[Oisf-users] Another app layer log
Cooper F. Nelson
cnelson at ucsd.edu
Fri Jun 3 17:15:28 UTC 2016
I've seen issues like this when the capture mechanism is only seeing
traffic in one direction. Try running a packet capture on the tap.
-Coop
On 6/3/2016 8:58 AM, Caesar Samsi wrote:
> I also get tons of these and wondering what they are?
>
> However, I also have a concern about a specific one:
>
> 06/03/2016-08:46:37.801027 [Drop] [**] [1:2260002:1] SURICATA Applayer Detect protocol only one direction [**] [Classification: Generic Protocol Command Decode] [Priority: 3] {TCP} 209.85.214.69:34046 -> 192.168.1.2:25
--
Cooper Nelson
Network Security Analyst
UCSD ITS Security Team
cnelson at ucsd.edu x41042
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20160603/607d958c/attachment-0002.sig>
More information about the Oisf-users
mailing list