test/results/flow-info/tinc.pcap.out


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38

     DAEMON-EVENT: init
     DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
     DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
              new: [.....1] [ip4][..tcp] [.131.114.168.27][59244] -> [.185.83.218.112][55655] 
              new: [.....2] [ip4][..tcp] [.131.114.168.27][49290] -> [.185.83.218.112][55656] 
         detected: [.....1] [ip4][..tcp] [.131.114.168.27][59244] -> [.185.83.218.112][55655] [TINC][VPN][Acceptable]
                   RISK: Known Proto on Non Std Port
         detected: [.....2] [ip4][..tcp] [.131.114.168.27][49290] -> [.185.83.218.112][55656] [TINC][VPN][Acceptable]
                   RISK: Known Proto on Non Std Port
              new: [.....3] [ip4][..udp] [.131.114.168.27][55655] -> [.185.83.218.112][55655] 
         detected: [.....3] [ip4][..udp] [.131.114.168.27][55655] -> [.185.83.218.112][55655] [TINC][VPN][Acceptable]
                   RISK: Known Proto on Non Std Port
              new: [.....4] [ip4][..udp] [.185.83.218.112][55656] -> [.131.114.168.27][55656] 
         detected: [.....4] [ip4][..udp] [.185.83.218.112][55656] -> [.131.114.168.27][55656] [TINC][VPN][Acceptable]
                   RISK: Known Proto on Non Std Port
          analyse: [.....3] [ip4][..udp] [.131.114.168.27][55655] -> [.185.83.218.112][55655] [TINC][VPN][Acceptable]
                   [min|max|avg|stddev]
                   [IAT(flow)...:    0.000|   1.070|   0.172|   0.377]
                   [IAT(c->s)...:    0.000|   1.070|   0.198|   0.406][IAT(s->c)...:    0.000|   1.024|   0.144|   0.342]
                   [PKTLEN(c->s):  190.000|1510.000|1168.400| 444.700][PKTLEN(s->c):  190.000|1502.000|1127.600| 455.700]
                   [BINS(c->s)..: 0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,1,0,2,0,0,2,6,0,0]
                   [BINS(s->c)..: 0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,1,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,1,0,2,0,0,0,6,0,0]
          analyse: [.....4] [ip4][..udp] [.185.83.218.112][55656] -> [.131.114.168.27][55656] [TINC][VPN][Acceptable]
                   [min|max|avg|stddev]
                   [IAT(flow)...:    0.000|   2.412|   0.291|   0.559]
                   [IAT(c->s)...:    0.000|   2.412|   0.412|   0.745][IAT(s->c)...:    0.000|   1.048|   0.224|   0.408]
                   [PKTLEN(c->s):  190.000|1486.000| 954.000| 431.400][PKTLEN(s->c):  118.000|1494.000|1067.600| 456.000]
                   [BINS(c->s)..: 0,0,0,0,1,0,0,0,0,1,0,0,0,0,0,1,0,0,0,1,0,0,1,0,0,0,0,0,1,0,0,0,1,0,0,0,0,0,0,1,0,2,1,0,0,1,0,0]
                   [BINS(s->c)..: 0,0,1,0,1,0,0,0,0,1,0,0,0,0,0,1,0,0,0,1,0,1,0,0,0,0,0,0,1,0,0,1,0,0,0,0,0,0,1,2,2,2,0,0,2,3,0,0]
              end: [.....2] [ip4][..tcp] [.131.114.168.27][49290] -> [.185.83.218.112][55656] [TINC][VPN][Acceptable]
                   RISK: Known Proto on Non Std Port
             idle: [.....3] [ip4][..udp] [.131.114.168.27][55655] -> [.185.83.218.112][55655] [TINC][VPN][Acceptable]
                   RISK: Known Proto on Non Std Port
             idle: [.....4] [ip4][..udp] [.185.83.218.112][55656] -> [.131.114.168.27][55656] [TINC][VPN][Acceptable]
                   RISK: Known Proto on Non Std Port
              end: [.....1] [ip4][..tcp] [.131.114.168.27][59244] -> [.185.83.218.112][55655] [TINC][VPN][Acceptable]
                   RISK: Known Proto on Non Std Port
     DAEMON-EVENT: shutdown