aboutsummaryrefslogtreecommitdiff
path: root/test/results/monitoring/signal_videocall_multiparty.pcapng.out
blob: f42cf3e7bf9163751de95a69fd3f008e0678c248 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29

00637{"daemon_event_id":1,"daemon_event_name":"init","thread_id":0,"packet_id":0,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","version":"1.7.0","ndpi_version":"4.13.0-5086-e946f49","ndpi_api_version":11807,"size_per_flow":1408,"max-flows-per-thread":32768,"max-idle-flows-per-thread":1024,"reader-thread-count":1,"flow-scan-interval":10000000,"generic-max-idle-time":600000000,"icmp-max-idle-time":120000000,"udp-max-idle-time":180000000,"tcp-max-idle-time":7560000000,"max-packets-per-flow-to-send":5,"max-packets-per-flow-to-process":32,"max-packets-per-flow-to-analyse":32,"global_ts_usec":0}
00858{"daemon_event_id":4,"daemon_event_name":"status","thread_id":0,"packet_id":1,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","version":"1.7.0","ndpi_version":"4.13.0-5086-e946f49","ndpi_api_version":11807,"size_per_flow":1408,"packets-captured":1,"packets-processed":0,"pfring_active":false,"pfring_recv":0,"pfring_drop":0,"pfring_shunt":0,"total-skipped-flows":0,"total-l4-payload-len":0,"total-not-detected-flows":0,"total-guessed-flows":0,"total-detected-flows":0,"total-detection-updates":0,"total-updates":0,"current-active-flows":0,"total-active-flows":0,"total-idle-flows":0,"total-compressions":0,"total-compression-diff":0,"current-compression-diff":0,"global-alloc-count":0,"global-free-count":0,"global-alloc-bytes":0,"global-free-bytes":0,"total-events-serialized":2,"global_ts_usec":1733247515941563}
00805{"flow_event_id":1,"flow_event_name":"new","thread_id":0,"packet_id":1,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_src_packets_processed":1,"flow_dst_packets_processed":0,"flow_first_seen":1733247515941563,"flow_src_last_pkt_time":1733247515941563,"flow_dst_last_pkt_time":1733247515941563,"flow_idle_time":200000000,"flow_src_min_l4_payload_len":100,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":100,"flow_dst_max_l4_payload_len":0,"flow_src_tot_l4_payload_len":100,"flow_dst_tot_l4_payload_len":0,"midstream":0,"thread_ts_usec":1733247515941563,"l3_proto":"ip4","src_ip":"192.168.1.117","dst_ip":"35.207.67.68","src_port":59446,"dst_port":10000,"l4_proto":"udp","flow_datalink":1,"flow_max_packets":5}
00676{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":1,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_packet_id":1,"flow_src_last_pkt_time":1733247515941563,"flow_dst_last_pkt_time":1733247515941563,"flow_idle_time":200000000,"pkt_datalink":1,"pkt_caplen":142,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":142,"pkt_l4_len":108,"thread_ts_usec":1733247515941563,"pkt":"ILAB4IZiSKRyNpegCABFAACAiykAAIARhhPAqAF1I89DROg2JxAAbAzQAAEAUCESpEI1NEg2QU95UTMyRVAABgAJMWFMNTpRTVhDAAAAwFcABAABAAqAKgAIF\/4CYTZoiVwAJQAAACQABG5\/Hv8ACAAUcpt5C\/\/iaNePSUPaFGAUyh6\/HmKAKAAEM0IRaA=="}
01165{"flow_event_id":7,"flow_event_name":"detected","thread_id":0,"packet_id":1,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_src_packets_processed":1,"flow_dst_packets_processed":0,"flow_first_seen":1733247515941563,"flow_src_last_pkt_time":1733247515941563,"flow_dst_last_pkt_time":1733247515941563,"flow_idle_time":200000000,"flow_src_min_l4_payload_len":100,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":100,"flow_dst_max_l4_payload_len":0,"flow_src_tot_l4_payload_len":100,"flow_dst_tot_l4_payload_len":0,"midstream":0,"thread_ts_usec":1733247515941563,"l3_proto":"ip4","src_ip":"192.168.1.117","dst_ip":"35.207.67.68","src_port":59446,"dst_port":10000,"l4_proto":"udp","ndpi": {"flow_risk": {"5": {"risk":"Known Proto on Non Std Port","severity":"Medium","risk_score": {"total":160,"client":140,"server":20}}},"confidence": {"6":"DPI"},"proto":"STUN","proto_id":"78","proto_by_ip":"GoogleCloud","proto_by_ip_id":284,"encrypted":0,"breed":"Acceptable","category_id":14,"category":"Network","hostname":"","domainame":"","stun": {"multimedia_flow_types":"Unknown"}}}
00674{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":2,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_packet_id":2,"flow_src_last_pkt_time":1733247515941563,"flow_dst_last_pkt_time":1733247515974447,"flow_idle_time":200000000,"pkt_datalink":1,"pkt_caplen":142,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":142,"pkt_l4_len":108,"thread_ts_usec":1733247515974447,"pkt":"SKRyNpegILAB4IZiCABFAACARupAADYR1FIjz0NEwKgBdScQ6DYAbFcqAQEAUCESpEI1NEg2QU95UTMyRVAABgAJUU1YQzoxYUw1AAAAwFcABAABAAqAKgAIF\/4CYTZoiVwAJQAAACQABG5\/Hv8ACAAUEutlNl3kd0Dorqs\/VUiSQQTSjTmAKAAEAsj3vw=="}
00580{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":3,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_packet_id":3,"flow_src_last_pkt_time":1733247515990390,"flow_dst_last_pkt_time":1733247515974447,"flow_idle_time":200000000,"pkt_datalink":1,"pkt_caplen":78,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":78,"pkt_l4_len":44,"thread_ts_usec":1733247515990390,"pkt":"ILAB4IZiSKRyNpegCABFAABAiy8AAIARhk3AqAF1I89DROg2JxAALMvlgGUAAQAAAAEAAAABdLrycx3kw9wWNnvZW6iDkwxnchqicp+h"}
01180{"flow_event_id":8,"flow_event_name":"detection-update","thread_id":0,"packet_id":3,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_src_packets_processed":2,"flow_dst_packets_processed":1,"flow_first_seen":1733247515941563,"flow_src_last_pkt_time":1733247515990390,"flow_dst_last_pkt_time":1733247515974447,"flow_idle_time":200000000,"flow_src_min_l4_payload_len":36,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":100,"flow_dst_max_l4_payload_len":100,"flow_src_tot_l4_payload_len":136,"flow_dst_tot_l4_payload_len":100,"midstream":0,"thread_ts_usec":1733247515990390,"l3_proto":"ip4","src_ip":"192.168.1.117","dst_ip":"35.207.67.68","src_port":59446,"dst_port":10000,"l4_proto":"udp","ndpi": {"flow_risk": {"5": {"risk":"Known Proto on Non Std Port","severity":"Medium","risk_score": {"total":160,"client":140,"server":20}}},"confidence": {"6":"DPI"},"proto":"STUN.RTP","proto_id":"78.87","proto_by_ip":"GoogleCloud","proto_by_ip_id":284,"encrypted":0,"breed":"Acceptable","category_id":1,"category":"Media","hostname":"","domainame":"","stun": {"multimedia_flow_types":"Unknown"}}}
00673{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":4,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_packet_id":4,"flow_src_last_pkt_time":1733247515990690,"flow_dst_last_pkt_time":1733247515974447,"flow_idle_time":200000000,"pkt_datalink":1,"pkt_caplen":142,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":142,"pkt_l4_len":108,"thread_ts_usec":1733247515990690,"pkt":"ILAB4IZiSKRyNpegCABFAACAizAAAIARhgzAqAF1I89DROg2JxAAbHFfAAEAUCESpEJQOWY2V2ZIcjVJMUgABgAJMWFMNTpRTVhDAAAAwFcABAABAAqAKgAIF\/4CYTZoiVwAJQAAACQABG5\/Hv8ACAAUbiAQ2EbSUNLBr92MPhsCUZvHJgiAKAAEYmFHKA=="}
00675{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":5,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_packet_id":5,"flow_src_last_pkt_time":1733247515990690,"flow_dst_last_pkt_time":1733247516018904,"flow_idle_time":200000000,"pkt_datalink":1,"pkt_caplen":142,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":142,"pkt_l4_len":108,"thread_ts_usec":1733247516018904,"pkt":"SKRyNpegILAB4IZiCABFAACARutAADYR1FEjz0NEwKgBdScQ6DYAbH1\/AQEAUCESpEJQOWY2V2ZIcjVJMUgABgAJUU1YQzoxYUw1AAAAwFcABAABAAqAKgAIF\/4CYTZoiVwAJQAAACQABG5\/Hv8ACAAURXtV3qkD7dZOCPsPy8U8foLxJ\/uAKAAEXGaXzQ=="}
01188{"flow_event_id":8,"flow_event_name":"detection-update","thread_id":0,"packet_id":5,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_src_packets_processed":3,"flow_dst_packets_processed":2,"flow_first_seen":1733247515941563,"flow_src_last_pkt_time":1733247515990690,"flow_dst_last_pkt_time":1733247516018904,"flow_idle_time":200000000,"flow_src_min_l4_payload_len":36,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":100,"flow_dst_max_l4_payload_len":100,"flow_src_tot_l4_payload_len":236,"flow_dst_tot_l4_payload_len":200,"midstream":0,"thread_ts_usec":1733247516018904,"l3_proto":"ip4","src_ip":"192.168.1.117","dst_ip":"35.207.67.68","src_port":59446,"dst_port":10000,"l4_proto":"udp","ndpi": {"flow_risk": {"5": {"risk":"Known Proto on Non Std Port","severity":"Medium","risk_score": {"total":160,"client":140,"server":20}}},"confidence": {"6":"DPI"},"proto":"STUN.SignalVoip","proto_id":"78.269","proto_by_ip":"GoogleCloud","proto_by_ip_id":284,"encrypted":0,"breed":"Acceptable","category_id":10,"category":"VoIP","hostname":"","domainame":"","stun": {"multimedia_flow_types":"Unknown"}}}
02375{"flow_event_id":5,"flow_event_name":"analyse","thread_id":0,"packet_id":32,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_state":"finished","flow_src_packets_processed":21,"flow_dst_packets_processed":11,"flow_first_seen":1733247515941563,"flow_src_last_pkt_time":1733247521000514,"flow_dst_last_pkt_time":1733247521314176,"flow_idle_time":200000000,"flow_src_min_l4_payload_len":28,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":100,"flow_dst_max_l4_payload_len":100,"flow_src_tot_l4_payload_len":1239,"flow_dst_tot_l4_payload_len":830,"midstream":0,"thread_ts_usec":1733247521314176,"l3_proto":"ip4","src_ip":"192.168.1.117","dst_ip":"35.207.67.68","src_port":59446,"dst_port":10000,"l4_proto":"udp","flow_datalink":1,"flow_max_packets":5,"data_analysis": {"iat": {"min":300,"avg":336502.1,"max":1071142,"stddev":395522.0,"var":156437676032.0,"ent":3.9,"data": [32884,48827,300,44457,50533,44084,223767,385,25289,800734,1030880,20622,201493,673,800784,981685,21273,210614,756,118515,13444,1043663,879515,925,1071142,1007160,651,274470,390884,400116,691039]},"pktlen": {"min":56,"avg":92.7,"max":128,"stddev":28.2,"var":793.4,"ent":4.9,"data": [128,128,64,128,128,128,128,83,64,64,128,74,128,83,64,128,74,128,83,64,76,56,74,83,64,74,83,64,128,128,64,74]},"bins": {"c_to_s": [1,14,0,6,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"s_to_c": [0,5,0,6,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]},"directions": [0,1,0,0,1,0,1,0,0,0,0,1,1,0,0,0,1,1,0,0,0,0,1,0,0,1,0,0,0,1,0,1],"entropies": [5.630286694,5.730687141,5.077819824,5.651809216,5.741195202,5.841376781,5.766547680,5.757154465,5.171569824,5.046569824,5.753524780,5.387711525,5.789052010,5.652456284,5.077819824,5.626456738,5.428714275,5.731467724,5.790346146,5.060848236,5.754378796,5.151015759,5.367309570,5.684864521,5.159774780,5.404538155,5.853539467,5.171569824,5.637804031,5.766547680,5.049053192,5.377511024]},"ndpi": {"flow_risk": {"5": {"risk":"Known Proto on Non Std Port","severity":"Medium","risk_score": {"total":160,"client":140,"server":20}}},"confidence": {"6":"DPI"},"proto":"STUN.SignalVoip","proto_id":"78.269","proto_by_ip":"GoogleCloud","proto_by_ip_id":284,"encrypted":0,"breed":"Acceptable","category_id":10,"category":"VoIP"}}
01157{"flow_event_id":3,"flow_event_name":"idle","thread_id":0,"packet_id":260,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","flow_id":1,"flow_state":"finished","flow_src_packets_processed":192,"flow_dst_packets_processed":68,"flow_first_seen":1733247515941563,"flow_src_last_pkt_time":1733247533917504,"flow_dst_last_pkt_time":1733247533913543,"flow_idle_time":200000000,"flow_src_min_l4_payload_len":28,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":1211,"flow_dst_max_l4_payload_len":1184,"flow_src_tot_l4_payload_len":67701,"flow_dst_tot_l4_payload_len":18298,"midstream":0,"thread_ts_usec":1733247533917504,"l3_proto":"ip4","src_ip":"192.168.1.117","dst_ip":"35.207.67.68","src_port":59446,"dst_port":10000,"l4_proto":"udp","flow_datalink":1,"flow_max_packets":5,"ndpi": {"flow_risk": {"5": {"risk":"Known Proto on Non Std Port","severity":"Medium","risk_score": {"total":160,"client":140,"server":20}}},"confidence": {"6":"DPI"},"proto":"STUN.SignalVoip","proto_id":"78.269","proto_by_ip":"GoogleCloud","proto_by_ip_id":284,"encrypted":0,"breed":"Acceptable","category_id":10,"category":"VoIP"}}
00871{"daemon_event_id":3,"daemon_event_name":"shutdown","thread_id":0,"packet_id":260,"source":"cfgs\/monitoring\/pcap\/signal_videocall_multiparty.pcapng","alias":"nDPId-test","version":"1.7.0","ndpi_version":"4.13.0-5086-e946f49","ndpi_api_version":11807,"size_per_flow":1408,"packets-captured":260,"packets-processed":260,"pfring_active":false,"pfring_recv":0,"pfring_drop":0,"pfring_shunt":0,"total-skipped-flows":0,"total-l4-payload-len":85999,"total-not-detected-flows":0,"total-guessed-flows":0,"total-detected-flows":1,"total-detection-updates":2,"total-updates":0,"current-active-flows":0,"total-active-flows":1,"total-idle-flows":1,"total-compressions":0,"total-compression-diff":0,"current-compression-diff":0,"global-alloc-count":0,"global-free-count":0,"global-alloc-bytes":0,"global-free-bytes":0,"total-events-serialized":14,"global_ts_usec":1733247533917504}
~~~~~~~~~~~~~~~~~~~~ SUMMARY ~~~~~~~~~~~~~~~~~~~~
~~ packets captured/processed: 260/260
~~ skipped flows.............: 0
~~ total layer4 data length..: 85999 bytes
~~ total detected protocols..: 1
~~ total active/idle flows...: 1/1
~~ total timeout flows.......: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~ total memory allocated....: 7492771 bytes
~~ total memory freed........: 7492771 bytes
~~ total allocations/frees...: 126129/126129
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~ json message min len.......: 585 chars
~~ json message max len.......: 2380 chars
~~ json message avg len.......: 1407 chars
Powered by cgit, Themed by Ted Yin.