/influxd/default/rmcp.pcap.out +++ b/test/results/influxd/default/rmcp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=29,json_bytes=22445,flow_src_total_bytes=116,flow_dst_total_bytes=0 +general json_lines=29,json_bytes=22435,flow_src_total_bytes=116,flow_dst_total_bytes=0 events flow_new_count=6,flow_end_count=0,flow_idle_count=6,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=6,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=6 breed flow_breed_safe_count=6,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/roblox.pcapng.out b/test/results/influxd/default/roblox.pcapng.out index 5117cb08c..e5041f929 100644 --- a/test/results/influxd/default/roblox.pcapng.out +++ b/test/results/influxd/default/roblox.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=39,json_bytes=43165,flow_src_total_bytes=17844,flow_dst_total_bytes=11993 +general json_lines=39,json_bytes=43155,flow_src_total_bytes=17844,flow_dst_total_bytes=11993 events flow_new_count=4,flow_end_count=1,flow_idle_count=3,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=4,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/roughtime.pcap.out b/test/results/influxd/default/roughtime.pcap.out index 84fa234e5..a4dcf0db6 100644 --- a/test/results/influxd/default/roughtime.pcap.out +++ b/test/results/influxd/default/roughtime.pcap.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=19260,flow_src_total_bytes=2768,flow_dst_total_bytes=0 +general json_lines=20,json_bytes=19252,flow_src_total_bytes=2768,flow_dst_total_bytes=0 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rsh-syslog-false-positive.pcap.out b/test/results/influxd/default/rsh-syslog-false-positive.pcap.out index 2c14dd9fa..2537510b3 100644 --- a/test/results/influxd/default/rsh-syslog-false-positive.pcap.out +++ b/test/results/influxd/default/rsh-syslog-false-positive.pcap.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=14744,flow_src_total_bytes=4939,flow_dst_total_bytes=0 +general json_lines=15,json_bytes=14738,flow_src_total_bytes=4939,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=2,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=2,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rsh.pcap.out b/test/results/influxd/default/rsh.pcap.out index 16d861b46..1605254a5 100644 --- a/test/results/influxd/default/rsh.pcap.out +++ b/test/results/influxd/default/rsh.pcap.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=13832,flow_src_total_bytes=66,flow_dst_total_bytes=39 +general json_lines=19,json_bytes=13826,flow_src_total_bytes=66,flow_dst_total_bytes=39 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=2,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rsync.pcap.out b/test/results/influxd/default/rsync.pcap.out index efac62332..48e39e050 100644 --- a/test/results/influxd/default/rsync.pcap.out +++ b/test/results/influxd/default/rsync.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7322,flow_src_total_bytes=86,flow_dst_total_bytes=411 +general json_lines=11,json_bytes=7316,flow_src_total_bytes=86,flow_dst_total_bytes=411 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rtcp_multiple_pkts_in_the_same_datagram.pcap.out b/test/results/influxd/default/rtcp_multiple_pkts_in_the_same_datagram.pcap.out index a75cb8e12..e7eefcd1f 100644 --- a/test/results/influxd/default/rtcp_multiple_pkts_in_the_same_datagram.pcap.out +++ b/test/results/influxd/default/rtcp_multiple_pkts_in_the_same_datagram.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8241,flow_src_total_bytes=336,flow_dst_total_bytes=184 +general json_lines=11,json_bytes=8235,flow_src_total_bytes=336,flow_dst_total_bytes=184 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rtmp.pcap.out b/test/results/influxd/default/rtmp.pcap.out index ae2a4143c..24172438b 100644 --- a/test/results/influxd/default/rtmp.pcap.out +++ b/test/results/influxd/default/rtmp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=9233,flow_src_total_bytes=3452,flow_dst_total_bytes=3496 +general json_lines=11,json_bytes=9227,flow_src_total_bytes=3452,flow_dst_total_bytes=3496 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rtp.pcapng.out b/test/results/influxd/default/rtp.pcapng.out index ba3065d39..9d851ad1f 100644 --- a/test/results/influxd/default/rtp.pcapng.out +++ b/test/results/influxd/default/rtp.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=28,json_bytes=27803,flow_src_total_bytes=19602,flow_dst_total_bytes=13839 +general json_lines=28,json_bytes=27795,flow_src_total_bytes=19602,flow_dst_total_bytes=13839 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rtps.pcap.out b/test/results/influxd/default/rtps.pcap.out index 811272c36..11abec8ea 100644 --- a/test/results/influxd/default/rtps.pcap.out +++ b/test/results/influxd/default/rtps.pcap.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=20361,flow_src_total_bytes=21164,flow_dst_total_bytes=0 +general json_lines=19,json_bytes=20355,flow_src_total_bytes=21164,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=8,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rtsp.pcap.out b/test/results/influxd/default/rtsp.pcap.out index 35a81ed71..6cebd2256 100644 --- a/test/results/influxd/default/rtsp.pcap.out +++ b/test/results/influxd/default/rtsp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=65,json_bytes=55816,flow_src_total_bytes=22024,flow_dst_total_bytes=45372 +general json_lines=65,json_bytes=55810,flow_src_total_bytes=22024,flow_dst_total_bytes=45372 events flow_new_count=7,flow_end_count=6,flow_idle_count=1,flow_update_count=0,flow_analyse_count=6,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=7,packet_count=0,packet_flow_count=35,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=7,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rtsp_setup_http.pcapng.out b/test/results/influxd/default/rtsp_setup_http.pcapng.out index a0ee96dfd..a0d4c63d7 100644 --- a/test/results/influxd/default/rtsp_setup_http.pcapng.out +++ b/test/results/influxd/default/rtsp_setup_http.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=5646,flow_src_total_bytes=179,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=5640,flow_src_total_bytes=179,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/rx.pcap.out b/test/results/influxd/default/rx.pcap.out index 6ead68d2a..998a9ac5d 100644 --- a/test/results/influxd/default/rx.pcap.out +++ b/test/results/influxd/default/rx.pcap.out @@ -1,4 +1,4 @@ -general json_lines=40,json_bytes=33264,flow_src_total_bytes=8248,flow_dst_total_bytes=12683 +general json_lines=40,json_bytes=33258,flow_src_total_bytes=8248,flow_dst_total_bytes=12683 events flow_new_count=5,flow_end_count=0,flow_idle_count=5,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=21,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=5 breed flow_breed_safe_count=0,flow_breed_acceptable_count=5,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/s7comm-plus.pcap.out b/test/results/influxd/default/s7comm-plus.pcap.out index c4487599b..62f0818c8 100644 --- a/test/results/influxd/default/s7comm-plus.pcap.out +++ b/test/results/influxd/default/s7comm-plus.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9495,flow_src_total_bytes=3254,flow_dst_total_bytes=2655 +general json_lines=12,json_bytes=9489,flow_src_total_bytes=3254,flow_dst_total_bytes=2655 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/s7comm.pcap.out b/test/results/influxd/default/s7comm.pcap.out index 50e5d1f9f..0e6833a4d 100644 --- a/test/results/influxd/default/s7comm.pcap.out +++ b/test/results/influxd/default/s7comm.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9520,flow_src_total_bytes=1202,flow_dst_total_bytes=1088 +general json_lines=12,json_bytes=9514,flow_src_total_bytes=1202,flow_dst_total_bytes=1088 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/safari.pcap.out b/test/results/influxd/default/safari.pcap.out index 04dbc2985..993d5558c 100644 --- a/test/results/influxd/default/safari.pcap.out +++ b/test/results/influxd/default/safari.pcap.out @@ -1,4 +1,4 @@ -general json_lines=69,json_bytes=59779,flow_src_total_bytes=7006,flow_dst_total_bytes=65156 +general json_lines=69,json_bytes=59773,flow_src_total_bytes=7006,flow_dst_total_bytes=65156 events flow_new_count=7,flow_end_count=0,flow_idle_count=7,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=9,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=35,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=5 breed flow_breed_safe_count=7,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/salesforce.pcap.out b/test/results/influxd/default/salesforce.pcap.out index 09f6a06d0..229699c66 100644 --- a/test/results/influxd/default/salesforce.pcap.out +++ b/test/results/influxd/default/salesforce.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=11289,flow_src_total_bytes=610,flow_dst_total_bytes=3585 +general json_lines=13,json_bytes=11283,flow_src_total_bytes=610,flow_dst_total_bytes=3585 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/sccp_hw_conf_register.pcapng.out b/test/results/influxd/default/sccp_hw_conf_register.pcapng.out index 1f50ddfb5..59adc3e1e 100644 --- a/test/results/influxd/default/sccp_hw_conf_register.pcapng.out +++ b/test/results/influxd/default/sccp_hw_conf_register.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7621,flow_src_total_bytes=496,flow_dst_total_bytes=100 +general json_lines=11,json_bytes=7615,flow_src_total_bytes=496,flow_dst_total_bytes=100 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/sctp.cap.out b/test/results/influxd/default/sctp.cap.out index b6c3151d1..426cbf643 100644 --- a/test/results/influxd/default/sctp.cap.out +++ b/test/results/influxd/default/sctp.cap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=9272,flow_src_total_bytes=140,flow_dst_total_bytes=64 +general json_lines=13,json_bytes=9266,flow_src_total_bytes=140,flow_dst_total_bytes=64 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/selfsigned.pcap.out b/test/results/influxd/default/selfsigned.pcap.out index 5b25e6c3c..fa5d21702 100644 --- a/test/results/influxd/default/selfsigned.pcap.out +++ b/test/results/influxd/default/selfsigned.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10436,flow_src_total_bytes=849,flow_dst_total_bytes=1785 +general json_lines=12,json_bytes=10430,flow_src_total_bytes=849,flow_dst_total_bytes=1785 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/sflow.pcap.out b/test/results/influxd/default/sflow.pcap.out index a9a178b81..f6577c4ad 100644 --- a/test/results/influxd/default/sflow.pcap.out +++ b/test/results/influxd/default/sflow.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9116,flow_src_total_bytes=1324,flow_dst_total_bytes=0 +general json_lines=12,json_bytes=9110,flow_src_total_bytes=1324,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=1,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/shadowsocks.pcap.out b/test/results/influxd/default/shadowsocks.pcap.out index a9b050b99..0a43b79dc 100644 --- a/test/results/influxd/default/shadowsocks.pcap.out +++ b/test/results/influxd/default/shadowsocks.pcap.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=12908,flow_src_total_bytes=201,flow_dst_total_bytes=134662 +general json_lines=19,json_bytes=12902,flow_src_total_bytes=201,flow_dst_total_bytes=134662 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/shell.pcap.out b/test/results/influxd/default/shell.pcap.out new file mode 100644 index 000000000..d7f208abd --- /dev/null +++ b/test/results/influxd/default/shell.pcap.out @@ -0,0 +1,11 @@ +general json_lines=27,json_bytes=35278,flow_src_total_bytes=12250,flow_dst_total_bytes=0 +events flow_new_count=4,flow_end_count=2,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=4,flow_risky_count=0,packet_count=0,packet_flow_count=12,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +state flow_state_info=4,flow_state_finished=0 +breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 +category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=0,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 +confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=0,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 +severity flow_severity_low=0,flow_severity_medium=0,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +layer3 flow_l3_ip4_count=4,flow_l3_ip6_count=0,flow_l3_other_count=0 +layer4 flow_l4_tcp_count=2,flow_l4_udp_count=2,flow_l4_icmp_count=0,flow_l4_other_count=0 +detection flow_active_count=4,flow_detected_count=0,flow_guessed_count=0,flow_not_detected_count=4 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/signal.pcap.out b/test/results/influxd/default/signal.pcap.out index 2d83d78fb..51a5dec01 100644 --- a/test/results/influxd/default/signal.pcap.out +++ b/test/results/influxd/default/signal.pcap.out @@ -1,4 +1,4 @@ -general json_lines=175,json_bytes=160815,flow_src_total_bytes=219449,flow_dst_total_bytes=54393 +general json_lines=175,json_bytes=160809,flow_src_total_bytes=219449,flow_dst_total_bytes=54393 events flow_new_count=19,flow_end_count=9,flow_idle_count=10,flow_update_count=0,flow_analyse_count=4,flow_guessed_count=0,flow_detected_count=19,flow_detection_update_count=27,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=84,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=16 breed flow_breed_safe_count=3,flow_breed_acceptable_count=3,flow_breed_fun_count=13,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/simple-dnscrypt.pcap.out b/test/results/influxd/default/simple-dnscrypt.pcap.out index 282c91be3..09b3c41ad 100644 --- a/test/results/influxd/default/simple-dnscrypt.pcap.out +++ b/test/results/influxd/default/simple-dnscrypt.pcap.out @@ -1,4 +1,4 @@ -general json_lines=45,json_bytes=42109,flow_src_total_bytes=2480,flow_dst_total_bytes=36106 +general json_lines=45,json_bytes=42103,flow_src_total_bytes=2480,flow_dst_total_bytes=36106 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=8,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=2 breed flow_breed_safe_count=1,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/sip.pcap.out b/test/results/influxd/default/sip.pcap.out index 38e1cedc2..687f68c29 100644 --- a/test/results/influxd/default/sip.pcap.out +++ b/test/results/influxd/default/sip.pcap.out @@ -1,4 +1,4 @@ -general json_lines=59,json_bytes=57867,flow_src_total_bytes=28304,flow_dst_total_bytes=16151 +general json_lines=59,json_bytes=57857,flow_src_total_bytes=28304,flow_dst_total_bytes=16151 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=25,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=16,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/sip_hello.pcapng.out b/test/results/influxd/default/sip_hello.pcapng.out index 524af0586..08da706f2 100644 --- a/test/results/influxd/default/sip_hello.pcapng.out +++ b/test/results/influxd/default/sip_hello.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=15571,flow_src_total_bytes=1962,flow_dst_total_bytes=2172 +general json_lines=20,json_bytes=15565,flow_src_total_bytes=1962,flow_dst_total_bytes=2172 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=9,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/sites.pcapng.out b/test/results/influxd/default/sites.pcapng.out index cae0ea180..062979bab 100644 --- a/test/results/influxd/default/sites.pcapng.out +++ b/test/results/influxd/default/sites.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=488,json_bytes=535678,flow_src_total_bytes=42344,flow_dst_total_bytes=251837 +general json_lines=488,json_bytes=535642,flow_src_total_bytes=42344,flow_dst_total_bytes=251837 events flow_new_count=56,flow_end_count=9,flow_idle_count=47,flow_update_count=1,flow_analyse_count=2,flow_guessed_count=4,flow_detected_count=52,flow_detection_update_count=58,flow_not_detected_count=0,flow_risky_count=3,packet_count=0,packet_flow_count=241,init_count=1,reconnect_count=0,shutdown_count=1,status_count=16,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=50,flow_state_finished=6 breed flow_breed_safe_count=8,flow_breed_acceptable_count=20,flow_breed_fun_count=23,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=1,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/skinny.pcap.out b/test/results/influxd/default/skinny.pcap.out index a571d3183..8c316f6cf 100644 --- a/test/results/influxd/default/skinny.pcap.out +++ b/test/results/influxd/default/skinny.pcap.out @@ -1,4 +1,4 @@ -general json_lines=61,json_bytes=50806,flow_src_total_bytes=19224,flow_dst_total_bytes=7540 +general json_lines=61,json_bytes=50800,flow_src_total_bytes=19224,flow_dst_total_bytes=7540 events flow_new_count=7,flow_end_count=0,flow_idle_count=7,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=35,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=7,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/skype-conference-call.pcap.out b/test/results/influxd/default/skype-conference-call.pcap.out index 496700da5..b87fcb392 100644 --- a/test/results/influxd/default/skype-conference-call.pcap.out +++ b/test/results/influxd/default/skype-conference-call.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10595,flow_src_total_bytes=19259,flow_dst_total_bytes=12028 +general json_lines=12,json_bytes=10589,flow_src_total_bytes=19259,flow_dst_total_bytes=12028 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/smb_deletefile.pcap.out b/test/results/influxd/default/smb_deletefile.pcap.out index 4c369920a..44de36b8f 100644 --- a/test/results/influxd/default/smb_deletefile.pcap.out +++ b/test/results/influxd/default/smb_deletefile.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=11914,flow_src_total_bytes=11034,flow_dst_total_bytes=14218 +general json_lines=12,json_bytes=11908,flow_src_total_bytes=11034,flow_dst_total_bytes=14218 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/smb_frags.pcap.out b/test/results/influxd/default/smb_frags.pcap.out index acb158d02..98c747f7c 100644 --- a/test/results/influxd/default/smb_frags.pcap.out +++ b/test/results/influxd/default/smb_frags.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=10318,flow_src_total_bytes=1651,flow_dst_total_bytes=536 +general json_lines=11,json_bytes=10312,flow_src_total_bytes=1651,flow_dst_total_bytes=536 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=1,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/smbv1.pcap.out b/test/results/influxd/default/smbv1.pcap.out index 44e8db566..15b75d32c 100644 --- a/test/results/influxd/default/smbv1.pcap.out +++ b/test/results/influxd/default/smbv1.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8872,flow_src_total_bytes=453,flow_dst_total_bytes=366 +general json_lines=11,json_bytes=8866,flow_src_total_bytes=453,flow_dst_total_bytes=366 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=1,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/smpp_in_general.pcap.out b/test/results/influxd/default/smpp_in_general.pcap.out index fef035a72..b98a3e31d 100644 --- a/test/results/influxd/default/smpp_in_general.pcap.out +++ b/test/results/influxd/default/smpp_in_general.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7424,flow_src_total_bytes=122,flow_dst_total_bytes=78 +general json_lines=11,json_bytes=7418,flow_src_total_bytes=122,flow_dst_total_bytes=78 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/smtp-starttls.pcap.out b/test/results/influxd/default/smtp-starttls.pcap.out index 584cfdb62..4bb37b206 100644 --- a/test/results/influxd/default/smtp-starttls.pcap.out +++ b/test/results/influxd/default/smtp-starttls.pcap.out @@ -1,4 +1,4 @@ -general json_lines=28,json_bytes=26291,flow_src_total_bytes=3118,flow_dst_total_bytes=6724 +general json_lines=28,json_bytes=26283,flow_src_total_bytes=3118,flow_dst_total_bytes=6724 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=6,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/smtp.pcap.out b/test/results/influxd/default/smtp.pcap.out index d080e1968..ba839db68 100644 --- a/test/results/influxd/default/smtp.pcap.out +++ b/test/results/influxd/default/smtp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9538,flow_src_total_bytes=16527,flow_dst_total_bytes=1428 +general json_lines=12,json_bytes=9532,flow_src_total_bytes=16527,flow_dst_total_bytes=1428 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/smtps.pcapng.out b/test/results/influxd/default/smtps.pcapng.out index 912407456..de94cab1b 100644 --- a/test/results/influxd/default/smtps.pcapng.out +++ b/test/results/influxd/default/smtps.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=9321,flow_src_total_bytes=517,flow_dst_total_bytes=179 +general json_lines=11,json_bytes=9315,flow_src_total_bytes=517,flow_dst_total_bytes=179 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/snapchat.pcap.out b/test/results/influxd/default/snapchat.pcap.out index 63229a189..534693be6 100644 --- a/test/results/influxd/default/snapchat.pcap.out +++ b/test/results/influxd/default/snapchat.pcap.out @@ -1,4 +1,4 @@ -general json_lines=30,json_bytes=25012,flow_src_total_bytes=4919,flow_dst_total_bytes=2196 +general json_lines=30,json_bytes=25006,flow_src_total_bytes=4919,flow_dst_total_bytes=2196 events flow_new_count=3,flow_end_count=1,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/snapchat_call.pcapng.out b/test/results/influxd/default/snapchat_call.pcapng.out index e53a75194..419d7543d 100644 --- a/test/results/influxd/default/snapchat_call.pcapng.out +++ b/test/results/influxd/default/snapchat_call.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=19123,flow_src_total_bytes=4245,flow_dst_total_bytes=6427 +general json_lines=13,json_bytes=19117,flow_src_total_bytes=4245,flow_dst_total_bytes=6427 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/snapchat_call_v1.pcapng.out b/test/results/influxd/default/snapchat_call_v1.pcapng.out index 30f5cf62d..a535f43eb 100644 --- a/test/results/influxd/default/snapchat_call_v1.pcapng.out +++ b/test/results/influxd/default/snapchat_call_v1.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=18212,flow_src_total_bytes=337357,flow_dst_total_bytes=7923 +general json_lines=13,json_bytes=18206,flow_src_total_bytes=337357,flow_dst_total_bytes=7923 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/snmp.pcap.out b/test/results/influxd/default/snmp.pcap.out index 5d678aa5a..bcfe32419 100644 --- a/test/results/influxd/default/snmp.pcap.out +++ b/test/results/influxd/default/snmp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=139,json_bytes=115549,flow_src_total_bytes=7241,flow_dst_total_bytes=4130 +general json_lines=139,json_bytes=115537,flow_src_total_bytes=7241,flow_dst_total_bytes=4130 events flow_new_count=17,flow_end_count=0,flow_idle_count=17,flow_update_count=10,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=17,flow_detection_update_count=7,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=65,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=15 breed flow_breed_safe_count=0,flow_breed_acceptable_count=17,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/soap.pcap.out b/test/results/influxd/default/soap.pcap.out index b13111a44..5e8380590 100644 --- a/test/results/influxd/default/soap.pcap.out +++ b/test/results/influxd/default/soap.pcap.out @@ -1,4 +1,4 @@ -general json_lines=24,json_bytes=27572,flow_src_total_bytes=8109,flow_dst_total_bytes=1637 +general json_lines=24,json_bytes=27564,flow_src_total_bytes=8109,flow_dst_total_bytes=1637 events flow_new_count=3,flow_end_count=1,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=11,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/socks.pcap.out b/test/results/influxd/default/socks.pcap.out index 7209dc889..3fdc8c54f 100644 --- a/test/results/influxd/default/socks.pcap.out +++ b/test/results/influxd/default/socks.pcap.out @@ -1,4 +1,4 @@ -general json_lines=36,json_bytes=24629,flow_src_total_bytes=905,flow_dst_total_bytes=5743 +general json_lines=36,json_bytes=24621,flow_src_total_bytes=905,flow_dst_total_bytes=5743 events flow_new_count=4,flow_end_count=4,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/softether.pcap.out b/test/results/influxd/default/softether.pcap.out index ad0a668ae..9a82bb2b6 100644 --- a/test/results/influxd/default/softether.pcap.out +++ b/test/results/influxd/default/softether.pcap.out @@ -1,4 +1,4 @@ -general json_lines=107,json_bytes=91835,flow_src_total_bytes=7165,flow_dst_total_bytes=6576 +general json_lines=107,json_bytes=91807,flow_src_total_bytes=7165,flow_dst_total_bytes=6576 events flow_new_count=6,flow_end_count=0,flow_idle_count=6,flow_update_count=40,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=6,flow_detection_update_count=5,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=29,init_count=1,reconnect_count=0,shutdown_count=1,status_count=12,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=5 breed flow_breed_safe_count=0,flow_breed_acceptable_count=6,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/someip-tp.pcap.out b/test/results/influxd/default/someip-tp.pcap.out index 08fce5dfe..d3856b8c5 100644 --- a/test/results/influxd/default/someip-tp.pcap.out +++ b/test/results/influxd/default/someip-tp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=17014,flow_src_total_bytes=12472,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=17008,flow_src_total_bytes=12472,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/someip-udp-method-call.pcapng.out b/test/results/influxd/default/someip-udp-method-call.pcapng.out index e3b4a3c70..20b3bda42 100644 --- a/test/results/influxd/default/someip-udp-method-call.pcapng.out +++ b/test/results/influxd/default/someip-udp-method-call.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10038,flow_src_total_bytes=353,flow_dst_total_bytes=25 +general json_lines=12,json_bytes=10032,flow_src_total_bytes=353,flow_dst_total_bytes=25 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=3,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/someip_sd_sample.pcap.out b/test/results/influxd/default/someip_sd_sample.pcap.out index 4b5334286..8657140aa 100644 --- a/test/results/influxd/default/someip_sd_sample.pcap.out +++ b/test/results/influxd/default/someip_sd_sample.pcap.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=6558,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=15,json_bytes=6552,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=0,flow_end_count=0,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=6,packet_flow_count=0,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=6,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/source_engine.pcap.out b/test/results/influxd/default/source_engine.pcap.out index e8b502f7a..89d813dc5 100644 --- a/test/results/influxd/default/source_engine.pcap.out +++ b/test/results/influxd/default/source_engine.pcap.out @@ -1,4 +1,4 @@ -general json_lines=85,json_bytes=68671,flow_src_total_bytes=425,flow_dst_total_bytes=0 +general json_lines=85,json_bytes=68647,flow_src_total_bytes=425,flow_dst_total_bytes=0 events flow_new_count=17,flow_end_count=0,flow_idle_count=17,flow_update_count=5,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=17,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=17,init_count=1,reconnect_count=0,shutdown_count=1,status_count=10,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=17 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=17,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/spotify_tcp.pcap.out b/test/results/influxd/default/spotify_tcp.pcap.out index d705b8310..271768c87 100644 --- a/test/results/influxd/default/spotify_tcp.pcap.out +++ b/test/results/influxd/default/spotify_tcp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=6894,flow_src_total_bytes=792,flow_dst_total_bytes=2002 +general json_lines=10,json_bytes=6890,flow_src_total_bytes=792,flow_dst_total_bytes=2002 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=0,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/sql_injection.pcap.out b/test/results/influxd/default/sql_injection.pcap.out index da488f641..0c46d1f8c 100644 --- a/test/results/influxd/default/sql_injection.pcap.out +++ b/test/results/influxd/default/sql_injection.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=11382,flow_src_total_bytes=691,flow_dst_total_bytes=1727 +general json_lines=11,json_bytes=11376,flow_src_total_bytes=691,flow_dst_total_bytes=1727 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/srvloc-v1.pcapng.out b/test/results/influxd/default/srvloc-v1.pcapng.out index 7963e2a34..f049c5660 100644 --- a/test/results/influxd/default/srvloc-v1.pcapng.out +++ b/test/results/influxd/default/srvloc-v1.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=8958,flow_src_total_bytes=406,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=8952,flow_src_total_bytes=406,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=2,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/srvloc.pcap.out b/test/results/influxd/default/srvloc.pcap.out index 7730aaf1e..64c77f68d 100644 --- a/test/results/influxd/default/srvloc.pcap.out +++ b/test/results/influxd/default/srvloc.pcap.out @@ -1,4 +1,4 @@ -general json_lines=3001,json_bytes=2440231,flow_src_total_bytes=30707,flow_dst_total_bytes=0 +general json_lines=3001,json_bytes=2439419,flow_src_total_bytes=30707,flow_dst_total_bytes=0 events flow_new_count=621,flow_end_count=0,flow_idle_count=621,flow_update_count=103,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=621,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=629,init_count=1,reconnect_count=0,shutdown_count=1,status_count=404,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=621 breed flow_breed_safe_count=0,flow_breed_acceptable_count=621,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ssdp-m-search-ua.pcap.out b/test/results/influxd/default/ssdp-m-search-ua.pcap.out index c0d43d634..c93ad0141 100644 --- a/test/results/influxd/default/ssdp-m-search-ua.pcap.out +++ b/test/results/influxd/default/ssdp-m-search-ua.pcap.out @@ -1,4 +1,4 @@ -general json_lines=10,json_bytes=7720,flow_src_total_bytes=696,flow_dst_total_bytes=0 +general json_lines=10,json_bytes=7714,flow_src_total_bytes=696,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ssdp-m-search.pcap.out b/test/results/influxd/default/ssdp-m-search.pcap.out index fa51107ac..fc9488e90 100644 --- a/test/results/influxd/default/ssdp-m-search.pcap.out +++ b/test/results/influxd/default/ssdp-m-search.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=8402,flow_src_total_bytes=399,flow_dst_total_bytes=0 +general json_lines=12,json_bytes=8396,flow_src_total_bytes=399,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=1,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ssh.pcap.out b/test/results/influxd/default/ssh.pcap.out index 637aec0b2..a334bd03b 100644 --- a/test/results/influxd/default/ssh.pcap.out +++ b/test/results/influxd/default/ssh.pcap.out @@ -1,4 +1,4 @@ -general json_lines=16,json_bytes=15535,flow_src_total_bytes=5109,flow_dst_total_bytes=13389 +general json_lines=16,json_bytes=15529,flow_src_total_bytes=5109,flow_dst_total_bytes=13389 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=4,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ssl-cert-name-mismatch.pcap.out b/test/results/influxd/default/ssl-cert-name-mismatch.pcap.out index b6c93033d..00705a858 100644 --- a/test/results/influxd/default/ssl-cert-name-mismatch.pcap.out +++ b/test/results/influxd/default/ssl-cert-name-mismatch.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=10908,flow_src_total_bytes=402,flow_dst_total_bytes=3608 +general json_lines=13,json_bytes=10902,flow_src_total_bytes=402,flow_dst_total_bytes=3608 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/starcraft_battle.pcap.out b/test/results/influxd/default/starcraft_battle.pcap.out index 9cefd3286..d358745f0 100644 --- a/test/results/influxd/default/starcraft_battle.pcap.out +++ b/test/results/influxd/default/starcraft_battle.pcap.out @@ -1,11 +1,11 @@ -general json_lines=383,json_bytes=296740,flow_src_total_bytes=11037,flow_dst_total_bytes=305631 +general json_lines=383,json_bytes=296791,flow_src_total_bytes=11037,flow_dst_total_bytes=305631 events flow_new_count=52,flow_end_count=26,flow_idle_count=26,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=13,flow_detected_count=39,flow_detection_update_count=16,flow_not_detected_count=0,flow_risky_count=8,packet_count=1,packet_flow_count=203,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=1,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=16,flow_state_finished=36 breed flow_breed_safe_count=9,flow_breed_acceptable_count=28,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=27,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=2,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=8,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=1,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=1,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=39,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=9,flow_severity_medium=1,flow_severity_high=7,flow_severity_severe=1,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=9,flow_severity_medium=2,flow_severity_high=7,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=52,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=38,flow_l4_udp_count=13,flow_l4_icmp_count=0,flow_l4_other_count=1 detection flow_active_count=52,flow_detected_count=39,flow_guessed_count=13,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=1,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=2,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=5,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=1,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=2,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=6,flow_risk_47_count=1,flow_risk_48_count=0,flow_risk_49_count=1,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=2,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=5,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=1,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=2,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=6,flow_risk_47_count=1,flow_risk_48_count=0,flow_risk_49_count=1,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=1 diff --git a/test/results/influxd/default/steam.pcapng.out b/test/results/influxd/default/steam.pcapng.out index 1812ed822..d6ec64373 100644 --- a/test/results/influxd/default/steam.pcapng.out +++ b/test/results/influxd/default/steam.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=59,json_bytes=50697,flow_src_total_bytes=5134,flow_dst_total_bytes=4588 +general json_lines=59,json_bytes=50691,flow_src_total_bytes=5134,flow_dst_total_bytes=4588 events flow_new_count=7,flow_end_count=1,flow_idle_count=6,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=4,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=31,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=4,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=7,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stomp.pcapng.out b/test/results/influxd/default/stomp.pcapng.out index 5219649bb..cf0462a8c 100644 --- a/test/results/influxd/default/stomp.pcapng.out +++ b/test/results/influxd/default/stomp.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7378,flow_src_total_bytes=195,flow_dst_total_bytes=291 +general json_lines=11,json_bytes=7372,flow_src_total_bytes=195,flow_dst_total_bytes=291 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun.pcap.out b/test/results/influxd/default/stun.pcap.out index 00b64fd5e..c69f71099 100644 --- a/test/results/influxd/default/stun.pcap.out +++ b/test/results/influxd/default/stun.pcap.out @@ -1,4 +1,4 @@ -general json_lines=89,json_bytes=76168,flow_src_total_bytes=9540,flow_dst_total_bytes=9072 +general json_lines=89,json_bytes=76148,flow_src_total_bytes=9540,flow_dst_total_bytes=9072 events flow_new_count=9,flow_end_count=1,flow_idle_count=8,flow_update_count=3,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=9,flow_detection_update_count=9,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=37,init_count=1,reconnect_count=0,shutdown_count=1,status_count=8,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=9,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun_classic.pcap.out b/test/results/influxd/default/stun_classic.pcap.out index f8796852c..0d0beaea5 100644 --- a/test/results/influxd/default/stun_classic.pcap.out +++ b/test/results/influxd/default/stun_classic.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=8806,flow_src_total_bytes=284,flow_dst_total_bytes=416 +general json_lines=12,json_bytes=8800,flow_src_total_bytes=284,flow_dst_total_bytes=416 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun_dtls_rtp.pcapng.out b/test/results/influxd/default/stun_dtls_rtp.pcapng.out index 3dae82b1b..554b99cb8 100644 --- a/test/results/influxd/default/stun_dtls_rtp.pcapng.out +++ b/test/results/influxd/default/stun_dtls_rtp.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=12223,flow_src_total_bytes=3152,flow_dst_total_bytes=3623 +general json_lines=12,json_bytes=12217,flow_src_total_bytes=3152,flow_dst_total_bytes=3623 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun_dtls_rtp_unidir.pcapng.out b/test/results/influxd/default/stun_dtls_rtp_unidir.pcapng.out index 3af09b012..6bc0392ee 100644 --- a/test/results/influxd/default/stun_dtls_rtp_unidir.pcapng.out +++ b/test/results/influxd/default/stun_dtls_rtp_unidir.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=17361,flow_src_total_bytes=8552,flow_dst_total_bytes=0 +general json_lines=21,json_bytes=17355,flow_src_total_bytes=8552,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun_dtls_unidirectional_client.pcap.out b/test/results/influxd/default/stun_dtls_unidirectional_client.pcap.out index 5f45b6fdd..dc2944aea 100644 --- a/test/results/influxd/default/stun_dtls_unidirectional_client.pcap.out +++ b/test/results/influxd/default/stun_dtls_unidirectional_client.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=12062,flow_src_total_bytes=1456,flow_dst_total_bytes=0 +general json_lines=13,json_bytes=12056,flow_src_total_bytes=1456,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun_dtls_unidirectional_server.pcap.out b/test/results/influxd/default/stun_dtls_unidirectional_server.pcap.out index 77c4ce15b..ba47f8074 100644 --- a/test/results/influxd/default/stun_dtls_unidirectional_server.pcap.out +++ b/test/results/influxd/default/stun_dtls_unidirectional_server.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=12217,flow_src_total_bytes=1311,flow_dst_total_bytes=0 +general json_lines=13,json_bytes=12211,flow_src_total_bytes=1311,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun_google_meet.pcapng.out b/test/results/influxd/default/stun_google_meet.pcapng.out index 0d6ac61f2..248120b2a 100644 --- a/test/results/influxd/default/stun_google_meet.pcapng.out +++ b/test/results/influxd/default/stun_google_meet.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=71,json_bytes=63366,flow_src_total_bytes=13243,flow_dst_total_bytes=43190 +general json_lines=71,json_bytes=63358,flow_src_total_bytes=13243,flow_dst_total_bytes=43190 events flow_new_count=7,flow_end_count=0,flow_idle_count=7,flow_update_count=6,flow_analyse_count=4,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=34,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=7,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun_msteams_unidir.pcapng.out b/test/results/influxd/default/stun_msteams_unidir.pcapng.out index def4a92f9..92e1a62f3 100644 --- a/test/results/influxd/default/stun_msteams_unidir.pcapng.out +++ b/test/results/influxd/default/stun_msteams_unidir.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=11199,flow_src_total_bytes=5440,flow_dst_total_bytes=0 +general json_lines=11,json_bytes=11193,flow_src_total_bytes=5440,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun_signal.pcapng.out b/test/results/influxd/default/stun_signal.pcapng.out index f04cd7306..08e2e88d6 100644 --- a/test/results/influxd/default/stun_signal.pcapng.out +++ b/test/results/influxd/default/stun_signal.pcapng.out @@ -1,11 +1,11 @@ -general json_lines=211,json_bytes=169746,flow_src_total_bytes=13408,flow_dst_total_bytes=16192 -events flow_new_count=23,flow_end_count=0,flow_idle_count=23,flow_update_count=15,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=23,flow_detection_update_count=8,flow_not_detected_count=0,flow_risky_count=15,packet_count=0,packet_flow_count=113,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 -state flow_state_info=0,flow_state_finished=23 +general json_lines=229,json_bytes=190798,flow_src_total_bytes=13408,flow_dst_total_bytes=16192 +events flow_new_count=23,flow_end_count=0,flow_idle_count=23,flow_update_count=15,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=23,flow_detection_update_count=26,flow_not_detected_count=0,flow_risky_count=17,packet_count=0,packet_flow_count=113,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +state flow_state_info=2,flow_state_finished=21 breed flow_breed_safe_count=0,flow_breed_acceptable_count=23,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=15,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=8,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=15,flow_confidence_dpi=8,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=4,flow_severity_medium=21,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=14,flow_severity_medium=35,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=23,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=0,flow_l4_udp_count=21,flow_l4_icmp_count=2,flow_l4_other_count=0 detection flow_active_count=23,flow_detected_count=23,flow_guessed_count=0,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=21,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=6,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=35,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=16,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/stun_tcp_multiple_msgs_same_pkt.pcap.out b/test/results/influxd/default/stun_tcp_multiple_msgs_same_pkt.pcap.out index a3ad2d3f4..4bda40c65 100644 --- a/test/results/influxd/default/stun_tcp_multiple_msgs_same_pkt.pcap.out +++ b/test/results/influxd/default/stun_tcp_multiple_msgs_same_pkt.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7830,flow_src_total_bytes=0,flow_dst_total_bytes=168 +general json_lines=11,json_bytes=7824,flow_src_total_bytes=0,flow_dst_total_bytes=168 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/stun_wa_call.pcapng.out b/test/results/influxd/default/stun_wa_call.pcapng.out index 6e73b8f07..314841897 100644 --- a/test/results/influxd/default/stun_wa_call.pcapng.out +++ b/test/results/influxd/default/stun_wa_call.pcapng.out @@ -1,11 +1,11 @@ -general json_lines=130,json_bytes=113256,flow_src_total_bytes=44019,flow_dst_total_bytes=64856 -events flow_new_count=13,flow_end_count=0,flow_idle_count=13,flow_update_count=5,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=13,flow_detection_update_count=20,flow_not_detected_count=0,flow_risky_count=12,packet_count=0,packet_flow_count=61,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +general json_lines=132,json_bytes=115689,flow_src_total_bytes=44019,flow_dst_total_bytes=64856 +events flow_new_count=13,flow_end_count=0,flow_idle_count=13,flow_update_count=5,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=13,flow_detection_update_count=22,flow_not_detected_count=0,flow_risky_count=12,packet_count=0,packet_flow_count=61,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=13 breed flow_breed_safe_count=0,flow_breed_acceptable_count=13,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=12,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=1,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=2,flow_confidence_dpi=11,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=10,flow_severity_medium=2,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=11,flow_severity_medium=4,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=13,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=0,flow_l4_udp_count=12,flow_l4_icmp_count=1,flow_l4_other_count=0 detection flow_active_count=13,flow_detected_count=13,flow_guessed_count=0,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=2,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=10,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=4,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=11,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/stun_zoom.pcapng.out b/test/results/influxd/default/stun_zoom.pcapng.out index 74242742e..87f136cf7 100644 --- a/test/results/influxd/default/stun_zoom.pcapng.out +++ b/test/results/influxd/default/stun_zoom.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=27,json_bytes=25766,flow_src_total_bytes=4671,flow_dst_total_bytes=10647 +general json_lines=27,json_bytes=25760,flow_src_total_bytes=4671,flow_dst_total_bytes=10647 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=7,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/syncthing.pcap.out b/test/results/influxd/default/syncthing.pcap.out index 0fca6bff3..da83603e6 100644 --- a/test/results/influxd/default/syncthing.pcap.out +++ b/test/results/influxd/default/syncthing.pcap.out @@ -1,4 +1,4 @@ -general json_lines=40,json_bytes=37389,flow_src_total_bytes=13912,flow_dst_total_bytes=0 +general json_lines=40,json_bytes=37383,flow_src_total_bytes=13912,flow_dst_total_bytes=0 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=11,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=14,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=4,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/synscan.pcap.out b/test/results/influxd/default/synscan.pcap.out index b4d79ca6a..2446101e8 100644 --- a/test/results/influxd/default/synscan.pcap.out +++ b/test/results/influxd/default/synscan.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7996,json_bytes=6243798,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=7996,json_bytes=6243792,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=1994,flow_end_count=5,flow_idle_count=1989,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=136,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=1858,flow_risky_count=0,packet_count=0,packet_flow_count=2011,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1994,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/syslog.pcap.out b/test/results/influxd/default/syslog.pcap.out index c1aa213f1..75eda4658 100644 --- a/test/results/influxd/default/syslog.pcap.out +++ b/test/results/influxd/default/syslog.pcap.out @@ -1,4 +1,4 @@ -general json_lines=148,json_bytes=120580,flow_src_total_bytes=13199,flow_dst_total_bytes=0 +general json_lines=148,json_bytes=120556,flow_src_total_bytes=13199,flow_dst_total_bytes=0 events flow_new_count=19,flow_end_count=1,flow_idle_count=18,flow_update_count=10,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=17,flow_detection_update_count=0,flow_not_detected_count=2,flow_risky_count=1,packet_count=6,packet_flow_count=57,init_count=1,reconnect_count=0,shutdown_count=1,status_count=10,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=6,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=17 breed flow_breed_safe_count=0,flow_breed_acceptable_count=17,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tailscale.pcap.out b/test/results/influxd/default/tailscale.pcap.out index 3e812a9db..c1a4bf864 100644 --- a/test/results/influxd/default/tailscale.pcap.out +++ b/test/results/influxd/default/tailscale.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10198,flow_src_total_bytes=5700,flow_dst_total_bytes=6322 +general json_lines=12,json_bytes=10192,flow_src_total_bytes=5700,flow_dst_total_bytes=6322 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/targusdataspeed_false_positives.pcap.out b/test/results/influxd/default/targusdataspeed_false_positives.pcap.out index 39952e34b..6641e2e25 100644 --- a/test/results/influxd/default/targusdataspeed_false_positives.pcap.out +++ b/test/results/influxd/default/targusdataspeed_false_positives.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10301,flow_src_total_bytes=196,flow_dst_total_bytes=575 +general json_lines=12,json_bytes=10297,flow_src_total_bytes=196,flow_dst_total_bytes=575 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=4,init_count=1,reconnect_count=0,shutdown_count=1,status_count=0,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tcp_scan.pcapng.out b/test/results/influxd/default/tcp_scan.pcapng.out index 1c4b1de55..b4fda7302 100644 --- a/test/results/influxd/default/tcp_scan.pcapng.out +++ b/test/results/influxd/default/tcp_scan.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=42,json_bytes=30210,flow_src_total_bytes=0,flow_dst_total_bytes=0 +general json_lines=42,json_bytes=30204,flow_src_total_bytes=0,flow_dst_total_bytes=0 events flow_new_count=7,flow_end_count=7,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=4,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=3,flow_risky_count=0,packet_count=0,packet_flow_count=18,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=7,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/teams.pcap.out b/test/results/influxd/default/teams.pcap.out index 7c981dc44..cc539bdaa 100644 --- a/test/results/influxd/default/teams.pcap.out +++ b/test/results/influxd/default/teams.pcap.out @@ -1,11 +1,11 @@ -general json_lines=674,json_bytes=638720,flow_src_total_bytes=293772,flow_dst_total_bytes=293323 -events flow_new_count=83,flow_end_count=17,flow_idle_count=66,flow_update_count=0,flow_analyse_count=16,flow_guessed_count=2,flow_detected_count=80,flow_detection_update_count=57,flow_not_detected_count=1,flow_risky_count=27,packet_count=16,packet_flow_count=317,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=16,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 -state flow_state_info=16,flow_state_finished=67 +general json_lines=682,json_bytes=647764,flow_src_total_bytes=293772,flow_dst_total_bytes=293323 +events flow_new_count=83,flow_end_count=17,flow_idle_count=66,flow_update_count=0,flow_analyse_count=16,flow_guessed_count=2,flow_detected_count=80,flow_detection_update_count=65,flow_not_detected_count=1,flow_risky_count=29,packet_count=16,packet_flow_count=317,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=16,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +state flow_state_info=20,flow_state_finished=63 breed flow_breed_safe_count=42,flow_breed_acceptable_count=37,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=2,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=20,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=11,flow_category_network_count=27,flow_category_collaborative_count=19,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=1,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=6,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=74,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=38,flow_severity_medium=10,flow_severity_high=2,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=42,flow_severity_medium=12,flow_severity_high=2,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=83,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=42,flow_l4_udp_count=40,flow_l4_icmp_count=1,flow_l4_other_count=0 detection flow_active_count=83,flow_detected_count=80,flow_guessed_count=2,flow_not_detected_count=1 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=10,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=2,flow_risk_11_count=0,flow_risk_12_count=2,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=33,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=1,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=1,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=1,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=12,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=2,flow_risk_11_count=0,flow_risk_12_count=2,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=33,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=1,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=5,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=1,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/teamspeak3.pcap.out b/test/results/influxd/default/teamspeak3.pcap.out index 4c669c787..f13bd50ca 100644 --- a/test/results/influxd/default/teamspeak3.pcap.out +++ b/test/results/influxd/default/teamspeak3.pcap.out @@ -1,4 +1,4 @@ -general json_lines=260,json_bytes=218572,flow_src_total_bytes=4245,flow_dst_total_bytes=1872 +general json_lines=260,json_bytes=218370,flow_src_total_bytes=4245,flow_dst_total_bytes=1872 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=142,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=99,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/teamviewer.pcap.out b/test/results/influxd/default/teamviewer.pcap.out index 75dd57771..89d59bd93 100644 --- a/test/results/influxd/default/teamviewer.pcap.out +++ b/test/results/influxd/default/teamviewer.pcap.out @@ -1,4 +1,4 @@ -general json_lines=23,json_bytes=22135,flow_src_total_bytes=60849,flow_dst_total_bytes=93607 +general json_lines=23,json_bytes=22129,flow_src_total_bytes=60849,flow_dst_total_bytes=93607 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=2,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/telegram.pcap.out b/test/results/influxd/default/telegram.pcap.out index 92a910c3f..6285dcfb7 100644 --- a/test/results/influxd/default/telegram.pcap.out +++ b/test/results/influxd/default/telegram.pcap.out @@ -1,4 +1,4 @@ -general json_lines=340,json_bytes=290997,flow_src_total_bytes=159435,flow_dst_total_bytes=109098 +general json_lines=340,json_bytes=290991,flow_src_total_bytes=159435,flow_dst_total_bytes=109098 events flow_new_count=48,flow_end_count=0,flow_idle_count=48,flow_update_count=10,flow_analyse_count=6,flow_guessed_count=0,flow_detected_count=45,flow_detection_update_count=14,flow_not_detected_count=3,flow_risky_count=4,packet_count=0,packet_flow_count=163,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=6,flow_state_finished=42 breed flow_breed_safe_count=3,flow_breed_acceptable_count=39,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=1,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/telegram_videocall.pcapng.out b/test/results/influxd/default/telegram_videocall.pcapng.out index 6127b35d2..6ce032c55 100644 --- a/test/results/influxd/default/telegram_videocall.pcapng.out +++ b/test/results/influxd/default/telegram_videocall.pcapng.out @@ -1,9 +1,9 @@ -general json_lines=258,json_bytes=214813,flow_src_total_bytes=59877,flow_dst_total_bytes=270358 +general json_lines=258,json_bytes=215025,flow_src_total_bytes=59877,flow_dst_total_bytes=270358 events flow_new_count=34,flow_end_count=6,flow_idle_count=28,flow_update_count=1,flow_analyse_count=4,flow_guessed_count=2,flow_detected_count=32,flow_detection_update_count=14,flow_not_detected_count=0,flow_risky_count=16,packet_count=0,packet_flow_count=134,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 -state flow_state_info=5,flow_state_finished=29 +state flow_state_info=11,flow_state_finished=23 breed flow_breed_safe_count=1,flow_breed_acceptable_count=31,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 -category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=1,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=7,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=1,flow_category_network_count=23,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 -confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=25,flow_confidence_nbpf=0,flow_confidence_by_ip=7,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 +category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=1,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=7,flow_category_voip_count=4,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=1,flow_category_network_count=19,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 +confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=4,flow_confidence_dpi=21,flow_confidence_nbpf=0,flow_confidence_by_ip=7,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 severity flow_severity_low=2,flow_severity_medium=30,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=31,flow_l3_ip6_count=3,flow_l3_other_count=0 layer4 flow_l4_tcp_count=10,flow_l4_udp_count=19,flow_l4_icmp_count=3,flow_l4_other_count=2 diff --git a/test/results/influxd/default/telnet.pcap.out b/test/results/influxd/default/telnet.pcap.out index b0a3d88b9..2d3d236a1 100644 --- a/test/results/influxd/default/telnet.pcap.out +++ b/test/results/influxd/default/telnet.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=12113,flow_src_total_bytes=289,flow_dst_total_bytes=1371 +general json_lines=14,json_bytes=12107,flow_src_total_bytes=289,flow_dst_total_bytes=1371 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=1,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tencent_games.pcap.out b/test/results/influxd/default/tencent_games.pcap.out index 03ae7437e..5b835c473 100644 --- a/test/results/influxd/default/tencent_games.pcap.out +++ b/test/results/influxd/default/tencent_games.pcap.out @@ -1,4 +1,4 @@ -general json_lines=37,json_bytes=26104,flow_src_total_bytes=1572,flow_dst_total_bytes=2654 +general json_lines=37,json_bytes=26094,flow_src_total_bytes=1572,flow_dst_total_bytes=2654 events flow_new_count=4,flow_end_count=1,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=4,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/teredo.pcap.out b/test/results/influxd/default/teredo.pcap.out index 78fcfab6b..c4070207d 100644 --- a/test/results/influxd/default/teredo.pcap.out +++ b/test/results/influxd/default/teredo.pcap.out @@ -1,4 +1,4 @@ -general json_lines=33,json_bytes=24813,flow_src_total_bytes=815,flow_dst_total_bytes=751 +general json_lines=33,json_bytes=24807,flow_src_total_bytes=815,flow_dst_total_bytes=751 events flow_new_count=5,flow_end_count=0,flow_idle_count=5,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=5 breed flow_breed_safe_count=0,flow_breed_acceptable_count=5,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tftp.pcap.out b/test/results/influxd/default/tftp.pcap.out index 997fa6e4d..943ec966a 100644 --- a/test/results/influxd/default/tftp.pcap.out +++ b/test/results/influxd/default/tftp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=50,json_bytes=43169,flow_src_total_bytes=24961,flow_dst_total_bytes=1228 +general json_lines=50,json_bytes=43157,flow_src_total_bytes=24961,flow_dst_total_bytes=1228 events flow_new_count=9,flow_end_count=0,flow_idle_count=9,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=2,flow_detected_count=7,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=3,packet_count=0,packet_flow_count=16,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=7,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/threema.pcap.out b/test/results/influxd/default/threema.pcap.out index 05a3a0a70..ac9b3d3b6 100644 --- a/test/results/influxd/default/threema.pcap.out +++ b/test/results/influxd/default/threema.pcap.out @@ -1,4 +1,4 @@ -general json_lines=54,json_bytes=37701,flow_src_total_bytes=3785,flow_dst_total_bytes=2219 +general json_lines=54,json_bytes=37689,flow_src_total_bytes=3785,flow_dst_total_bytes=2219 events flow_new_count=6,flow_end_count=4,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=2,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=4,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/thrift.pcap.out b/test/results/influxd/default/thrift.pcap.out index 96fd041a1..c68a64234 100644 --- a/test/results/influxd/default/thrift.pcap.out +++ b/test/results/influxd/default/thrift.pcap.out @@ -1,4 +1,4 @@ -general json_lines=18,json_bytes=26122,flow_src_total_bytes=23624,flow_dst_total_bytes=71295 +general json_lines=18,json_bytes=26114,flow_src_total_bytes=23624,flow_dst_total_bytes=71295 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=7,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tinc.pcap.out b/test/results/influxd/default/tinc.pcap.out index d623a6bb0..60af06741 100644 --- a/test/results/influxd/default/tinc.pcap.out +++ b/test/results/influxd/default/tinc.pcap.out @@ -1,4 +1,4 @@ -general json_lines=37,json_bytes=40959,flow_src_total_bytes=166919,flow_dst_total_bytes=171310 +general json_lines=37,json_bytes=40953,flow_src_total_bytes=166919,flow_dst_total_bytes=171310 events flow_new_count=4,flow_end_count=2,flow_idle_count=2,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=4 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tk.pcap.out b/test/results/influxd/default/tk.pcap.out index d2e37bf48..dd84dfdf3 100644 --- a/test/results/influxd/default/tk.pcap.out +++ b/test/results/influxd/default/tk.pcap.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=16948,flow_src_total_bytes=90,flow_dst_total_bytes=224 +general json_lines=21,json_bytes=16942,flow_src_total_bytes=90,flow_dst_total_bytes=224 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=6,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls-appdata.pcap.out b/test/results/influxd/default/tls-appdata.pcap.out index 87ef4fc80..b02f6a705 100644 --- a/test/results/influxd/default/tls-appdata.pcap.out +++ b/test/results/influxd/default/tls-appdata.pcap.out @@ -1,4 +1,4 @@ -general json_lines=27,json_bytes=29026,flow_src_total_bytes=12205,flow_dst_total_bytes=101176 +general json_lines=27,json_bytes=29012,flow_src_total_bytes=12205,flow_dst_total_bytes=101176 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=1 breed flow_breed_safe_count=2,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls-esni-fuzzed.pcap.out b/test/results/influxd/default/tls-esni-fuzzed.pcap.out index 5420f9ec5..6a3086677 100644 --- a/test/results/influxd/default/tls-esni-fuzzed.pcap.out +++ b/test/results/influxd/default/tls-esni-fuzzed.pcap.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=15864,flow_src_total_bytes=2148,flow_dst_total_bytes=0 +general json_lines=15,json_bytes=15858,flow_src_total_bytes=2148,flow_dst_total_bytes=0 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=3,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=0 breed flow_breed_safe_count=3,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls-rdn-extract.pcap.out b/test/results/influxd/default/tls-rdn-extract.pcap.out index 39ef53ecf..9eee2c02b 100644 --- a/test/results/influxd/default/tls-rdn-extract.pcap.out +++ b/test/results/influxd/default/tls-rdn-extract.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=21041,flow_src_total_bytes=127,flow_dst_total_bytes=6754 +general json_lines=13,json_bytes=21035,flow_src_total_bytes=127,flow_dst_total_bytes=6754 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_2_reasms.pcapng.out b/test/results/influxd/default/tls_2_reasms.pcapng.out index 5cbc08694..44894d1b0 100644 --- a/test/results/influxd/default/tls_2_reasms.pcapng.out +++ b/test/results/influxd/default/tls_2_reasms.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=11815,flow_src_total_bytes=3685,flow_dst_total_bytes=2290 +general json_lines=12,json_bytes=11809,flow_src_total_bytes=3685,flow_dst_total_bytes=2290 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_2_reasms_b.pcapng.out b/test/results/influxd/default/tls_2_reasms_b.pcapng.out index 44558024b..8dc936d25 100644 --- a/test/results/influxd/default/tls_2_reasms_b.pcapng.out +++ b/test/results/influxd/default/tls_2_reasms_b.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=11804,flow_src_total_bytes=10270,flow_dst_total_bytes=2179 +general json_lines=12,json_bytes=11798,flow_src_total_bytes=10270,flow_dst_total_bytes=2179 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_alert.pcap.out b/test/results/influxd/default/tls_alert.pcap.out index d980b5aed..44efdc081 100644 --- a/test/results/influxd/default/tls_alert.pcap.out +++ b/test/results/influxd/default/tls_alert.pcap.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=15940,flow_src_total_bytes=354,flow_dst_total_bytes=7 +general json_lines=21,json_bytes=15932,flow_src_total_bytes=354,flow_dst_total_bytes=7 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_certificate_too_long.pcap.out b/test/results/influxd/default/tls_certificate_too_long.pcap.out index 47dfb37c6..e748bb861 100644 --- a/test/results/influxd/default/tls_certificate_too_long.pcap.out +++ b/test/results/influxd/default/tls_certificate_too_long.pcap.out @@ -1,11 +1,11 @@ -general json_lines=252,json_bytes=252748,flow_src_total_bytes=37396,flow_dst_total_bytes=58312 +general json_lines=252,json_bytes=253372,flow_src_total_bytes=37396,flow_dst_total_bytes=58312 events flow_new_count=35,flow_end_count=11,flow_idle_count=24,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=1,flow_detected_count=33,flow_detection_update_count=26,flow_not_detected_count=1,flow_risky_count=14,packet_count=0,packet_flow_count=116,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=13,flow_state_finished=22 breed flow_breed_safe_count=19,flow_breed_acceptable_count=14,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=4,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=10,flow_category_network_count=15,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=4,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=33,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=7,flow_severity_medium=8,flow_severity_high=2,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=7,flow_severity_medium=10,flow_severity_high=2,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=34,flow_l3_ip6_count=1,flow_l3_other_count=0 layer4 flow_l4_tcp_count=16,flow_l4_udp_count=17,flow_l4_icmp_count=0,flow_l4_other_count=2 detection flow_active_count=35,flow_detected_count=33,flow_guessed_count=1,flow_not_detected_count=1 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=2,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=8,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=2,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=5,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=2,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=8,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=2,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=5,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=2 diff --git a/test/results/influxd/default/tls_cipher_lens.pcap.out b/test/results/influxd/default/tls_cipher_lens.pcap.out index 7667477a8..40c54ea81 100644 --- a/test/results/influxd/default/tls_cipher_lens.pcap.out +++ b/test/results/influxd/default/tls_cipher_lens.pcap.out @@ -1,4 +1,4 @@ -general json_lines=23,json_bytes=21465,flow_src_total_bytes=895,flow_dst_total_bytes=0 +general json_lines=23,json_bytes=21459,flow_src_total_bytes=895,flow_dst_total_bytes=0 events flow_new_count=5,flow_end_count=0,flow_idle_count=5,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=5,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=5,flow_state_finished=0 breed flow_breed_safe_count=4,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_client_certificate_with_missing_server_one.pcapng.out b/test/results/influxd/default/tls_client_certificate_with_missing_server_one.pcapng.out index f80f6f266..fc3958f84 100644 --- a/test/results/influxd/default/tls_client_certificate_with_missing_server_one.pcapng.out +++ b/test/results/influxd/default/tls_client_certificate_with_missing_server_one.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=19808,flow_src_total_bytes=2997,flow_dst_total_bytes=1383 +general json_lines=20,json_bytes=19802,flow_src_total_bytes=2997,flow_dst_total_bytes=1383 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_ech.pcapng.out b/test/results/influxd/default/tls_ech.pcapng.out index 53c690a13..ea28f61a0 100644 --- a/test/results/influxd/default/tls_ech.pcapng.out +++ b/test/results/influxd/default/tls_ech.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=10058,flow_src_total_bytes=648,flow_dst_total_bytes=2702 +general json_lines=12,json_bytes=10052,flow_src_total_bytes=648,flow_dst_total_bytes=2702 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_esni_sni_both.pcap.out b/test/results/influxd/default/tls_esni_sni_both.pcap.out index 13eb73286..e65734fc4 100644 --- a/test/results/influxd/default/tls_esni_sni_both.pcap.out +++ b/test/results/influxd/default/tls_esni_sni_both.pcap.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=19162,flow_src_total_bytes=1691,flow_dst_total_bytes=12084 +general json_lines=21,json_bytes=19156,flow_src_total_bytes=1691,flow_dst_total_bytes=12084 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=0 breed flow_breed_safe_count=2,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_false_positives.pcapng.out b/test/results/influxd/default/tls_false_positives.pcapng.out index e396d7d3f..101d2335e 100644 --- a/test/results/influxd/default/tls_false_positives.pcapng.out +++ b/test/results/influxd/default/tls_false_positives.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=9705,flow_src_total_bytes=33806,flow_dst_total_bytes=1875 +general json_lines=11,json_bytes=9699,flow_src_total_bytes=33806,flow_dst_total_bytes=1875 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=0,flow_detection_update_count=0,flow_not_detected_count=1,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_invalid_reads.pcap.out b/test/results/influxd/default/tls_invalid_reads.pcap.out index 29ccb9b77..5b169887d 100644 --- a/test/results/influxd/default/tls_invalid_reads.pcap.out +++ b/test/results/influxd/default/tls_invalid_reads.pcap.out @@ -1,4 +1,4 @@ -general json_lines=25,json_bytes=17528,flow_src_total_bytes=112,flow_dst_total_bytes=1329 +general json_lines=25,json_bytes=17518,flow_src_total_bytes=112,flow_dst_total_bytes=1329 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=3,packet_flow_count=6,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=3,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_long_cert.pcap.out b/test/results/influxd/default/tls_long_cert.pcap.out index 61ecbad4c..f0a8bfeaa 100644 --- a/test/results/influxd/default/tls_long_cert.pcap.out +++ b/test/results/influxd/default/tls_long_cert.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=14677,flow_src_total_bytes=2858,flow_dst_total_bytes=102711 +general json_lines=14,json_bytes=14671,flow_src_total_bytes=2858,flow_dst_total_bytes=102711 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_malicious_sha1.pcapng.out b/test/results/influxd/default/tls_malicious_sha1.pcapng.out index 4a0aef152..c855a5b35 100644 --- a/test/results/influxd/default/tls_malicious_sha1.pcapng.out +++ b/test/results/influxd/default/tls_malicious_sha1.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=11074,flow_src_total_bytes=534,flow_dst_total_bytes=4762 +general json_lines=13,json_bytes=11068,flow_src_total_bytes=534,flow_dst_total_bytes=4762 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_missing_ch_frag.pcap.out b/test/results/influxd/default/tls_missing_ch_frag.pcap.out index c24cdd316..b01e3a1a7 100644 --- a/test/results/influxd/default/tls_missing_ch_frag.pcap.out +++ b/test/results/influxd/default/tls_missing_ch_frag.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=14627,flow_src_total_bytes=6121,flow_dst_total_bytes=3029 +general json_lines=11,json_bytes=14621,flow_src_total_bytes=6121,flow_dst_total_bytes=3029 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_multiple_synack_different_seq.pcapng.out b/test/results/influxd/default/tls_multiple_synack_different_seq.pcapng.out index ef204de31..9a1d3fb0e 100644 --- a/test/results/influxd/default/tls_multiple_synack_different_seq.pcapng.out +++ b/test/results/influxd/default/tls_multiple_synack_different_seq.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=12083,flow_src_total_bytes=5427,flow_dst_total_bytes=517 +general json_lines=13,json_bytes=12077,flow_src_total_bytes=5427,flow_dst_total_bytes=517 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_port_80.pcapng.out b/test/results/influxd/default/tls_port_80.pcapng.out index 8c2ccb026..b6ff77dee 100644 --- a/test/results/influxd/default/tls_port_80.pcapng.out +++ b/test/results/influxd/default/tls_port_80.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9816,flow_src_total_bytes=245,flow_dst_total_bytes=1360 +general json_lines=12,json_bytes=9810,flow_src_total_bytes=245,flow_dst_total_bytes=1360 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_torrent.pcapng.out b/test/results/influxd/default/tls_torrent.pcapng.out index 23cca40ce..9d0844324 100644 --- a/test/results/influxd/default/tls_torrent.pcapng.out +++ b/test/results/influxd/default/tls_torrent.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=15057,flow_src_total_bytes=5574,flow_dst_total_bytes=332 +general json_lines=13,json_bytes=15051,flow_src_total_bytes=5574,flow_dst_total_bytes=332 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=0 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_unidirectional.pcap.out b/test/results/influxd/default/tls_unidirectional.pcap.out index 8e0a37917..300b62936 100644 --- a/test/results/influxd/default/tls_unidirectional.pcap.out +++ b/test/results/influxd/default/tls_unidirectional.pcap.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=27002,flow_src_total_bytes=12447,flow_dst_total_bytes=0 +general json_lines=21,json_bytes=26994,flow_src_total_bytes=12447,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=0 breed flow_breed_safe_count=1,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tls_verylong_certificate.pcap.out b/test/results/influxd/default/tls_verylong_certificate.pcap.out index f12dc5612..2af0a1346 100644 --- a/test/results/influxd/default/tls_verylong_certificate.pcap.out +++ b/test/results/influxd/default/tls_verylong_certificate.pcap.out @@ -1,4 +1,4 @@ -general json_lines=14,json_bytes=15966,flow_src_total_bytes=844,flow_dst_total_bytes=18233 +general json_lines=14,json_bytes=15960,flow_src_total_bytes=844,flow_dst_total_bytes=18233 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/toca-boca.pcap.out b/test/results/influxd/default/toca-boca.pcap.out index 5d3d9b3e9..c4ea462da 100644 --- a/test/results/influxd/default/toca-boca.pcap.out +++ b/test/results/influxd/default/toca-boca.pcap.out @@ -1,4 +1,4 @@ -general json_lines=118,json_bytes=97740,flow_src_total_bytes=8377,flow_dst_total_bytes=3960 +general json_lines=118,json_bytes=97714,flow_src_total_bytes=8377,flow_dst_total_bytes=3960 events flow_new_count=21,flow_end_count=0,flow_idle_count=21,flow_update_count=5,flow_analyse_count=0,flow_guessed_count=4,flow_detected_count=17,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=37,init_count=1,reconnect_count=0,shutdown_count=1,status_count=11,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=4,flow_state_finished=17 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=17,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tor.pcap.out b/test/results/influxd/default/tor.pcap.out index 601f5b091..759bf3dea 100644 --- a/test/results/influxd/default/tor.pcap.out +++ b/test/results/influxd/default/tor.pcap.out @@ -1,4 +1,4 @@ -general json_lines=166,json_bytes=117275,flow_src_total_bytes=42783,flow_dst_total_bytes=74483 +general json_lines=166,json_bytes=117267,flow_src_total_bytes=42783,flow_dst_total_bytes=74483 events flow_new_count=11,flow_end_count=6,flow_idle_count=5,flow_update_count=6,flow_analyse_count=5,flow_guessed_count=1,flow_detected_count=10,flow_detection_update_count=7,flow_not_detected_count=0,flow_risky_count=8,packet_count=32,packet_flow_count=47,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=32,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=10 breed flow_breed_safe_count=4,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=3,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=1,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tplink_shp.pcap.out b/test/results/influxd/default/tplink_shp.pcap.out index 6275b6c41..0e249d253 100644 --- a/test/results/influxd/default/tplink_shp.pcap.out +++ b/test/results/influxd/default/tplink_shp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=314,json_bytes=295308,flow_src_total_bytes=7279,flow_dst_total_bytes=0 +general json_lines=314,json_bytes=295296,flow_src_total_bytes=7279,flow_dst_total_bytes=0 events flow_new_count=8,flow_end_count=0,flow_idle_count=8,flow_update_count=241,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=8,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=40,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=8 breed flow_breed_safe_count=0,flow_breed_acceptable_count=8,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/trickbot.pcap.out b/test/results/influxd/default/trickbot.pcap.out index 9bcceb1bf..476bf414a 100644 --- a/test/results/influxd/default/trickbot.pcap.out +++ b/test/results/influxd/default/trickbot.pcap.out @@ -1,4 +1,4 @@ -general json_lines=13,json_bytes=14086,flow_src_total_bytes=1277,flow_dst_total_bytes=56713 +general json_lines=13,json_bytes=14080,flow_src_total_bytes=1277,flow_dst_total_bytes=56713 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tumblr.pcap.out b/test/results/influxd/default/tumblr.pcap.out index 31bf3edb1..ac4376e2f 100644 --- a/test/results/influxd/default/tumblr.pcap.out +++ b/test/results/influxd/default/tumblr.pcap.out @@ -1,4 +1,4 @@ -general json_lines=329,json_bytes=283654,flow_src_total_bytes=19532,flow_dst_total_bytes=275102 +general json_lines=329,json_bytes=283648,flow_src_total_bytes=19532,flow_dst_total_bytes=275102 events flow_new_count=47,flow_end_count=1,flow_idle_count=46,flow_update_count=0,flow_analyse_count=9,flow_guessed_count=28,flow_detected_count=19,flow_detection_update_count=25,flow_not_detected_count=0,flow_risky_count=8,packet_count=0,packet_flow_count=151,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=36,flow_state_finished=11 breed flow_breed_safe_count=13,flow_breed_acceptable_count=2,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=2,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tunnelbear.pcap.out b/test/results/influxd/default/tunnelbear.pcap.out index 5ec9a6103..b56bc3b91 100644 --- a/test/results/influxd/default/tunnelbear.pcap.out +++ b/test/results/influxd/default/tunnelbear.pcap.out @@ -1,4 +1,4 @@ -general json_lines=193,json_bytes=171321,flow_src_total_bytes=29747,flow_dst_total_bytes=62330 +general json_lines=193,json_bytes=171315,flow_src_total_bytes=29747,flow_dst_total_bytes=62330 events flow_new_count=21,flow_end_count=13,flow_idle_count=8,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=1,flow_detected_count=20,flow_detection_update_count=19,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=105,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=12,flow_state_finished=9 breed flow_breed_safe_count=1,flow_breed_acceptable_count=17,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=2,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/tuya_lp.pcap.out b/test/results/influxd/default/tuya_lp.pcap.out index 27573511e..e406e7ee8 100644 --- a/test/results/influxd/default/tuya_lp.pcap.out +++ b/test/results/influxd/default/tuya_lp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=107,json_bytes=88255,flow_src_total_bytes=17832,flow_dst_total_bytes=0 +general json_lines=107,json_bytes=88249,flow_src_total_bytes=17832,flow_dst_total_bytes=0 events flow_new_count=13,flow_end_count=0,flow_idle_count=13,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=13,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=65,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=13 breed flow_breed_safe_count=0,flow_breed_acceptable_count=13,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ubntac2.pcap.out b/test/results/influxd/default/ubntac2.pcap.out index a4df32994..d4a629391 100644 --- a/test/results/influxd/default/ubntac2.pcap.out +++ b/test/results/influxd/default/ubntac2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=37,json_bytes=32053,flow_src_total_bytes=1400,flow_dst_total_bytes=0 +general json_lines=37,json_bytes=32047,flow_src_total_bytes=1400,flow_dst_total_bytes=0 events flow_new_count=8,flow_end_count=0,flow_idle_count=8,flow_update_count=2,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=8,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=8,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=8 breed flow_breed_safe_count=8,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/uftp_v4_v5.pcap.out b/test/results/influxd/default/uftp_v4_v5.pcap.out index 1c0e25fb7..97da2bb42 100644 --- a/test/results/influxd/default/uftp_v4_v5.pcap.out +++ b/test/results/influxd/default/uftp_v4_v5.pcap.out @@ -1,4 +1,4 @@ -general json_lines=29,json_bytes=26913,flow_src_total_bytes=285420,flow_dst_total_bytes=0 +general json_lines=29,json_bytes=26905,flow_src_total_bytes=285420,flow_dst_total_bytes=0 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=3,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/ultrasurf.pcap.out b/test/results/influxd/default/ultrasurf.pcap.out index 537d1e405..b3bdbcdb2 100644 --- a/test/results/influxd/default/ultrasurf.pcap.out +++ b/test/results/influxd/default/ultrasurf.pcap.out @@ -1,4 +1,4 @@ -general json_lines=32,json_bytes=46228,flow_src_total_bytes=139720,flow_dst_total_bytes=62485 +general json_lines=32,json_bytes=46222,flow_src_total_bytes=139720,flow_dst_total_bytes=62485 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=2,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/umas.pcap.out b/test/results/influxd/default/umas.pcap.out index c6fc33d29..c6504e497 100644 --- a/test/results/influxd/default/umas.pcap.out +++ b/test/results/influxd/default/umas.pcap.out @@ -1,4 +1,4 @@ -general json_lines=12,json_bytes=9476,flow_src_total_bytes=1788,flow_dst_total_bytes=16862 +general json_lines=12,json_bytes=9470,flow_src_total_bytes=1788,flow_dst_total_bytes=16862 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/upnp.pcap.out b/test/results/influxd/default/upnp.pcap.out index 5eb159ff8..904334cf5 100644 --- a/test/results/influxd/default/upnp.pcap.out +++ b/test/results/influxd/default/upnp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=19,json_bytes=21383,flow_src_total_bytes=9184,flow_dst_total_bytes=0 +general json_lines=19,json_bytes=21377,flow_src_total_bytes=9184,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/viber.pcap.out b/test/results/influxd/default/viber.pcap.out index 4112e54e3..079c9381c 100644 --- a/test/results/influxd/default/viber.pcap.out +++ b/test/results/influxd/default/viber.pcap.out @@ -1,4 +1,4 @@ -general json_lines=222,json_bytes=186421,flow_src_total_bytes=25565,flow_dst_total_bytes=100804 +general json_lines=222,json_bytes=186409,flow_src_total_bytes=25565,flow_dst_total_bytes=100804 events flow_new_count=29,flow_end_count=6,flow_idle_count=23,flow_update_count=4,flow_analyse_count=4,flow_guessed_count=4,flow_detected_count=25,flow_detection_update_count=19,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=102,init_count=1,reconnect_count=0,shutdown_count=1,status_count=4,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=8,flow_state_finished=21 breed flow_breed_safe_count=4,flow_breed_acceptable_count=8,flow_breed_fun_count=12,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=1,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/vk.pcapng.out b/test/results/influxd/default/vk.pcapng.out index 698200c9f..2f417cfc3 100644 --- a/test/results/influxd/default/vk.pcapng.out +++ b/test/results/influxd/default/vk.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=84,json_bytes=75002,flow_src_total_bytes=66779,flow_dst_total_bytes=0 +general json_lines=84,json_bytes=74996,flow_src_total_bytes=66779,flow_dst_total_bytes=0 events flow_new_count=10,flow_end_count=0,flow_idle_count=10,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=10,flow_detection_update_count=6,flow_not_detected_count=0,flow_risky_count=10,packet_count=0,packet_flow_count=43,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=8,flow_state_finished=2 breed flow_breed_safe_count=6,flow_breed_acceptable_count=0,flow_breed_fun_count=4,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/vnc.pcap.out b/test/results/influxd/default/vnc.pcap.out index e3062a326..f34aaeae9 100644 --- a/test/results/influxd/default/vnc.pcap.out +++ b/test/results/influxd/default/vnc.pcap.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=18484,flow_src_total_bytes=81754,flow_dst_total_bytes=512 +general json_lines=21,json_bytes=18478,flow_src_total_bytes=81754,flow_dst_total_bytes=512 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/vrrp3.pcapng.out b/test/results/influxd/default/vrrp3.pcapng.out index a03b76b5f..fd3895787 100644 --- a/test/results/influxd/default/vrrp3.pcapng.out +++ b/test/results/influxd/default/vrrp3.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=15,json_bytes=10441,flow_src_total_bytes=240,flow_dst_total_bytes=0 +general json_lines=15,json_bytes=10435,flow_src_total_bytes=240,flow_dst_total_bytes=0 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=6,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/vxlan.pcap.out b/test/results/influxd/default/vxlan.pcap.out index 1c0ef63a3..dba90dab2 100644 --- a/test/results/influxd/default/vxlan.pcap.out +++ b/test/results/influxd/default/vxlan.pcap.out @@ -1,4 +1,4 @@ -general json_lines=63,json_bytes=59704,flow_src_total_bytes=79480,flow_dst_total_bytes=0 +general json_lines=63,json_bytes=59698,flow_src_total_bytes=79480,flow_dst_total_bytes=0 events flow_new_count=9,flow_end_count=0,flow_idle_count=9,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=9,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=31,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=9 breed flow_breed_safe_count=0,flow_breed_acceptable_count=9,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/wa_video.pcap.out b/test/results/influxd/default/wa_video.pcap.out index aa01c4f92..d5b38109b 100644 --- a/test/results/influxd/default/wa_video.pcap.out +++ b/test/results/influxd/default/wa_video.pcap.out @@ -1,11 +1,11 @@ -general json_lines=108,json_bytes=94242,flow_src_total_bytes=264122,flow_dst_total_bytes=47653 -events flow_new_count=14,flow_end_count=0,flow_idle_count=14,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=1,flow_detected_count=13,flow_detection_update_count=10,flow_not_detected_count=0,flow_risky_count=7,packet_count=0,packet_flow_count=50,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 -state flow_state_info=4,flow_state_finished=10 +general json_lines=111,json_bytes=98039,flow_src_total_bytes=264122,flow_dst_total_bytes=47653 +events flow_new_count=14,flow_end_count=0,flow_idle_count=14,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=1,flow_detected_count=13,flow_detection_update_count=13,flow_not_detected_count=0,flow_risky_count=7,packet_count=0,packet_flow_count=50,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +state flow_state_info=1,flow_state_finished=13 breed flow_breed_safe_count=0,flow_breed_acceptable_count=12,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=7,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=1,flow_category_network_count=1,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=3,flow_category_software_update_count=0,flow_category_music_count=1,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=2,flow_confidence_dpi=11,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=5,flow_severity_medium=2,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=7,flow_severity_medium=5,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=14,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=1,flow_l4_udp_count=13,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=14,flow_detected_count=13,flow_guessed_count=1,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=2,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=5,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=5,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=7,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/wa_voice.pcap.out b/test/results/influxd/default/wa_voice.pcap.out index 88224328c..64baadcbc 100644 --- a/test/results/influxd/default/wa_voice.pcap.out +++ b/test/results/influxd/default/wa_voice.pcap.out @@ -1,11 +1,11 @@ -general json_lines=217,json_bytes=188017,flow_src_total_bytes=34223,flow_dst_total_bytes=94669 -events flow_new_count=28,flow_end_count=2,flow_idle_count=26,flow_update_count=4,flow_analyse_count=5,flow_guessed_count=0,flow_detected_count=27,flow_detection_update_count=18,flow_not_detected_count=1,flow_risky_count=7,packet_count=0,packet_flow_count=103,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +general json_lines=220,json_bytes=191684,flow_src_total_bytes=34223,flow_dst_total_bytes=94669 +events flow_new_count=28,flow_end_count=2,flow_idle_count=26,flow_update_count=4,flow_analyse_count=5,flow_guessed_count=0,flow_detected_count=27,flow_detection_update_count=21,flow_not_detected_count=1,flow_risky_count=7,packet_count=0,packet_flow_count=103,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=3,flow_state_finished=25 breed flow_breed_safe_count=1,flow_breed_acceptable_count=25,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=1,flow_category_social_network_count=0,flow_category_download_count=1,flow_category_game_count=0,flow_category_chat_count=2,flow_category_voip_count=7,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=2,flow_category_network_count=8,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=5,flow_category_software_update_count=0,flow_category_music_count=1,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=2,flow_confidence_dpi=25,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=5,flow_severity_medium=2,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=7,flow_severity_medium=5,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=27,flow_l3_ip6_count=1,flow_l3_other_count=0 layer4 flow_l4_tcp_count=6,flow_l4_udp_count=21,flow_l4_icmp_count=1,flow_l4_other_count=0 detection flow_active_count=28,flow_detected_count=27,flow_guessed_count=0,flow_not_detected_count=1 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=2,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=5,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=5,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=7,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/waze.pcap.out b/test/results/influxd/default/waze.pcap.out index d62442f55..daf8343ce 100644 --- a/test/results/influxd/default/waze.pcap.out +++ b/test/results/influxd/default/waze.pcap.out @@ -1,11 +1,11 @@ -general json_lines=282,json_bytes=228975,flow_src_total_bytes=19999,flow_dst_total_bytes=306184 +general json_lines=282,json_bytes=229026,flow_src_total_bytes=19999,flow_dst_total_bytes=306184 events flow_new_count=33,flow_end_count=30,flow_idle_count=3,flow_update_count=0,flow_analyse_count=5,flow_guessed_count=9,flow_detected_count=23,flow_detection_update_count=22,flow_not_detected_count=1,flow_risky_count=14,packet_count=0,packet_flow_count=153,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=18,flow_state_finished=15 breed flow_breed_safe_count=13,flow_breed_acceptable_count=10,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=21,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=1,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=0,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=1,flow_category_software_update_count=0,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=23,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=0,flow_severity_medium=0,flow_severity_high=38,flow_severity_severe=1,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=0,flow_severity_medium=1,flow_severity_high=38,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=33,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=32,flow_l4_udp_count=1,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=33,flow_detected_count=23,flow_guessed_count=9,flow_not_detected_count=1 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=1,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=34,flow_risk_8_count=6,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=34,flow_risk_8_count=6,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=1 diff --git a/test/results/influxd/default/webdav.pcap.out b/test/results/influxd/default/webdav.pcap.out index b1d2c9a2a..1525a09b1 100644 --- a/test/results/influxd/default/webdav.pcap.out +++ b/test/results/influxd/default/webdav.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7921,flow_src_total_bytes=337,flow_dst_total_bytes=1633 +general json_lines=11,json_bytes=7915,flow_src_total_bytes=337,flow_dst_total_bytes=1633 events flow_new_count=1,flow_end_count=1,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/webex.pcap.out b/test/results/influxd/default/webex.pcap.out index 638fdaa31..7cbbdf0b4 100644 --- a/test/results/influxd/default/webex.pcap.out +++ b/test/results/influxd/default/webex.pcap.out @@ -1,4 +1,4 @@ -general json_lines=500,json_bytes=422984,flow_src_total_bytes=67701,flow_dst_total_bytes=426653 +general json_lines=500,json_bytes=422978,flow_src_total_bytes=67701,flow_dst_total_bytes=426653 events flow_new_count=57,flow_end_count=45,flow_idle_count=12,flow_update_count=2,flow_analyse_count=6,flow_guessed_count=4,flow_detected_count=53,flow_detection_update_count=39,flow_not_detected_count=0,flow_risky_count=51,packet_count=0,packet_flow_count=279,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=38,flow_state_finished=19 breed flow_breed_safe_count=45,flow_breed_acceptable_count=8,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/websocket.pcap.out b/test/results/influxd/default/websocket.pcap.out index b78a28fda..e5f95dfd5 100644 --- a/test/results/influxd/default/websocket.pcap.out +++ b/test/results/influxd/default/websocket.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7496,flow_src_total_bytes=132,flow_dst_total_bytes=39 +general json_lines=11,json_bytes=7490,flow_src_total_bytes=132,flow_dst_total_bytes=39 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/wechat.pcap.out b/test/results/influxd/default/wechat.pcap.out index f8887fe93..ace01e251 100644 --- a/test/results/influxd/default/wechat.pcap.out +++ b/test/results/influxd/default/wechat.pcap.out @@ -1,4 +1,4 @@ -general json_lines=888,json_bytes=774934,flow_src_total_bytes=184490,flow_dst_total_bytes=376782 +general json_lines=888,json_bytes=775044,flow_src_total_bytes=184490,flow_dst_total_bytes=376782 events flow_new_count=109,flow_end_count=52,flow_idle_count=57,flow_update_count=77,flow_analyse_count=17,flow_guessed_count=25,flow_detected_count=84,flow_detection_update_count=69,flow_not_detected_count=0,flow_risky_count=12,packet_count=0,packet_flow_count=394,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=57,flow_state_finished=52 breed flow_breed_safe_count=6,flow_breed_acceptable_count=42,flow_breed_fun_count=34,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=2,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/weibo.pcap.out b/test/results/influxd/default/weibo.pcap.out index 91b304cf8..a2b6140a5 100644 --- a/test/results/influxd/default/weibo.pcap.out +++ b/test/results/influxd/default/weibo.pcap.out @@ -1,4 +1,4 @@ -general json_lines=267,json_bytes=221068,flow_src_total_bytes=9449,flow_dst_total_bytes=225426 +general json_lines=267,json_bytes=221298,flow_src_total_bytes=9449,flow_dst_total_bytes=225426 events flow_new_count=44,flow_end_count=1,flow_idle_count=43,flow_update_count=0,flow_analyse_count=6,flow_guessed_count=21,flow_detected_count=23,flow_detection_update_count=9,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=117,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=27,flow_state_finished=17 breed flow_breed_safe_count=0,flow_breed_acceptable_count=5,flow_breed_fun_count=18,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/whatsapp.pcap.out b/test/results/influxd/default/whatsapp.pcap.out index f127d3284..bb6058c5b 100644 --- a/test/results/influxd/default/whatsapp.pcap.out +++ b/test/results/influxd/default/whatsapp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=751,json_bytes=562535,flow_src_total_bytes=50635,flow_dst_total_bytes=0 +general json_lines=751,json_bytes=562409,flow_src_total_bytes=50635,flow_dst_total_bytes=0 events flow_new_count=86,flow_end_count=0,flow_idle_count=86,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=86,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=86,packet_count=0,packet_flow_count=430,init_count=1,reconnect_count=0,shutdown_count=1,status_count=61,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=86 breed flow_breed_safe_count=0,flow_breed_acceptable_count=86,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/whatsapp_login_call.pcap.out b/test/results/influxd/default/whatsapp_login_call.pcap.out index 4b2fc04d0..c30c8f277 100644 --- a/test/results/influxd/default/whatsapp_login_call.pcap.out +++ b/test/results/influxd/default/whatsapp_login_call.pcap.out @@ -1,11 +1,11 @@ -general json_lines=493,json_bytes=412024,flow_src_total_bytes=81240,flow_dst_total_bytes=51420 -events flow_new_count=57,flow_end_count=24,flow_idle_count=33,flow_update_count=45,flow_analyse_count=6,flow_guessed_count=20,flow_detected_count=37,flow_detection_update_count=42,flow_not_detected_count=0,flow_risky_count=24,packet_count=0,packet_flow_count=226,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 +general json_lines=496,json_bytes=416115,flow_src_total_bytes=81240,flow_dst_total_bytes=51420 +events flow_new_count=57,flow_end_count=24,flow_idle_count=33,flow_update_count=45,flow_analyse_count=6,flow_guessed_count=20,flow_detected_count=37,flow_detection_update_count=45,flow_not_detected_count=0,flow_risky_count=24,packet_count=0,packet_flow_count=226,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=20,flow_state_finished=37 breed flow_breed_safe_count=6,flow_breed_acceptable_count=30,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=1,flow_category_data_transfer_count=0,flow_category_web_count=2,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=1,flow_category_voip_count=20,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=2,flow_category_network_count=8,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=2,flow_category_music_count=1,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=4,flow_confidence_dpi=33,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=23,flow_severity_medium=4,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=25,flow_severity_medium=7,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=55,flow_l3_ip6_count=2,flow_l3_other_count=0 layer4 flow_l4_tcp_count=27,flow_l4_udp_count=29,flow_l4_icmp_count=1,flow_l4_other_count=0 detection flow_active_count=57,flow_detected_count=37,flow_guessed_count=20,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=4,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=6,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=17,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=7,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=0,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=6,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=19,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 diff --git a/test/results/influxd/default/whatsapp_login_chat.pcap.out b/test/results/influxd/default/whatsapp_login_chat.pcap.out index e6119ed07..25b091cd6 100644 --- a/test/results/influxd/default/whatsapp_login_chat.pcap.out +++ b/test/results/influxd/default/whatsapp_login_chat.pcap.out @@ -1,4 +1,4 @@ -general json_lines=61,json_bytes=57110,flow_src_total_bytes=19160,flow_dst_total_bytes=5639 +general json_lines=61,json_bytes=57104,flow_src_total_bytes=19160,flow_dst_total_bytes=5639 events flow_new_count=9,flow_end_count=2,flow_idle_count=7,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=9,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=27,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=7 breed flow_breed_safe_count=2,flow_breed_acceptable_count=6,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/whatsapp_voice_and_message.pcap.out b/test/results/influxd/default/whatsapp_voice_and_message.pcap.out index c6145b872..e529f04dd 100644 --- a/test/results/influxd/default/whatsapp_voice_and_message.pcap.out +++ b/test/results/influxd/default/whatsapp_voice_and_message.pcap.out @@ -1,4 +1,4 @@ -general json_lines=126,json_bytes=102778,flow_src_total_bytes=8982,flow_dst_total_bytes=5407 +general json_lines=126,json_bytes=102772,flow_src_total_bytes=8982,flow_dst_total_bytes=5407 events flow_new_count=13,flow_end_count=4,flow_idle_count=9,flow_update_count=16,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=13,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=65,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=13 breed flow_breed_safe_count=0,flow_breed_acceptable_count=13,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/whatsappfiles.pcap.out b/test/results/influxd/default/whatsappfiles.pcap.out index 55f51954e..6becd4422 100644 --- a/test/results/influxd/default/whatsappfiles.pcap.out +++ b/test/results/influxd/default/whatsappfiles.pcap.out @@ -1,4 +1,4 @@ -general json_lines=24,json_bytes=23408,flow_src_total_bytes=179714,flow_dst_total_bytes=230629 +general json_lines=24,json_bytes=23402,flow_src_total_bytes=179714,flow_dst_total_bytes=230629 events flow_new_count=2,flow_end_count=1,flow_idle_count=1,flow_update_count=0,flow_analyse_count=2,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=3,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/whois.pcapng.out b/test/results/influxd/default/whois.pcapng.out index 0965be234..ccbf6c608 100644 --- a/test/results/influxd/default/whois.pcapng.out +++ b/test/results/influxd/default/whois.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=30,json_bytes=26518,flow_src_total_bytes=3467,flow_dst_total_bytes=1453 +general json_lines=30,json_bytes=26508,flow_src_total_bytes=3467,flow_dst_total_bytes=1453 events flow_new_count=3,flow_end_count=2,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=2,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=2,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/windowsupdate_over_http.pcap.out b/test/results/influxd/default/windowsupdate_over_http.pcap.out index 4f361fd55..252b033b6 100644 --- a/test/results/influxd/default/windowsupdate_over_http.pcap.out +++ b/test/results/influxd/default/windowsupdate_over_http.pcap.out @@ -1,11 +1,11 @@ -general json_lines=11,json_bytes=9634,flow_src_total_bytes=479,flow_dst_total_bytes=14400 +general json_lines=11,json_bytes=9668,flow_src_total_bytes=479,flow_dst_total_bytes=14400 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=0,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=1,flow_breed_acceptable_count=0,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 category flow_category_unspecified_count=0,flow_category_media_count=0,flow_category_vpn_count=0,flow_category_email_count=0,flow_category_data_transfer_count=0,flow_category_web_count=0,flow_category_social_network_count=0,flow_category_download_count=0,flow_category_game_count=0,flow_category_chat_count=0,flow_category_voip_count=0,flow_category_database_count=0,flow_category_remote_access_count=0,flow_category_cloud_count=0,flow_category_network_count=0,flow_category_collaborative_count=0,flow_category_rpc_count=0,flow_category_streaming_count=0,flow_category_system_count=0,flow_category_software_update_count=1,flow_category_music_count=0,flow_category_video_count=0,flow_category_shopping_count=0,flow_category_productivity_count=0,flow_category_file_sharing_count=0,flow_category_conn_check_count=0,flow_category_iot_scada_count=0,flow_category_virt_assistant_count=0,flow_category_cybersecurity_count=0,flow_category_adult_content_count=0,flow_category_mining_count=0,flow_category_malware_count=0,flow_category_advertisment_count=0,flow_category_banned_site_count=0,flow_category_site_unavail_count=0,flow_category_allowed_site_count=0,flow_category_antimalware_count=0,flow_category_crypto_currency_count=0,flow_category_gambling_count=0,flow_category_unknown_count=0 confidence flow_confidence_by_port=0,flow_confidence_dpi_partial=0,flow_confidence_dpi_partial_cache=0,flow_confidence_dpi_cache=0,flow_confidence_dpi=1,flow_confidence_nbpf=0,flow_confidence_by_ip=0,flow_confidence_dpi_aggressive=0,flow_confidence_custom_rule=0,flow_confidence_unknown=0 -severity flow_severity_low=2,flow_severity_medium=0,flow_severity_high=0,flow_severity_severe=1,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 +severity flow_severity_low=2,flow_severity_medium=1,flow_severity_high=0,flow_severity_severe=0,flow_severity_critical=0,flow_severity_emergency=0,flow_severity_unknown=0 layer3 flow_l3_ip4_count=1,flow_l3_ip6_count=0,flow_l3_other_count=0 layer4 flow_l4_tcp_count=1,flow_l4_udp_count=0,flow_l4_icmp_count=0,flow_l4_other_count=0 detection flow_active_count=1,flow_detected_count=1,flow_guessed_count=0,flow_not_detected_count=0 -risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=1,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=2,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=0 +risks flow_risk_unknown_count=0,flow_risk_1_count=0,flow_risk_2_count=0,flow_risk_3_count=0,flow_risk_4_count=0,flow_risk_5_count=0,flow_risk_6_count=0,flow_risk_7_count=0,flow_risk_8_count=0,flow_risk_9_count=0,flow_risk_10_count=0,flow_risk_11_count=0,flow_risk_12_count=2,flow_risk_13_count=0,flow_risk_14_count=0,flow_risk_15_count=0,flow_risk_16_count=0,flow_risk_17_count=0,flow_risk_18_count=0,flow_risk_19_count=0,flow_risk_20_count=0,flow_risk_21_count=0,flow_risk_22_count=0,flow_risk_23_count=0,flow_risk_24_count=0,flow_risk_25_count=0,flow_risk_26_count=0,flow_risk_27_count=0,flow_risk_28_count=0,flow_risk_29_count=0,flow_risk_30_count=0,flow_risk_31_count=0,flow_risk_32_count=0,flow_risk_33_count=0,flow_risk_34_count=0,flow_risk_35_count=0,flow_risk_36_count=0,flow_risk_37_count=0,flow_risk_38_count=0,flow_risk_39_count=0,flow_risk_40_count=0,flow_risk_41_count=0,flow_risk_42_count=0,flow_risk_43_count=0,flow_risk_44_count=0,flow_risk_45_count=0,flow_risk_46_count=0,flow_risk_47_count=0,flow_risk_48_count=0,flow_risk_49_count=0,flow_risk_50_count=0,flow_risk_51_count=0,flow_risk_52_count=0,flow_risk_53_count=0,flow_risk_54_count=1 diff --git a/test/results/influxd/default/wireguard.pcap.out b/test/results/influxd/default/wireguard.pcap.out index a4b1435a5..485d6711a 100644 --- a/test/results/influxd/default/wireguard.pcap.out +++ b/test/results/influxd/default/wireguard.pcap.out @@ -1,4 +1,4 @@ -general json_lines=21,json_bytes=16913,flow_src_total_bytes=7268,flow_dst_total_bytes=3288 +general json_lines=21,json_bytes=16905,flow_src_total_bytes=7268,flow_dst_total_bytes=3288 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=1,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/wow.pcap.out b/test/results/influxd/default/wow.pcap.out index 0be130296..c521cd450 100644 --- a/test/results/influxd/default/wow.pcap.out +++ b/test/results/influxd/default/wow.pcap.out @@ -1,4 +1,4 @@ -general json_lines=45,json_bytes=32042,flow_src_total_bytes=2812,flow_dst_total_bytes=1774 +general json_lines=45,json_bytes=32034,flow_src_total_bytes=2812,flow_dst_total_bytes=1774 events flow_new_count=5,flow_end_count=2,flow_idle_count=3,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=5,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=2,packet_count=0,packet_flow_count=25,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=5 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=5,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/xdmcp.pcap.out b/test/results/influxd/default/xdmcp.pcap.out index 7bf45ee21..80cfe32a5 100644 --- a/test/results/influxd/default/xdmcp.pcap.out +++ b/test/results/influxd/default/xdmcp.pcap.out @@ -1,4 +1,4 @@ -general json_lines=11,json_bytes=7532,flow_src_total_bytes=254,flow_dst_total_bytes=81 +general json_lines=11,json_bytes=7526,flow_src_total_bytes=254,flow_dst_total_bytes=81 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=5,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/xiaomi.pcap.out b/test/results/influxd/default/xiaomi.pcap.out index aabc07e92..b7ca6d40b 100644 --- a/test/results/influxd/default/xiaomi.pcap.out +++ b/test/results/influxd/default/xiaomi.pcap.out @@ -1,4 +1,4 @@ -general json_lines=58,json_bytes=47194,flow_src_total_bytes=3913,flow_dst_total_bytes=4078 +general json_lines=58,json_bytes=47180,flow_src_total_bytes=3913,flow_dst_total_bytes=4078 events flow_new_count=7,flow_end_count=0,flow_idle_count=7,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=7,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=30,init_count=1,reconnect_count=0,shutdown_count=1,status_count=5,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=6 breed flow_breed_safe_count=0,flow_breed_acceptable_count=7,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/xss.pcap.out b/test/results/influxd/default/xss.pcap.out index 554f88f60..a06c13f9b 100644 --- a/test/results/influxd/default/xss.pcap.out +++ b/test/results/influxd/default/xss.pcap.out @@ -1,4 +1,4 @@ -general json_lines=17,json_bytes=12975,flow_src_total_bytes=608,flow_dst_total_bytes=1843 +general json_lines=17,json_bytes=12969,flow_src_total_bytes=608,flow_dst_total_bytes=1843 events flow_new_count=2,flow_end_count=0,flow_idle_count=2,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=8,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/yandex.pcapng.out b/test/results/influxd/default/yandex.pcapng.out index a9ccf436d..2c4ea13c7 100644 --- a/test/results/influxd/default/yandex.pcapng.out +++ b/test/results/influxd/default/yandex.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=84,json_bytes=73661,flow_src_total_bytes=19090,flow_dst_total_bytes=29801 +general json_lines=84,json_bytes=73651,flow_src_total_bytes=19090,flow_dst_total_bytes=29801 events flow_new_count=9,flow_end_count=0,flow_idle_count=9,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=9,flow_detection_update_count=7,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=45,init_count=1,reconnect_count=0,shutdown_count=1,status_count=3,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=9,flow_state_finished=0 breed flow_breed_safe_count=7,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=1,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/yojimbo.pcap.out b/test/results/influxd/default/yojimbo.pcap.out index 4d8a20e17..a19306ec9 100644 --- a/test/results/influxd/default/yojimbo.pcap.out +++ b/test/results/influxd/default/yojimbo.pcap.out @@ -1,4 +1,4 @@ -general json_lines=7,json_bytes=6515,flow_src_total_bytes=1078,flow_dst_total_bytes=0 +general json_lines=7,json_bytes=6509,flow_src_total_bytes=1078,flow_dst_total_bytes=0 events flow_new_count=1,flow_end_count=0,flow_idle_count=1,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=1,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/youtube_quic.pcap.out b/test/results/influxd/default/youtube_quic.pcap.out index 0df7f006b..7bda3d88e 100644 --- a/test/results/influxd/default/youtube_quic.pcap.out +++ b/test/results/influxd/default/youtube_quic.pcap.out @@ -1,4 +1,4 @@ -general json_lines=28,json_bytes=38667,flow_src_total_bytes=16934,flow_dst_total_bytes=162567 +general json_lines=28,json_bytes=38661,flow_src_total_bytes=16934,flow_dst_total_bytes=162567 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=2,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/youtubeupload.pcap.out b/test/results/influxd/default/youtubeupload.pcap.out index 1b772032a..d5fa164e9 100644 --- a/test/results/influxd/default/youtubeupload.pcap.out +++ b/test/results/influxd/default/youtubeupload.pcap.out @@ -1,4 +1,4 @@ -general json_lines=30,json_bytes=40637,flow_src_total_bytes=105513,flow_dst_total_bytes=15573 +general json_lines=30,json_bytes=40631,flow_src_total_bytes=105513,flow_dst_total_bytes=15573 events flow_new_count=3,flow_end_count=0,flow_idle_count=3,flow_update_count=0,flow_analyse_count=1,flow_guessed_count=0,flow_detected_count=3,flow_detection_update_count=2,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=15,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=2 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=3,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/z3950.pcapng.out b/test/results/influxd/default/z3950.pcapng.out index b010f233f..c1ca0430f 100644 --- a/test/results/influxd/default/z3950.pcapng.out +++ b/test/results/influxd/default/z3950.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=13685,flow_src_total_bytes=445,flow_dst_total_bytes=4117 +general json_lines=20,json_bytes=13677,flow_src_total_bytes=445,flow_dst_total_bytes=4117 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=1,flow_detected_count=1,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=1,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/zabbix.pcap.out b/test/results/influxd/default/zabbix.pcap.out index cd6dc08d0..28688048c 100644 --- a/test/results/influxd/default/zabbix.pcap.out +++ b/test/results/influxd/default/zabbix.pcap.out @@ -1,4 +1,4 @@ -general json_lines=196,json_bytes=141616,flow_src_total_bytes=5346,flow_dst_total_bytes=3265 +general json_lines=196,json_bytes=141608,flow_src_total_bytes=5346,flow_dst_total_bytes=3265 events flow_new_count=24,flow_end_count=24,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=24,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=120,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=0,flow_state_finished=24 breed flow_breed_safe_count=0,flow_breed_acceptable_count=24,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/zattoo.pcap.out b/test/results/influxd/default/zattoo.pcap.out index 58c9c1e0e..0bde6eb71 100644 --- a/test/results/influxd/default/zattoo.pcap.out +++ b/test/results/influxd/default/zattoo.pcap.out @@ -1,4 +1,4 @@ -general json_lines=20,json_bytes=18076,flow_src_total_bytes=7381,flow_dst_total_bytes=4290 +general json_lines=20,json_bytes=18070,flow_src_total_bytes=7381,flow_dst_total_bytes=4290 events flow_new_count=2,flow_end_count=2,flow_idle_count=0,flow_update_count=0,flow_analyse_count=0,flow_guessed_count=0,flow_detected_count=2,flow_detection_update_count=1,flow_not_detected_count=0,flow_risky_count=1,packet_count=0,packet_flow_count=10,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=1 breed flow_breed_safe_count=0,flow_breed_acceptable_count=0,flow_breed_fun_count=2,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/zoom.pcap.out b/test/results/influxd/default/zoom.pcap.out index ac8af303e..32557c0bd 100644 --- a/test/results/influxd/default/zoom.pcap.out +++ b/test/results/influxd/default/zoom.pcap.out @@ -1,4 +1,4 @@ -general json_lines=317,json_bytes=243590,flow_src_total_bytes=69672,flow_dst_total_bytes=259806 +general json_lines=317,json_bytes=243700,flow_src_total_bytes=69672,flow_dst_total_bytes=259806 events flow_new_count=33,flow_end_count=6,flow_idle_count=27,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=2,flow_detected_count=31,flow_detection_update_count=26,flow_not_detected_count=0,flow_risky_count=11,packet_count=35,packet_flow_count=115,init_count=1,reconnect_count=0,shutdown_count=1,status_count=2,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=35,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=11,flow_state_finished=22 breed flow_breed_safe_count=3,flow_breed_acceptable_count=27,flow_breed_fun_count=1,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/zoom2.pcap.out b/test/results/influxd/default/zoom2.pcap.out index 4bb0d55cc..2169b35d0 100644 --- a/test/results/influxd/default/zoom2.pcap.out +++ b/test/results/influxd/default/zoom2.pcap.out @@ -1,4 +1,4 @@ -general json_lines=46,json_bytes=42077,flow_src_total_bytes=14983,flow_dst_total_bytes=82787 +general json_lines=46,json_bytes=42071,flow_src_total_bytes=14983,flow_dst_total_bytes=82787 events flow_new_count=4,flow_end_count=0,flow_idle_count=4,flow_update_count=0,flow_analyse_count=3,flow_guessed_count=0,flow_detected_count=4,flow_detection_update_count=8,flow_not_detected_count=0,flow_risky_count=4,packet_count=0,packet_flow_count=20,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=1,flow_state_finished=3 breed flow_breed_safe_count=0,flow_breed_acceptable_count=4,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 diff --git a/test/results/influxd/default/zoom_p2p.pcapng.out b/test/results/influxd/default/zoom_p2p.pcapng.out index 4b4852238..48616f6c6 100644 --- a/test/results/influxd/default/zoom_p2p.pcapng.out +++ b/test/results/influxd/default/zoom_p2p.pcapng.out @@ -1,4 +1,4 @@ -general json_lines=131,json_bytes=107242,flow_src_total_bytes=137033,flow_dst_total_bytes=103149 +general json_lines=131,json_bytes=107236,flow_src_total_bytes=137033,flow_dst_total_bytes=103149 events flow_new_count=13,flow_end_count=0,flow_idle_count=13,flow_update_count=27,flow_analyse_count=4,flow_guessed_count=4,flow_detected_count=9,flow_detection_update_count=0,flow_not_detected_count=0,flow_risky_count=0,packet_count=0,packet_flow_count=58,init_count=1,reconnect_count=0,shutdown_count=1,status_count=1,error_unknown_datalink=0,error_unknown_l3_protocol=0,error_unsupported_datalink=0,error_packet_too_short=0,error_packet_type_unknown=0,error_packet_header_invalid=0,error_ip4_packet_too_short=0,error_ip4_size_smaller_than_header=0,error_ip4_l4_payload_detection=0,error_ip6_packet_too_short=0,error_ip6_size_smaller_than_header=0,error_ip6_l4_payload_detection=0,error_tcp_packet_too_short=0,error_udp_packet_too_short=0,error_capture_size_smaller_than_packet=0,error_max_flows_to_track=0,error_flow_memory_alloc=0 state flow_state_info=6,flow_state_finished=7 breed flow_breed_safe_count=0,flow_breed_acceptable_count=9,flow_breed_fun_count=0,flow_breed_unsafe_count=0,flow_breed_potentially_dangerous_count=0,flow_breed_tracker_ads_count=0,flow_breed_dangerous_count=0,flow_breed_unrated_count=0,flow_breed_unknown_count=0 |