summaryrefslogtreecommitdiff
path: root/test/results/punycode-idn.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/punycode-idn.pcap.out')
-rw-r--r--test/results/punycode-idn.pcap.out35
1 files changed, 35 insertions, 0 deletions
diff --git a/test/results/punycode-idn.pcap.out b/test/results/punycode-idn.pcap.out
new file mode 100644
index 000000000..49147438f
--- /dev/null
+++ b/test/results/punycode-idn.pcap.out
@@ -0,0 +1,35 @@
+00444{"daemon_event_id":1,"daemon_event_name":"init","thread_id":0,"packet_id":0,"source":"punycode-idn.pcap","alias":"nDPId-test","max-flows-per-thread":2048,"max-idle-flows-per-thread":64,"tick-resolution":1000,"reader-thread-count":1,"flow-scan-interval":10000,"generic-max-idle-time":600000,"icmp-max-idle-time":120000,"udp-max-idle-time":180000,"tcp-max-idle-time":7560000,"max-packets-per-flow-to-send":3,"max-packets-per-flow-to-process":32}
+00574{"flow_event_id":1,"flow_event_name":"new","thread_id":0,"packet_id":1,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_packets_processed":1,"flow_first_seen":1643874953669,"flow_last_seen":1643874953669,"flow_idle_time":180000,"flow_min_l4_payload_len":27,"flow_max_l4_payload_len":27,"flow_tot_l4_payload_len":27,"flow_avg_l4_payload_len":27,"midstream":0,"ts_msec":1643874953669,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"192.168.2.1","src_port":45520,"dst_port":53,"l4_proto":"udp","flow_datalink":1,"flow_max_packets":3}
+00465{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":1,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":1,"flow_packet_id":1,"flow_last_seen":1643874953669,"flow_idle_time":180000,"pkt_oversize":false,"pkt_caplen":69,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":69,"pkt_l4_len":35,"ts_msec":1643874953669,"pkt":"BBjWBrNamAGnpQyTCABFAAA3T1gAAEARpYDAqAKMwKgCAbHQADUAI+SVpXsBAAABAAAAAAAAAWkEc2NkbgJjbwAAAQAB"}
+00763{"flow_event_id":6,"flow_event_name":"detected","thread_id":0,"packet_id":1,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_packets_processed":1,"flow_first_seen":1643874953669,"flow_last_seen":1643874953669,"flow_idle_time":180000,"flow_min_l4_payload_len":27,"flow_max_l4_payload_len":27,"flow_tot_l4_payload_len":27,"flow_avg_l4_payload_len":27,"midstream":0,"ts_msec":1643874953669,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"192.168.2.1","src_port":45520,"dst_port":53,"l4_proto":"udp","ndpi": {"confidence": {"4":"DPI"},"proto":"DNS.Spotify","breed":"Acceptable","category":"Music"},"dns": {"query":"i.scdn.co","num_queries":0,"num_answers":0,"reply_code":0,"query_type":1,"rsp_type":0,"rsp_addr":"0.0.0.0"}}
+00547{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":2,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":1,"flow_packet_id":2,"flow_last_seen":1643874953689,"flow_idle_time":180000,"pkt_oversize":false,"pkt_caplen":128,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":128,"pkt_l4_len":94,"ts_msec":1643874953689,"pkt":"mAGnpQyTBBjWBrNaCABFAAByB3NAAEARrSrAqAIBwKgCjAA1sdAAXmq0pXuBgAABAAIAAAAAAWkEc2NkbgJjbwAAAQABwAwABQABAAAACwAfBnNjZG5jbwdzcG90aWZ5A21hcAZmYXN0bHkDbmV0AMAnAAEAAQAAAB4ABJJLPvg="}
+00778{"flow_event_id":7,"flow_event_name":"detection-update","thread_id":0,"packet_id":2,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_packets_processed":2,"flow_first_seen":1643874953669,"flow_last_seen":1643874953689,"flow_idle_time":180000,"flow_min_l4_payload_len":27,"flow_max_l4_payload_len":86,"flow_tot_l4_payload_len":113,"flow_avg_l4_payload_len":56,"midstream":0,"ts_msec":1643874953689,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"192.168.2.1","src_port":45520,"dst_port":53,"l4_proto":"udp","ndpi": {"confidence": {"4":"DPI"},"proto":"DNS.Spotify","breed":"Acceptable","category":"Music"},"dns": {"query":"i.scdn.co","num_queries":1,"num_answers":2,"reply_code":0,"query_type":1,"rsp_type":1,"rsp_addr":"146.75.62.248"}}
+00574{"flow_event_id":1,"flow_event_name":"new","thread_id":0,"packet_id":3,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":2,"flow_state":"info","flow_packets_processed":1,"flow_first_seen":1643874953695,"flow_last_seen":1643874953695,"flow_idle_time":180000,"flow_min_l4_payload_len":39,"flow_max_l4_payload_len":39,"flow_tot_l4_payload_len":39,"flow_avg_l4_payload_len":39,"midstream":0,"ts_msec":1643874953695,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"192.168.2.1","src_port":60156,"dst_port":53,"l4_proto":"udp","flow_datalink":1,"flow_max_packets":3}
+00481{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":3,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":2,"flow_packet_id":1,"flow_last_seen":1643874953695,"flow_idle_time":180000,"pkt_oversize":false,"pkt_caplen":81,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":81,"pkt_l4_len":47,"ts_msec":1643874953695,"pkt":"BBjWBrNamAGnpQyTCABFAABDinIAAEARalrAqAKMwKgCAer8ADUAL4QJ+wUBAAABAAAAAAAAA3d3dw14bi0tbW5pY2gta3ZhA2NvbQAAAQAB"}
+00769{"flow_event_id":6,"flow_event_name":"detected","thread_id":0,"packet_id":3,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":2,"flow_state":"info","flow_packets_processed":1,"flow_first_seen":1643874953695,"flow_last_seen":1643874953695,"flow_idle_time":180000,"flow_min_l4_payload_len":39,"flow_max_l4_payload_len":39,"flow_tot_l4_payload_len":39,"flow_avg_l4_payload_len":39,"midstream":0,"ts_msec":1643874953695,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"192.168.2.1","src_port":60156,"dst_port":53,"l4_proto":"udp","ndpi": {"confidence": {"4":"DPI"},"proto":"DNS","breed":"Acceptable","category":"Network"},"dns": {"query":"www.xn--mnich-kva.com","num_queries":0,"num_answers":0,"reply_code":0,"query_type":1,"rsp_type":0,"rsp_addr":"0.0.0.0"}}
+00481{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":4,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":2,"flow_packet_id":2,"flow_last_seen":1643874953696,"flow_idle_time":180000,"pkt_oversize":false,"pkt_caplen":81,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":81,"pkt_l4_len":47,"ts_msec":1643874953696,"pkt":"mAGnpQyTBBjWBrNaCABFAABDB3RAAEARrVjAqAIBwKgCjAA16vwALwOG+wWBgwABAAAAAAAAA3d3dw14bi0tbW5pY2gta3ZhA2NvbQAAAQAB"}
+00777{"flow_event_id":7,"flow_event_name":"detection-update","thread_id":0,"packet_id":4,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":2,"flow_state":"info","flow_packets_processed":2,"flow_first_seen":1643874953695,"flow_last_seen":1643874953696,"flow_idle_time":180000,"flow_min_l4_payload_len":39,"flow_max_l4_payload_len":39,"flow_tot_l4_payload_len":78,"flow_avg_l4_payload_len":39,"midstream":0,"ts_msec":1643874953696,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"192.168.2.1","src_port":60156,"dst_port":53,"l4_proto":"udp","ndpi": {"confidence": {"4":"DPI"},"proto":"DNS","breed":"Acceptable","category":"Network"},"dns": {"query":"www.xn--mnich-kva.com","num_queries":1,"num_answers":0,"reply_code":3,"query_type":1,"rsp_type":0,"rsp_addr":"0.0.0.0"}}
+00572{"flow_event_id":1,"flow_event_name":"new","thread_id":0,"packet_id":5,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":3,"flow_state":"info","flow_packets_processed":1,"flow_first_seen":1643874961730,"flow_last_seen":1643874961730,"flow_idle_time":7440000,"flow_min_l4_payload_len":0,"flow_max_l4_payload_len":0,"flow_tot_l4_payload_len":0,"flow_avg_l4_payload_len":0,"midstream":0,"ts_msec":1643874961730,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"170.33.9.230","src_port":56011,"dst_port":80,"l4_proto":"tcp","flow_datalink":1,"flow_max_packets":3}
+00481{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":5,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":3,"flow_packet_id":1,"flow_last_seen":1643874961730,"flow_idle_time":7440000,"pkt_oversize":false,"pkt_caplen":78,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":78,"pkt_l4_len":44,"ts_msec":1643874961730,"pkt":"BBjWBrNamAGnpQyTCABFAABAAABAAEAGw3zAqAKMqiEJ5trLAFCDcwnXAAAAALAC\/\/\/UoQAAAgQFtAEDAwYBAQgKl2brUQAAAAAEAgAA"}
+00478{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":6,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":3,"flow_packet_id":2,"flow_last_seen":1643874961751,"flow_idle_time":7440000,"pkt_oversize":false,"pkt_caplen":78,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":78,"pkt_l4_len":44,"ts_msec":1643874961751,"pkt":"mAGnpQyTBBjWBrNaCABFAABAAABAADMG0HyqIQnmwKgCjABQ2svsD6nIg3MJ2LASFoCwBAAAAgQFrAEBAQEBAQEBAQEBAQEBAQEEAgAA"}
+00448{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":7,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":3,"flow_packet_id":3,"flow_last_seen":1643874961751,"flow_idle_time":7440000,"pkt_oversize":false,"pkt_caplen":54,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":54,"pkt_l4_len":20,"ts_msec":1643874961751,"pkt":"BBjWBrNamAGnpQyTCABFAAAoAABAAEAGw5TAqAKMqiEJ5trLAFCDcwnY7A+pyVAQ\/\/86WAAA"}
+00758{"flow_event_id":6,"flow_event_name":"detected","thread_id":0,"packet_id":8,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":3,"flow_state":"info","flow_packets_processed":4,"flow_first_seen":1643874961730,"flow_last_seen":1643874961751,"flow_idle_time":7440000,"flow_min_l4_payload_len":0,"flow_max_l4_payload_len":83,"flow_tot_l4_payload_len":83,"flow_avg_l4_payload_len":20,"midstream":0,"ts_msec":1643874961751,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"170.33.9.230","src_port":56011,"dst_port":80,"l4_proto":"tcp","ndpi": {"confidence": {"4":"DPI"},"proto":"HTTP","breed":"Acceptable","category":"Web"},"http": {"hostname":"www.love.xn--55qx5d","url":"www.love.xn--55qx5d\/","code":0,"content_type":"","user_agent":"curl\/7.77.0"}}
+00679{"flow_event_id":3,"flow_event_name":"idle","thread_id":0,"packet_id":16,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":1,"flow_state":"finished","flow_packets_processed":2,"flow_first_seen":1643874953669,"flow_last_seen":1643874953689,"flow_idle_time":180000,"flow_min_l4_payload_len":27,"flow_max_l4_payload_len":86,"flow_tot_l4_payload_len":113,"flow_avg_l4_payload_len":56,"midstream":0,"ts_msec":1643874962305,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"192.168.2.1","src_port":45520,"dst_port":53,"l4_proto":"udp","flow_datalink":1,"flow_max_packets":3,"ndpi": {"confidence": {"4":"DPI"},"proto":"DNS.Spotify","breed":"Acceptable","category":"Music"}}
+00576{"flow_event_id":3,"flow_event_name":"idle","thread_id":0,"packet_id":16,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":2,"flow_state":"info","flow_packets_processed":2,"flow_first_seen":1643874953695,"flow_last_seen":1643874953696,"flow_idle_time":180000,"flow_min_l4_payload_len":39,"flow_max_l4_payload_len":39,"flow_tot_l4_payload_len":78,"flow_avg_l4_payload_len":39,"midstream":0,"ts_msec":1643874962305,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"192.168.2.1","src_port":60156,"dst_port":53,"l4_proto":"udp","flow_datalink":1,"flow_max_packets":3}
+00672{"flow_event_id":2,"flow_event_name":"end","thread_id":0,"packet_id":16,"source":"punycode-idn.pcap","alias":"nDPId-test","flow_id":3,"flow_state":"finished","flow_packets_processed":12,"flow_first_seen":1643874961730,"flow_last_seen":1643874962305,"flow_idle_time":7440000,"flow_min_l4_payload_len":0,"flow_max_l4_payload_len":711,"flow_tot_l4_payload_len":877,"flow_avg_l4_payload_len":73,"midstream":0,"ts_msec":1643874962305,"l3_proto":"ip4","src_ip":"192.168.2.140","dst_ip":"170.33.9.230","src_port":56011,"dst_port":80,"l4_proto":"tcp","flow_datalink":1,"flow_max_packets":3,"ndpi": {"confidence": {"4":"DPI"},"proto":"HTTP","breed":"Acceptable","category":"Web"}}
+00161{"daemon_event_id":3,"daemon_event_name":"shutdown","thread_id":0,"packet_id":16,"source":"punycode-idn.pcap","alias":"nDPId-test","total-events-serialized":20}
+~~~~~~~~~~~~~~~~~~~~ SUMMARY ~~~~~~~~~~~~~~~~~~~~
+~~ packets captured/processed: 16/16
+~~ skipped flows.............: 0
+~~ total layer4 data length..: 1068 bytes
+~~ total detected protocols..: 3
+~~ total active/idle flows...: 3/3
+~~ total timeout flows.......: 0
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+~~ total memory allocated....: 4682033 bytes
+~~ total memory freed........: 4682033 bytes
+~~ total allocations/frees...: 101168/101168
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+~~ json string min len.......: 166 chars
+~~ json string max len.......: 783 chars
+~~ json string avg len.......: 544 chars
Powered by cgit, Themed by Ted Yin.