From 2b48eb051473e240735f61f41dce1c6614ca39fd Mon Sep 17 00:00:00 2001
From: Toni Uhlig <matzeton@googlemail.com>
Date: Wed, 30 Oct 2024 15:48:45 +0100
Subject: Added `vlan_id` dissection of the most outer (first) 802.1Q header.
 Fixes #50

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
---
 test/results/flow-info/default/whois.pcapng.out | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

(limited to 'test/results/flow-info/default/whois.pcapng.out')

diff --git a/test/results/flow-info/default/whois.pcapng.out b/test/results/flow-info/default/whois.pcapng.out
index 0da278786..4934d5388 100644
--- a/test/results/flow-info/default/whois.pcapng.out
+++ b/test/results/flow-info/default/whois.pcapng.out
@@ -5,18 +5,18 @@
          detected: [.....1] [ip4][..tcp] [......10.0.2.15][44188] -> [....192.0.47.59][...43] [Whois-DAS][Unknown][Network][Acceptable][example.com]
      DAEMON-EVENT: [Processed: 11 pkts][ZLib][compressions: 0|diff: 0 / 0]
      DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
-              new: [.....2] [ip4][..tcp] [...10.17.34.139][64016] -> [.....10.17.51.8][.4343]
-         detected: [.....2] [ip4][..tcp] [...10.17.34.139][64016] -> [.....10.17.51.8][.4343] [TLS][Unknown][Web][Safe][]
+              new: [.....2][1603] [ip4][..tcp] [...10.17.34.139][64016] -> [.....10.17.51.8][.4343]
+         detected: [.....2][1603] [ip4][..tcp] [...10.17.34.139][64016] -> [.....10.17.51.8][.4343] [TLS][Unknown][Web][Safe][]
                    RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, ALPN/SNI Mismatch
- detection-update: [.....2] [ip4][..tcp] [...10.17.34.139][64016] -> [.....10.17.51.8][.4343] [TLS][Unknown][Web][Safe][]
+ detection-update: [.....2][1603] [ip4][..tcp] [...10.17.34.139][64016] -> [.....10.17.51.8][.4343] [TLS][Unknown][Web][Safe][]
                    RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, ALPN/SNI Mismatch
               end: [.....1] [ip4][..tcp] [......10.0.2.15][44188] -> [....192.0.47.59][...43] [Whois-DAS][Unknown][Network][Acceptable][example.com]
      DAEMON-EVENT: [Processed: 18 pkts][ZLib][compressions: 0|diff: 0 / 0]
      DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 1|updates: 0]
-              new: [.....3] [ip4][..tcp] [...192.30.45.30][...43] -> [..10.160.63.128][53217]
-             idle: [.....2] [ip4][..tcp] [...10.17.34.139][64016] -> [.....10.17.51.8][.4343] [TLS][Unknown][Web][Safe]
+              new: [.....3][1908] [ip4][..tcp] [...192.30.45.30][...43] -> [..10.160.63.128][53217]
+             idle: [.....2][1603] [ip4][..tcp] [...10.17.34.139][64016] -> [.....10.17.51.8][.4343] [TLS][Unknown][Web][Safe]
                    RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, ALPN/SNI Mismatch
-          guessed: [.....3] [ip4][..tcp] [...192.30.45.30][...43] -> [..10.160.63.128][53217] [Whois-DAS][Unknown][Network][Acceptable][]
+          guessed: [.....3][1908] [ip4][..tcp] [...192.30.45.30][...43] -> [..10.160.63.128][53217] [Whois-DAS][Unknown][Network][Acceptable][]
                    RISK: Unidirectional Traffic
-              end: [.....3] [ip4][..tcp] [...192.30.45.30][...43] -> [..10.160.63.128][53217]
+              end: [.....3][1908] [ip4][..tcp] [...192.30.45.30][...43] -> [..10.160.63.128][53217]
      DAEMON-EVENT: shutdown
-- 
cgit v1.2.3