mirror of
https://github.com/zeek/zeek.git
synced 2025-10-10 10:38:20 +00:00
40 lines
1.3 KiB
Text
40 lines
1.3 KiB
Text
#separator \x09
|
|
#set_separator ,
|
|
#empty_field (empty)
|
|
#unset_field -
|
|
#path weird
|
|
#open 2012-04-11-16-01-35
|
|
#fields ts uid id.orig_h id.orig_p id.resp_h id.resp_p name addl notice peer
|
|
#types time string addr port addr port string string bool string
|
|
1334160095.895421 - - - - - truncated_IP - F bro
|
|
#close 2012-04-11-16-01-35
|
|
#separator \x09
|
|
#set_separator ,
|
|
#empty_field (empty)
|
|
#unset_field -
|
|
#path weird
|
|
#open 2012-04-11-14-57-21
|
|
#fields ts uid id.orig_h id.orig_p id.resp_h id.resp_p name addl notice peer
|
|
#types time string addr port addr port string string bool string
|
|
1334156241.519125 - - - - - truncated_IP - F bro
|
|
#close 2012-04-11-14-57-21
|
|
#separator \x09
|
|
#set_separator ,
|
|
#empty_field (empty)
|
|
#unset_field -
|
|
#path weird
|
|
#open 2012-04-10-21-50-48
|
|
#fields ts uid id.orig_h id.orig_p id.resp_h id.resp_p name addl notice peer
|
|
#types time string addr port addr port string string bool string
|
|
1334094648.590126 - - - - - truncated_IP - F bro
|
|
#close 2012-04-10-21-50-48
|
|
#separator \x09
|
|
#set_separator ,
|
|
#empty_field (empty)
|
|
#unset_field -
|
|
#path weird
|
|
#open 2012-05-29-22-02-34
|
|
#fields ts uid id.orig_h id.orig_p id.resp_h id.resp_p name addl notice peer
|
|
#types time string addr port addr port string string bool string
|
|
1338328954.078361 - - - - - internally_truncated_header - F bro
|
|
#close 2012-05-29-22-02-34
|