-
Notifications
You must be signed in to change notification settings - Fork 9
/
Copy pathtest.json
3 lines (3 loc) · 1.47 KB
/
test.json
1
2
3
{"timestamp":"2017-06-08T14:18:16.001338+0000","flow_id":240058011880697,"event_type":"flow","src_ip":"10.5.55.1","src_port":49218,"dest_ip":"239.255.255.250","dest_port":1900,"proto":"UDP","app_proto":"failed","flow":{"pkts_toserver":4,"pkts_toclient":0,"bytes_toserver":864,"bytes_toclient":0,"start":"2017-06-08T14:17:42.920825+0000","end":"2017-06-08T14:17:45.922594+0000","age":3,"state":"new","reason":"timeout","alerted":false}}
{"timestamp":"2017-06-08T14:18:29.003876+0000","flow_id":1725184687523455,"event_type":"flow","src_ip":"10.5.55.3","src_port":58138,"dest_ip":"10.5.55.2","dest_port":389,"proto":"TCP","flow":{"pkts_toserver":2,"pkts_toclient":1,"bytes_toserver":328,"bytes_toclient":377,"start":"2017-06-08T14:17:28.378495+0000","end":"2017-06-08T14:17:28.394188+0000","age":0,"state":"new","reason":"timeout","alerted":false},"tcp":{"tcp_flags":"00","tcp_flags_ts":"00","tcp_flags_tc":"00"}}
{"timestamp":"2017-06-08T14:18:34.003259+0000","flow_id":1920442491018538,"event_type":"flow","src_ip":"10.5.55.49","src_port":51362,"dest_ip":"10.5.55.3","dest_port":389,"proto":"TCP","app_proto":"failed","flow":{"pkts_toserver":14,"pkts_toclient":13,"bytes_toserver":4381,"bytes_toclient":5000,"start":"2017-06-08T14:17:33.269610+0000","end":"2017-06-08T14:17:33.277516+0000","age":0,"state":"closed","reason":"timeout","alerted":false},"tcp":{"tcp_flags":"de","tcp_flags_ts":"da","tcp_flags_tc":"5e","syn":true,"rst":true,"psh":true,"ack":true,"ecn":true,"cwr":true,"state":"closed"}}