aboutsummaryrefslogtreecommitdiff
path: root/test/results/selfsigned.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/selfsigned.pcap.out')
-rw-r--r--test/results/selfsigned.pcap.out69
1 files changed, 18 insertions, 51 deletions
diff --git a/test/results/selfsigned.pcap.out b/test/results/selfsigned.pcap.out
index c85ce39fa..a26f20278 100644
--- a/test/results/selfsigned.pcap.out
+++ b/test/results/selfsigned.pcap.out
@@ -1,57 +1,24 @@
00444{"daemon_event_id":1,"daemon_event_name":"init","thread_id":0,"packet_id":0,"source":"selfsigned.pcap","alias":"nDPId-test","max-flows-per-thread":2048,"max-idle-flows-per-thread":256,"tick-resolution":1000,"reader-thread-count":1,"flow-scan-interval":10000,"generic-max-idle-time":600000,"icmp-max-idle-time":120000,"udp-max-idle-time":180000,"tcp-max-idle-time":7560000,"max-packets-per-flow-to-send":3,"max-packets-per-flow-to-process":255}
-00371{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":1,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":68,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":68,"pkt_l4_len":0,"ts_msec":1588921646472,"pkt":"AgAAAEUAAEAAAEAAQAYAAH8AAAF\/AAAByZcLuc3ubiYAAAAAsAL\/\/\/40AAACBD\/YAQMDBQEBCAoTf8z4AAAAAAQCAAA="}
-00179{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":1,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00372{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":2,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":68,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":68,"pkt_l4_len":0,"ts_msec":1588921646472,"pkt":"AgAAAEUAAEAAAEAAQAYAAH8AAAF\/AAABC7nJlxL1FVDN7m4nsBL\/\/\/40AAACBD\/YAQMDBQEBCAoTf8z4E3\/M+AQCAAA="}
-00179{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":2,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00354{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":3,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646472,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAAByZcLuc3ubicS9RVRgBAx1\/4oAAABAQgKE3\/M+BN\/zPg="}
-00179{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":3,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00354{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":4,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646472,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAABC7nJlxL1FVHN7m4ngBAx1\/4oAAABAQgKE3\/M+BN\/zPg="}
-00179{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":4,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-01047{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":5,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":573,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":573,"pkt_l4_len":0,"ts_msec":1588921646479,"pkt":"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"}
-00179{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":5,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00355{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":6,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646479,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAABC7nJlxL1FVHN7nAsgBAxx\/4oAAABAQgKE3\/M\/hN\/zP4="}
-00179{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":6,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-02191{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":7,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":1413,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":1413,"pkt_l4_len":0,"ts_msec":1588921646482,"pkt":"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"}
-00179{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":7,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00353{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":8,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646482,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAAByZcLuc3ucCwS9RqegBAxrP4oAAABAQgKE3\/NARN\/zQE="}
-00179{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":8,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00618{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":9,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":250,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":250,"pkt_l4_len":0,"ts_msec":1588921646515,"pkt":"AgAAAEUAAPYAAEAAQAYAAH8AAAF\/AAAByZcLuc3ucCwS9RqegBgxrP7qAAABAQgKE3\/NIRN\/zQEWAwMAihAAAIaFBAG+dqNZTTGNmlhVbXDLZNVvUlffjDtinpHNy96LVaKYMsQRKJqlAMJaJ1CL2upAok8ZJ3580aT16eCbet9Av5rvqwGLozAGivP0w7XcCvMFhYEkd0w55ov6A5Xgcdk0U5pPZKI4AHrMk56KuDLa48F22ITuDHcEXW1FwVSrPe\/aIwNarxQDAwABARYDAwAoAAAAAAAAAACfHxM0p3Cy7xktMZ6c6Q\/r\/qNpTZ7nZV0imZBp6cUPhQ=="}
-00179{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":9,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00354{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":10,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646515,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAABC7nJlxL1Gp7N7nDugBAxwf4oAAABAQgKE3\/NIRN\/zSE="}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":10,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00425{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":11,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":107,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":107,"pkt_l4_len":0,"ts_msec":1588921646516,"pkt":"AgAAAEUAAGcAAEAAQAYAAH8AAAF\/AAABC7nJlxL1Gp7N7nDugBgxwf5bAAABAQgKE3\/NIhN\/zSEUAwMAAQEWAwMAKPFL+hO\/a3B3v+zcGiguxbP496ElenpzjOz+90hPssLt7skmpRpCGLw="}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":11,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00355{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":12,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646516,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAAByZcLuc3ucO4S9RrRgBAxq\/4oAAABAQgKE3\/NIhN\/zSI="}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":12,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00503{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":13,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":163,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":163,"pkt_l4_len":0,"ts_msec":1588921646516,"pkt":"AgAAAEUAAJ8AAEAAQAYAAH8AAAF\/AAAByZcLuc3ucO4S9RrRgBgxq\/6TAAABAQgKE3\/NIhN\/zSIXAwMAZgAAAAAAAAABdBSRwbqzQkhQtcxlAK17XmvhhAJFl33RHxJN0euo4ttiJS6nTJ0vqgLpUY2Fj7p\/dZWzDo51XJ69V2M\/QOjoclgQ6xctxSRbp7a+0T7Nk2eRCARiLWRH6v4l1aNskA=="}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":13,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00354{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":14,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646516,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAABC7nJlxL1GtHN7nFZgBAxvf4oAAABAQgKE3\/NIhN\/zSI="}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":14,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00868{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":15,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":433,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":433,"pkt_l4_len":0,"ts_msec":1588921646517,"pkt":"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"}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":15,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00355{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":16,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646517,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAAByZcLuc3ucVkS9RxKgBAxn\/4oAAABAQgKE3\/NIhN\/zSI="}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":16,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00354{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":17,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646517,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAABC7nJlxL1HErN7nFZgBExvf4oAAABAQgKE3\/NIhN\/zSI="}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":17,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00355{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":18,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":56,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":56,"pkt_l4_len":0,"ts_msec":1588921646517,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAAByZcLuc3ucVkS9RxLgBAxn\/4oAAABAQgKE3\/NIhN\/zSI="}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":18,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00395{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":19,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":87,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":87,"pkt_l4_len":0,"ts_msec":1588921646517,"pkt":"AgAAAEUAAFMAAEAAQAYAAH8AAAF\/AAAByZcLuc3ucVkS9RxLgBgxn\/5HAAABAQgKE3\/NIhN\/zSIVAwMAGgAAAAAAAAACREZ61K9C9UtSJpV+82AiMBrk"}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":19,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00336{"packet_event_id":1,"packet_event_name":"packet","thread_id":0,"packet_id":20,"source":"selfsigned.pcap","alias":"nDPId-test","pkt_oversize":false,"pkt_caplen":44,"pkt_type":0,"pkt_l3_offset":0,"pkt_l4_offset":0,"pkt_len":44,"pkt_l4_len":0,"ts_msec":1588921646517,"pkt":"AgAAAEUAACgAAEAAQAYAAH8AAAF\/AAABC7nJlxL1HEsAAAAAUAQAAP4cAAA="}
-00180{"basic_event_id":1,"basic_event_name":"Unknown datalink layer packet","thread_id":0,"packet_id":20,"source":"selfsigned.pcap","alias":"nDPId-test","datalink":0,"header":33554432}
-00159{"daemon_event_id":3,"daemon_event_name":"shutdown","thread_id":0,"packet_id":20,"source":"selfsigned.pcap","alias":"nDPId-test","total-events-serialized":42}
+00545{"flow_event_id":1,"flow_event_name":"new","thread_id":0,"packet_id":1,"source":"selfsigned.pcap","alias":"nDPId-test","flow_id":1,"flow_packets_processed":1,"flow_first_seen":1588921646472,"flow_last_seen":1588921646472,"flow_idle_time":7440000,"flow_min_l4_payload_len":0,"flow_max_l4_payload_len":0,"flow_tot_l4_payload_len":0,"flow_avg_l4_payload_len":0,"midstream":0,"ts_msec":1588921646472,"l3_proto":"ip4","src_ip":"127.0.0.1","dst_ip":"127.0.0.1","src_port":51607,"dst_port":3001,"l4_proto":"tcp","flow_datalink":0,"flow_max_packets":3}
+00468{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":1,"source":"selfsigned.pcap","alias":"nDPId-test","flow_id":1,"flow_packet_id":1,"flow_last_seen":1588921646472,"flow_idle_time":7440000,"pkt_oversize":false,"pkt_caplen":68,"pkt_type":2048,"pkt_l3_offset":4,"pkt_l4_offset":24,"pkt_len":68,"pkt_l4_len":44,"ts_msec":1588921646472,"pkt":"AgAAAEUAAEAAAEAAQAYAAH8AAAF\/AAAByZcLuc3ubiYAAAAAsAL\/\/\/40AAACBD\/YAQMDBQEBCAoTf8z4AAAAAAQCAAA="}
+00469{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":2,"source":"selfsigned.pcap","alias":"nDPId-test","flow_id":1,"flow_packet_id":2,"flow_last_seen":1588921646472,"flow_idle_time":7440000,"pkt_oversize":false,"pkt_caplen":68,"pkt_type":2048,"pkt_l3_offset":4,"pkt_l4_offset":24,"pkt_len":68,"pkt_l4_len":44,"ts_msec":1588921646472,"pkt":"AgAAAEUAAEAAAEAAQAYAAH8AAAF\/AAABC7nJlxL1FVDN7m4nsBL\/\/\/40AAACBD\/YAQMDBQEBCAoTf8z4E3\/M+AQCAAA="}
+00451{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":3,"source":"selfsigned.pcap","alias":"nDPId-test","flow_id":1,"flow_packet_id":3,"flow_last_seen":1588921646472,"flow_idle_time":7440000,"pkt_oversize":false,"pkt_caplen":56,"pkt_type":2048,"pkt_l3_offset":4,"pkt_l4_offset":24,"pkt_len":56,"pkt_l4_len":32,"ts_msec":1588921646472,"pkt":"AgAAAEUAADQAAEAAQAYAAH8AAAF\/AAAByZcLuc3ubicS9RVRgBAx1\/4oAAABAQgKE3\/M+BN\/zPg="}
+00828{"flow_event_id":6,"flow_event_name":"detected","thread_id":0,"packet_id":5,"source":"selfsigned.pcap","alias":"nDPId-test","flow_id":1,"flow_packets_processed":5,"flow_first_seen":1588921646472,"flow_last_seen":1588921646479,"flow_idle_time":7440000,"flow_min_l4_payload_len":0,"flow_max_l4_payload_len":517,"flow_tot_l4_payload_len":517,"flow_avg_l4_payload_len":103,"midstream":0,"ts_msec":1588921646479,"l3_proto":"ip4","src_ip":"127.0.0.1","dst_ip":"127.0.0.1","src_port":51607,"dst_port":3001,"l4_proto":"tcp","ndpi": {"flow_risk": {"5":"Known protocol on non standard port"},"proto":"TLS","breed":"Safe","category":"Web"},"tls": {"version":"TLSv1.2","client_requested_server_name":"localhost","ja3":"2a26b1a62e40d25d4de3babc9d532f30","ja3s":"","unsafe_cipher":0,"cipher":"TLS_NULL_WITH_NULL_NULL","alpn":"h2,http\/1.1"}}
+01120{"flow_event_id":7,"flow_event_name":"detection-update","thread_id":0,"packet_id":7,"source":"selfsigned.pcap","alias":"nDPId-test","flow_id":1,"flow_packets_processed":7,"flow_first_seen":1588921646472,"flow_last_seen":1588921646482,"flow_idle_time":7440000,"flow_min_l4_payload_len":0,"flow_max_l4_payload_len":1357,"flow_tot_l4_payload_len":1874,"flow_avg_l4_payload_len":267,"midstream":0,"ts_msec":1588921646482,"l3_proto":"ip4","src_ip":"127.0.0.1","dst_ip":"127.0.0.1","src_port":51607,"dst_port":3001,"l4_proto":"tcp","ndpi": {"flow_risk": {"5":"Known protocol on non standard port","6":"Self-signed Certificate","9":"TLS Expired Certificate"},"proto":"TLS.ntop","breed":"Safe","category":"Network"},"tls": {"version":"TLSv1.2","client_requested_server_name":"localhost","ja3":"2a26b1a62e40d25d4de3babc9d532f30","ja3s":"0debd3853f330c574b05e0b6d882dc27","unsafe_cipher":0,"cipher":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","issuerDN":"C=IT, ST=Some-State, O=ntop.org","subjectDN":"C=IT, ST=Some-State, O=ntop.org","alpn":"h2,http\/1.1","fingerprint":"AF:CC:98:49:F2:00:0E:05:21:18:6C:77:5F:2A:CF:10:44:6E:D8:8B"}}
+00555{"flow_event_id":2,"flow_event_name":"end","thread_id":0,"packet_id":20,"source":"selfsigned.pcap","alias":"nDPId-test","flow_id":1,"flow_packets_processed":20,"flow_first_seen":1588921646472,"flow_last_seen":1588921646517,"flow_idle_time":7440000,"flow_min_l4_payload_len":0,"flow_max_l4_payload_len":1357,"flow_tot_l4_payload_len":2634,"flow_avg_l4_payload_len":131,"midstream":0,"ts_msec":1588921646517,"l3_proto":"ip4","src_ip":"127.0.0.1","dst_ip":"127.0.0.1","src_port":51607,"dst_port":3001,"l4_proto":"tcp","flow_datalink":0,"flow_max_packets":3}
+00158{"daemon_event_id":3,"daemon_event_name":"shutdown","thread_id":0,"packet_id":20,"source":"selfsigned.pcap","alias":"nDPId-test","total-events-serialized":9}
~~~~~~~~~~~~~~~~~~~~ SUMMARY ~~~~~~~~~~~~~~~~~~~~
-~~ packets captured/processed: 20/0
+~~ packets captured/processed: 20/20
~~ skipped flows.............: 0
-~~ total layer4 data length..: 0 bytes
-~~ total detected protocols..: 0
-~~ total active/idle flows...: 0/0
+~~ total layer4 data length..: 2634 bytes
+~~ total detected protocols..: 1
+~~ total active/idle flows...: 1/1
~~ total timeout flows.......: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-~~ total memory allocated....: 4589247 bytes
-~~ total memory freed........: 4589247 bytes
-~~ total allocations/frees...: 99531/99531
+~~ total memory allocated....: 4607261 bytes
+~~ total memory freed........: 4607261 bytes
+~~ total allocations/frees...: 99579/99579
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-~~ json string min len.......: 164 chars
-~~ json string max len.......: 2196 chars
-~~ json string avg len.......: 1184 chars
+~~ json string min len.......: 163 chars
+~~ json string max len.......: 1125 chars
+~~ json string avg len.......: 687 chars
Powered by cgit, Themed by Ted Yin.