blob: 8cc858544d9f311ec6bb369a7adf4c6024f4bc57 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
|
DAEMON-EVENT: init
DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161]
detected: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
new: [.....2] [ip4][..udp] [...65.2.162.193][59988] -> [.130.70.149.185][..161]
detected: [.....2] [ip4][..udp] [...65.2.162.193][59988] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [...65.2.162.193][59988] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
new: [.....3] [ip4][..udp] [..176.211.60.43][37224] -> [...97.0.115.163][..161]
detected: [.....3] [ip4][..udp] [..176.211.60.43][37224] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [..176.211.60.43][37224] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
new: [.....4] [ip4][..udp] [...65.2.162.193][58433] -> [.130.70.149.185][..161]
detected: [.....4] [ip4][..udp] [...65.2.162.193][58433] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..udp] [...65.2.162.193][58433] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
update: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
new: [.....5] [ip4][..udp] [..30.54.142.240][56251] -> [..250.58.112.87][..161]
detected: [.....5] [ip4][..udp] [..30.54.142.240][56251] -> [..250.58.112.87][..161] [SNMP][Unknown][Network][Acceptable]
new: [.....6] [ip4][..udp] [..30.54.142.240][52435] -> [..250.58.112.87][..161]
detected: [.....6] [ip4][..udp] [..30.54.142.240][52435] -> [..250.58.112.87][..161] [SNMP][Unknown][Network][Acceptable]
update: [.....2] [ip4][..udp] [...65.2.162.193][59988] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
update: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
update: [.....4] [ip4][..udp] [...65.2.162.193][58433] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
update: [.....3] [ip4][..udp] [..176.211.60.43][37224] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
DAEMON-EVENT: [Processed: 28 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 5]
new: [.....7] [ip4][..udp] [..35.95.158.217][60440] -> [...30.79.214.36][..161]
detected: [.....7] [ip4][..udp] [..35.95.158.217][60440] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..35.95.158.217][49306] -> [...30.79.214.36][..161]
detected: [.....8] [ip4][..udp] [..35.95.158.217][49306] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...65.2.162.193][59988] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
idle: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
idle: [.....5] [ip4][..udp] [..30.54.142.240][56251] -> [..250.58.112.87][..161] [SNMP][Unknown][Network][Acceptable]
idle: [.....4] [ip4][..udp] [...65.2.162.193][58433] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
idle: [.....3] [ip4][..udp] [..176.211.60.43][37224] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
idle: [.....6] [ip4][..udp] [..30.54.142.240][52435] -> [..250.58.112.87][..161] [SNMP][Unknown][Network][Acceptable]
new: [.....9] [ip4][..udp] [.131.179.49.165][60694] -> [..254.158.1.169][..161]
detected: [.....9] [ip4][..udp] [.131.179.49.165][60694] -> [..254.158.1.169][..161] [SNMP][Unknown][Network][Acceptable]
new: [....10] [ip4][..udp] [.131.179.49.165][35970] -> [..254.158.1.169][..161]
detected: [....10] [ip4][..udp] [.131.179.49.165][35970] -> [..254.158.1.169][..161] [SNMP][Unknown][Network][Acceptable]
update: [.....7] [ip4][..udp] [..35.95.158.217][60440] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
update: [.....8] [ip4][..udp] [..35.95.158.217][49306] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
DAEMON-EVENT: [Processed: 52 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 10|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 7]
new: [....11] [ip4][..udp] [..92.135.15.240][54318] -> [.137.49.110.186][..162]
detected: [....11] [ip4][..udp] [..92.135.15.240][54318] -> [.137.49.110.186][..162] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [.131.179.49.165][60694] -> [..254.158.1.169][..161] [SNMP][Unknown][Network][Acceptable]
idle: [.....7] [ip4][..udp] [..35.95.158.217][60440] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
idle: [.....8] [ip4][..udp] [..35.95.158.217][49306] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
idle: [....10] [ip4][..udp] [.131.179.49.165][35970] -> [..254.158.1.169][..161] [SNMP][Unknown][Network][Acceptable]
new: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162]
detected: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [..92.135.15.240][54318] -> [.137.49.110.186][..162] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
new: [....13] [ip4][..udp] [.113.19.156.111][54318] -> [.135.201.124.55][..162]
detected: [....13] [ip4][..udp] [.113.19.156.111][54318] -> [.135.201.124.55][..162] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
new: [....14] [ip4][..udp] [..205.83.36.228][54318] -> [.160.174.106.32][..162]
detected: [....14] [ip4][..udp] [..205.83.36.228][54318] -> [.160.174.106.32][..162] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [.124.53.196.176][54318] -> [..103.248.22.47][..162]
detected: [....15] [ip4][..udp] [.124.53.196.176][54318] -> [..103.248.22.47][..162] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [.113.19.156.111][54318] -> [.135.201.124.55][..162] [SNMP][Unknown][Network][Acceptable]
DAEMON-EVENT: [Processed: 62 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 15|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 10]
new: [....16] [ip4][..udp] [...10.231.2.134][..161] -> [....10.72.247.4][61088]
detected: [....16] [ip4][..udp] [...10.231.2.134][..161] -> [....10.72.247.4][61088] [SNMP][Unknown][Network][Acceptable]
RISK: Error Code, Unidirectional Traffic
idle: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [.113.19.156.111][54318] -> [.135.201.124.55][..162] [SNMP][Unknown][Network][Acceptable]
idle: [....15] [ip4][..udp] [.124.53.196.176][54318] -> [..103.248.22.47][..162] [SNMP][Unknown][Network][Acceptable]
idle: [....14] [ip4][..udp] [..205.83.36.228][54318] -> [.160.174.106.32][..162] [SNMP][Unknown][Network][Acceptable]
new: [....17] [ip4][..udp] [.....10.99.8.88][43242] -> [.10.100.253.146][..161]
detected: [....17] [ip4][..udp] [.....10.99.8.88][43242] -> [.10.100.253.146][..161] [SNMP][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [.....10.99.8.88][43242] -> [.10.100.253.146][..161] [SNMP][Unknown][Network][Acceptable]
RISK: Error Code
idle: [....17] [ip4][..udp] [.....10.99.8.88][43242] -> [.10.100.253.146][..161] [SNMP][Unknown][Network][Acceptable]
RISK: Error Code
idle: [....16] [ip4][..udp] [...10.231.2.134][..161] -> [....10.72.247.4][61088] [SNMP][Unknown][Network][Acceptable]
RISK: Error Code
DAEMON-EVENT: shutdown
|