diff options
Diffstat (limited to 'test/results/flow-info/kontiki.pcap.out')
| -rw-r--r-- | test/results/flow-info/kontiki.pcap.out | 39 |
1 files changed, 39 insertions, 0 deletions
diff --git a/test/results/flow-info/kontiki.pcap.out b/test/results/flow-info/kontiki.pcap.out new file mode 100644 index 000000000..f0efbc4ac --- /dev/null +++ b/test/results/flow-info/kontiki.pcap.out @@ -0,0 +1,39 @@ + DAEMON-EVENT: init + DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0] + DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0] + new: [.....1] [ip4][..udp] [....10.25.32.59][19948] -> [255.255.255.255][19948] + new: [.....2] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.82][.1948] + new: [.....3] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.86][.8888] + detected: [.....3] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.86][.8888] [Kontiki][Media][Potentially Dangerous] + RISK: Unsafe Protocol + new: [.....4] [ip4][.icmp] [...10.25.249.14] -> [....10.25.32.59] + detected: [.....4] [ip4][.icmp] [...10.25.249.14] -> [....10.25.32.59] [ICMP][Network][Acceptable] + new: [.....5] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.88][...80] + detected: [.....5] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.88][...80] [Kontiki][Media][Potentially Dangerous] + RISK: Unsafe Protocol + new: [.....6] [ip4][.icmp] [.....10.25.32.3] -> [....10.25.32.59] + detected: [.....6] [ip4][.icmp] [.....10.25.32.3] -> [....10.25.32.59] [ICMP][Network][Acceptable] + new: [.....7] [ip4][.icmp] [216.168.241.157] -> [....10.25.32.59] + detected: [.....7] [ip4][.icmp] [216.168.241.157] -> [....10.25.32.59] [ICMP][Network][Acceptable] + new: [.....8] [ip4][.icmp] [...4.79.219.125] -> [....10.25.32.59] + detected: [.....8] [ip4][.icmp] [...4.79.219.125] -> [....10.25.32.59] [ICMP][Network][Acceptable] + analyse: [.....3] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.86][.8888] [Kontiki][Media][Potentially Dangerous] + [min|max|avg|stddev] + [IAT(flow)...: 0.000| 0.608| 0.045| 0.118] + [IAT(c->s)...: 0.003| 0.212| 0.078| 0.088][IAT(s->c)...: 0.000| 0.608| 0.032| 0.126] + [PKTLEN(c->s): 46.000| 259.000| 101.100| 79.400][PKTLEN(s->c): 70.000|1283.000|1144.500| 355.200] + [BINS(c->s)..: 7,0,1,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] + [BINS(s->c)..: 1,0,0,0,0,1,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,19,0,0,0,0,0,0,0,0,0] + idle: [.....8] [ip4][.icmp] [...4.79.219.125] -> [....10.25.32.59] [ICMP][Network][Acceptable] + idle: [.....7] [ip4][.icmp] [216.168.241.157] -> [....10.25.32.59] [ICMP][Network][Acceptable] + idle: [.....3] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.86][.8888] [Kontiki][Media][Potentially Dangerous] + RISK: Unsafe Protocol + idle: [.....6] [ip4][.icmp] [.....10.25.32.3] -> [....10.25.32.59] [ICMP][Network][Acceptable] + idle: [.....4] [ip4][.icmp] [...10.25.249.14] -> [....10.25.32.59] [ICMP][Network][Acceptable] + not-detected: [.....1] [ip4][..udp] [....10.25.32.59][19948] -> [255.255.255.255][19948] [Unknown][Unrated] + idle: [.....1] [ip4][..udp] [....10.25.32.59][19948] -> [255.255.255.255][19948] + not-detected: [.....2] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.82][.1948] [Unknown][Unrated] + idle: [.....2] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.82][.1948] + idle: [.....5] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.88][...80] [Kontiki][Media][Potentially Dangerous] + RISK: Unsafe Protocol + DAEMON-EVENT: shutdown |