diff options
Diffstat (limited to '')
-rw-r--r-- | test/log-samples/sample-c15acd32844669d23d0cbc88ec548129ed2c592e.txt | 35 |
1 files changed, 26 insertions, 9 deletions
diff --git a/test/log-samples/sample-c15acd32844669d23d0cbc88ec548129ed2c592e.txt b/test/log-samples/sample-c15acd32844669d23d0cbc88ec548129ed2c592e.txt index a68d490..ae28119 100644 --- a/test/log-samples/sample-c15acd32844669d23d0cbc88ec548129ed2c592e.txt +++ b/test/log-samples/sample-c15acd32844669d23d0cbc88ec548129ed2c592e.txt @@ -1,8 +1,21 @@ Jul 14 14:31:06 linjenkins3 kernel: [31809412.513897] [UFW BLOCK] IN=eth0 OUT= MAC=40:40:2e:9a:ad:92:c4:71:fe:f1:b9:7f:08:00 SRC=69.60.116.202 DST=173.203.237.224 LEN=44 TOS=0x00 PREC=0x00 TTL=29 ID=15852 PROTO=TCP SPT=43998 DPT=3389 WINDOW=3072 RES=0x00 SYN URGP=0 - key 37:68 ^-----------------------------^ 31809412.513897] [UFW BLOCK] IN + key 37:37 ^ + num 37:52 ^-------------^ 31809412.513897 + val 37:52 ^-------------^ 31809412.513897 + grp 37:52 ^-------------^ 31809412.513897 + val 37:52 ^-------------^ 31809412.513897 +pair 37:52 ^-------------^ 31809412.513897 + key 55:55 ^ + sym 55:58 ^-^ UFW + sym 59:64 ^---^ BLOCK + val 55:64 ^-------^ UFW BLOCK + grp 55:64 ^-------^ UFW BLOCK + val 55:64 ^-------^ UFW BLOCK +pair 55:64 ^-------^ UFW BLOCK + key 66:68 ^^ IN sym 69:73 ^--^ eth0 val 69:73 ^--^ eth0 -pair 37:73 ^----------------------------------^ 31809412.513897] [UFW BLOCK] IN=eth0 +pair 66:73 ^-----^ IN=eth0 key 74:77 ^-^ OUT quot 78:78 ^ val 78:78 ^ @@ -57,18 +70,22 @@ pair 225:233 pair 234:245 ^---------^ WINDOW=3072 key 246:249 ^-^ RES hex 250:254 ^--^ 0x00 -wspc 254:255 ^ - sym 255:258 ^-^ SYN - val 250:258 ^------^ 0x00 SYN -pair 246:258 ^----------^ RES=0x00 SYN + val 250:254 ^--^ 0x00 +pair 246:254 ^------^ RES=0x00 key 259:263 ^--^ URGP num 264:265 ^ 0 val 264:265 ^ 0 pair 259:265 ^----^ URGP=0 msg :[31809412.513897] [UFW BLOCK] IN=eth0 OUT= MAC=40:40:2e:9a:ad:92:c4:71:fe:f1:b9:7f:08:00 SRC=69.60.116.202 DST=173.203.237.224 LEN=44 TOS=0x00 PREC=0x00 TTL=29 ID=15852 PROTO=TCP SPT=43998 DPT=3389 WINDOW=3072 RES=0x00 SYN URGP=0 -format :[31809412.513897] [UFW BLOCK] IN=# OUT=# MAC=# SRC=# DST=# LEN=# TOS=# PREC=# TTL=# ID=# PROTO=# SPT=# DPT=# WINDOW=# RES=# URGP=# +format :[#] [#] IN=# OUT=# MAC=# SRC=# DST=# LEN=# TOS=# PREC=# TTL=# ID=# PROTO=# SPT=# DPT=# WINDOW=# RES=# SYN URGP=# { - "31809412.513897] [UFW BLOCK] IN": "eth0", + "col_0": [ + 31809412.513897 + ], + "col_1": [ + "UFW BLOCK" + ], + "IN": "eth0", "OUT": "", "MAC": "40:40:2e:9a:ad:92:c4:71:fe:f1:b9:7f:08:00", "SRC": "69.60.116.202", @@ -82,6 +99,6 @@ format :[31809412.513897] [UFW BLOCK] IN=# OUT=# MAC=# SRC=# DST=# LEN=# TO "SPT": 43998, "DPT": 3389, "WINDOW": 3072, - "RES": "0x00 SYN", + "RES": "0x00", "URGP": 0 } |