⚲
Project
General
Profile
Sign in
Register
Home
Projects
Help
Search
:
Suricata
All Projects
Suricata
Overview
Activity
Roadmap
Issues
Wiki
Files
Download (32.1 KB)
Bug #2355
» eve.json
Sascha Steinbiss
, 06/02/2018 11:31 AM
{
"timestamp"
:
"2018-06-02T07:17:01.000979-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
8
,
"capture"
:{
"kernel_packets"
:
4
,
"kernel_drops"
:
0
,
"bypassed"
:
107614703754368
},
"decoder"
:{
"pkts"
:
4
,
"bytes"
:
362
,
"invalid"
:
0
,
"ipv4"
:
4
,
"ipv6"
:
0
,
"ethernet"
:
4
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
4
,
"udp"
:
0
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
90
,
"max_pkt_size"
:
114
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
1
,
"udp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7314616
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
0
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
0
,
"synack"
:
0
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
0
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
0
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
0
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
0
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:17:08.000894-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
15
,
"capture"
:{
"kernel_packets"
:
49
,
"kernel_drops"
:
0
,
"bypassed"
:
107614703635416
},
"decoder"
:{
"pkts"
:
64
,
"bytes"
:
7758
,
"invalid"
:
1
,
"ipv4"
:
64
,
"ipv6"
:
0
,
"ethernet"
:
64
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
63
,
"udp"
:
0
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
121
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
1
,
"udp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7314616
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
0
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
0
,
"synack"
:
0
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
0
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
0
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
0
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
0
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:17:08.728380-0400"
,
"flow_id"
:
1093217297898812
,
"in_iface"
:
"enp0s3"
,
"event_type"
:
"dns"
,
"src_ip"
:
"10.0.2.15"
,
"src_port"
:
46879
,
"dest_ip"
:
"192.168.1.1"
,
"dest_port"
:
53
,
"proto"
:
"UDP"
,
"dns"
:{
"type"
:
"query"
,
"id"
:
33771
,
"rrname"
:
"de.indeed.com"
,
"rrtype"
:
"A"
,
"tx_id"
:
0
}}
{
"timestamp"
:
"2018-06-02T07:17:08.728486-0400"
,
"flow_id"
:
1093217297898812
,
"in_iface"
:
"enp0s3"
,
"event_type"
:
"dns"
,
"src_ip"
:
"10.0.2.15"
,
"src_port"
:
46879
,
"dest_ip"
:
"192.168.1.1"
,
"dest_port"
:
53
,
"proto"
:
"UDP"
,
"dns"
:{
"type"
:
"query"
,
"id"
:
44473
,
"rrname"
:
"de.indeed.com"
,
"rrtype"
:
"AAAA"
,
"tx_id"
:
1
}}
{
"timestamp"
:
"2018-06-02T07:17:08.799186-0400"
,
"flow_id"
:
1093217297898812
,
"in_iface"
:
"enp0s3"
,
"event_type"
:
"dns"
,
"src_ip"
:
"192.168.1.1"
,
"src_port"
:
53
,
"dest_ip"
:
"10.0.2.15"
,
"dest_port"
:
46879
,
"proto"
:
"UDP"
,
"dns"
:{
"type"
:
"answer"
,
"id"
:
44473
,
"flags"
:
"8180"
,
"qr"
:
true
,
"rd"
:
true
,
"ra"
:
true
,
"rcode"
:
"NOERROR"
,
"rrname"
:
"de.indeed.com"
,
"rrtype"
:
"CNAME"
,
"ttl"
:
7200
,
"rdata"
:
"europe.dyn.indeed.com"
}}
{
"timestamp"
:
"2018-06-02T07:17:08.799186-0400"
,
"flow_id"
:
1093217297898812
,
"in_iface"
:
"enp0s3"
,
"event_type"
:
"dns"
,
"src_ip"
:
"192.168.1.1"
,
"src_port"
:
53
,
"dest_ip"
:
"10.0.2.15"
,
"dest_port"
:
46879
,
"proto"
:
"UDP"
,
"dns"
:{
"type"
:
"answer"
,
"id"
:
44473
,
"flags"
:
"8180"
,
"qr"
:
true
,
"rd"
:
true
,
"ra"
:
true
,
"rcode"
:
"NOERROR"
,
"rrname"
:
"indeed.com"
,
"rrtype"
:
"SOA"
,
"ttl"
:
1800
}}
{
"timestamp"
:
"2018-06-02T07:17:08.835762-0400"
,
"flow_id"
:
1093217297898812
,
"in_iface"
:
"enp0s3"
,
"event_type"
:
"dns"
,
"src_ip"
:
"192.168.1.1"
,
"src_port"
:
53
,
"dest_ip"
:
"10.0.2.15"
,
"dest_port"
:
46879
,
"proto"
:
"UDP"
,
"dns"
:{
"type"
:
"answer"
,
"id"
:
33771
,
"flags"
:
"8180"
,
"qr"
:
true
,
"rd"
:
true
,
"ra"
:
true
,
"rcode"
:
"NOERROR"
,
"rrname"
:
"de.indeed.com"
,
"rrtype"
:
"CNAME"
,
"ttl"
:
7200
,
"rdata"
:
"europe.dyn.indeed.com"
}}
{
"timestamp"
:
"2018-06-02T07:17:08.835762-0400"
,
"flow_id"
:
1093217297898812
,
"in_iface"
:
"enp0s3"
,
"event_type"
:
"dns"
,
"src_ip"
:
"192.168.1.1"
,
"src_port"
:
53
,
"dest_ip"
:
"10.0.2.15"
,
"dest_port"
:
46879
,
"proto"
:
"UDP"
,
"dns"
:{
"type"
:
"answer"
,
"id"
:
33771
,
"flags"
:
"8180"
,
"qr"
:
true
,
"rd"
:
true
,
"ra"
:
true
,
"rcode"
:
"NOERROR"
,
"rrname"
:
"europe.dyn.indeed.com"
,
"rrtype"
:
"A"
,
"ttl"
:
30
,
"rdata"
:
"162.13.248.104"
}}
{
"timestamp"
:
"2018-06-02T07:17:15.000769-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
22
,
"capture"
:{
"kernel_packets"
:
242
,
"kernel_drops"
:
0
,
"bypassed"
:
107614703066240
},
"decoder"
:{
"pkts"
:
242
,
"bytes"
:
66028
,
"invalid"
:
28
,
"ipv4"
:
242
,
"ipv6"
:
0
,
"ethernet"
:
242
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
210
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
272
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7315240
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:17:22.000185-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
29
,
"capture"
:{
"kernel_packets"
:
248
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702955648
},
"decoder"
:{
"pkts"
:
248
,
"bytes"
:
67910
,
"invalid"
:
29
,
"ipv4"
:
248
,
"ipv6"
:
0
,
"ethernet"
:
248
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
215
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
273
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7315240
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:17:29.000790-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
36
,
"capture"
:{
"kernel_packets"
:
254
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702974080
},
"decoder"
:{
"pkts"
:
254
,
"bytes"
:
69792
,
"invalid"
:
30
,
"ipv4"
:
254
,
"ipv6"
:
0
,
"ethernet"
:
254
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
220
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
274
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7315240
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:17:36.000675-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
43
,
"capture"
:{
"kernel_packets"
:
260
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702992512
},
"decoder"
:{
"pkts"
:
260
,
"bytes"
:
71674
,
"invalid"
:
31
,
"ipv4"
:
260
,
"ipv6"
:
0
,
"ethernet"
:
260
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
225
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
275
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7315240
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:17:43.001317-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
50
,
"capture"
:{
"kernel_packets"
:
266
,
"kernel_drops"
:
0
,
"bypassed"
:
107614703010944
},
"decoder"
:{
"pkts"
:
266
,
"bytes"
:
73556
,
"invalid"
:
32
,
"ipv4"
:
266
,
"ipv6"
:
0
,
"ethernet"
:
266
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
230
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
276
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7315240
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:17:50.000432-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
57
,
"capture"
:{
"kernel_packets"
:
272
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702900352
},
"decoder"
:{
"pkts"
:
272
,
"bytes"
:
75438
,
"invalid"
:
33
,
"ipv4"
:
272
,
"ipv6"
:
0
,
"ethernet"
:
272
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
235
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
277
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7315240
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:17:57.000963-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
64
,
"capture"
:{
"kernel_packets"
:
278
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702918784
},
"decoder"
:{
"pkts"
:
278
,
"bytes"
:
77320
,
"invalid"
:
34
,
"ipv4"
:
278
,
"ipv6"
:
0
,
"ethernet"
:
278
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
240
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
278
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7315240
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
1
,
"flows_notimeout"
:
1
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65535
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
1
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:18:04.000407-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
71
,
"capture"
:{
"kernel_packets"
:
284
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702937216
},
"decoder"
:{
"pkts"
:
284
,
"bytes"
:
79202
,
"invalid"
:
35
,
"ipv4"
:
284
,
"ipv6"
:
0
,
"ethernet"
:
284
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
245
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
278
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7315240
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:18:11.001137-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
78
,
"capture"
:{
"kernel_packets"
:
290
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702826624
},
"decoder"
:{
"pkts"
:
290
,
"bytes"
:
81084
,
"invalid"
:
36
,
"ipv4"
:
290
,
"ipv6"
:
0
,
"ethernet"
:
290
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
250
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
279
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7315240
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
0
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
1
,
"flows_notimeout"
:
1
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65535
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
1
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:18:11.003025-0400"
,
"flow_id"
:
369807366342290
,
"event_type"
:
"flow"
,
"src_ip"
:
"10.0.2.15"
,
"src_port"
:
45074
,
"dest_ip"
:
"162.13.248.104"
,
"dest_port"
:
443
,
"proto"
:
"TCP"
,
"app_proto"
:
"tls"
,
"flow"
:{
"pkts_toserver"
:
34
,
"pkts_toclient"
:
10
,
"bytes_toserver"
:
2440
,
"bytes_toclient"
:
4837
,
"start"
:
"2018-06-02T07:17:08.837266-0400"
,
"end"
:
"2018-06-02T07:17:09.768856-0400"
,
"age"
:
1
,
"state"
:
"closed"
,
"reason"
:
"timeout"
,
"alerted"
:
false
},
"tcp"
:{
"tcp_flags"
:
"1b"
,
"tcp_flags_ts"
:
"1b"
,
"tcp_flags_tc"
:
"1b"
,
"syn"
:
true
,
"fin"
:
true
,
"psh"
:
true
,
"ack"
:
true
,
"state"
:
"closed"
}}
{
"timestamp"
:
"2018-06-02T07:18:18.000671-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
85
,
"capture"
:{
"kernel_packets"
:
298
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702851200
},
"decoder"
:{
"pkts"
:
298
,
"bytes"
:
83684
,
"invalid"
:
37
,
"ipv4"
:
298
,
"ipv6"
:
0
,
"ethernet"
:
298
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
257
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
280
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7314928
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
1
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:18:25.001560-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
92
,
"capture"
:{
"kernel_packets"
:
304
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702869632
},
"decoder"
:{
"pkts"
:
304
,
"bytes"
:
85566
,
"invalid"
:
38
,
"ipv4"
:
304
,
"ipv6"
:
0
,
"ethernet"
:
304
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
262
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
281
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7314928
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
1
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
261
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
{
"timestamp"
:
"2018-06-02T07:18:29.577387-0400"
,
"flow_id"
:
616005628318501
,
"event_type"
:
"flow"
,
"src_ip"
:
"10.0.2.2"
,
"src_port"
:
49431
,
"dest_ip"
:
"10.0.2.15"
,
"dest_port"
:
22
,
"proto"
:
"TCP"
,
"flow"
:{
"pkts_toserver"
:
148
,
"pkts_toclient"
:
77
,
"bytes_toserver"
:
10570
,
"bytes_toclient"
:
10410
,
"start"
:
"2018-06-02T07:16:55.381733-0400"
,
"end"
:
"2018-06-02T07:18:28.320998-0400"
,
"age"
:
93
,
"state"
:
"new"
,
"reason"
:
"shutdown"
,
"alerted"
:
false
},
"tcp"
:{
"tcp_flags"
:
"00"
,
"tcp_flags_ts"
:
"00"
,
"tcp_flags_tc"
:
"00"
}}
{
"timestamp"
:
"2018-06-02T07:18:29.577512-0400"
,
"flow_id"
:
1093217297898812
,
"event_type"
:
"flow"
,
"src_ip"
:
"10.0.2.15"
,
"src_port"
:
46879
,
"dest_ip"
:
"192.168.1.1"
,
"dest_port"
:
53
,
"proto"
:
"UDP"
,
"app_proto"
:
"dns"
,
"flow"
:{
"pkts_toserver"
:
2
,
"pkts_toclient"
:
2
,
"bytes_toserver"
:
146
,
"bytes_toclient"
:
277
,
"start"
:
"2018-06-02T07:17:08.728380-0400"
,
"end"
:
"2018-06-02T07:17:08.835762-0400"
,
"age"
:
0
,
"state"
:
"established"
,
"reason"
:
"shutdown"
,
"alerted"
:
false
}}
{
"timestamp"
:
"2018-06-02T07:18:30.001866-0400"
,
"event_type"
:
"stats"
,
"stats"
:{
"uptime"
:
97
,
"capture"
:{
"kernel_packets"
:
310
,
"kernel_drops"
:
0
,
"bypassed"
:
107614702888064
},
"decoder"
:{
"pkts"
:
312
,
"bytes"
:
87726
,
"invalid"
:
39
,
"ipv4"
:
312
,
"ipv6"
:
0
,
"ethernet"
:
312
,
"raw"
:
0
,
"null"
:
0
,
"sll"
:
0
,
"tcp"
:
269
,
"udp"
:
4
,
"sctp"
:
0
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"ppp"
:
0
,
"pppoe"
:
0
,
"gre"
:
0
,
"vlan"
:
0
,
"vlan_qinq"
:
0
,
"ieee8021ah"
:
0
,
"teredo"
:
0
,
"ipv4_in_ipv6"
:
0
,
"ipv6_in_ipv6"
:
0
,
"mpls"
:
0
,
"avg_pkt_size"
:
281
,
"max_pkt_size"
:
1514
,
"erspan"
:
0
,
"ipraw"
:{
"invalid_ip_version"
:
0
},
"ltnull"
:{
"pkt_too_small"
:
0
,
"unsupported_type"
:
0
},
"dce"
:{
"pkt_too_small"
:
0
}},
"flow"
:{
"memcap"
:
0
,
"tcp"
:
2
,
"udp"
:
1
,
"icmpv4"
:
0
,
"icmpv6"
:
0
,
"spare"
:
10000
,
"emerg_mode_entered"
:
0
,
"emerg_mode_over"
:
0
,
"tcp_reuse"
:
0
,
"memuse"
:
7314928
},
"defrag"
:{
"ipv4"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"ipv6"
:{
"fragments"
:
0
,
"reassembled"
:
0
,
"timeouts"
:
0
},
"max_frag_hits"
:
0
},
"tcp"
:{
"sessions"
:
1
,
"ssn_memcap_drop"
:
0
,
"pseudo"
:
0
,
"pseudo_failed"
:
0
,
"invalid_checksum"
:
0
,
"no_flow"
:
0
,
"syn"
:
1
,
"synack"
:
1
,
"rst"
:
0
,
"midstream_pickups"
:
0
,
"segment_memcap_drop"
:
0
,
"stream_depth_reached"
:
0
,
"reassembly_gap"
:
1
,
"overlap"
:
0
,
"overlap_diff_data"
:
0
,
"insert_data_normal_fail"
:
0
,
"insert_data_overlap_fail"
:
0
,
"insert_list_fail"
:
0
,
"memuse"
:
573440
,
"reassembly_memuse"
:
81920
},
"detect"
:{
"engines"
:[{
"id"
:
0
,
"last_reload"
:
"2018-06-02T07:16:53.780443-0400"
,
"rules_loaded"
:
0
,
"rules_failed"
:
0
}],
"alert"
:
0
},
"app_layer"
:{
"flow"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"imap"
:
0
,
"msn"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"failed_tcp"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
1
,
"failed_udp"
:
0
},
"tx"
:{
"http"
:
0
,
"ftp"
:
0
,
"smtp"
:
0
,
"tls"
:
0
,
"ssh"
:
0
,
"smb"
:
0
,
"dcerpc_tcp"
:
0
,
"dns_tcp"
:
0
,
"ftp-data"
:
0
,
"dcerpc_udp"
:
0
,
"dns_udp"
:
3
},
"expectations"
:
0
},
"flow_mgr"
:{
"closed_pruned"
:
1
,
"new_pruned"
:
0
,
"est_pruned"
:
0
,
"bypassed_pruned"
:
0
,
"flows_checked"
:
0
,
"flows_notimeout"
:
0
,
"flows_timeout"
:
0
,
"flows_timeout_inuse"
:
0
,
"flows_removed"
:
0
,
"rows_checked"
:
65536
,
"rows_skipped"
:
65536
,
"rows_empty"
:
0
,
"rows_busy"
:
0
,
"rows_maxlen"
:
0
},
"dns"
:{
"memuse"
:
0
,
"memcap_state"
:
0
,
"memcap_global"
:
0
},
"http"
:{
"memuse"
:
0
,
"memcap"
:
0
},
"ftp"
:{
"memuse"
:
0
,
"memcap"
:
0
}}}
« Previous
1
2
Next »
(1-1/2)
Loading...