[Bro] Question regarding conn-summary reports

Monah Baki monahbaki at gmail.com
Mon Dec 15 05:22:17 PST 2014

Hi all,

I am trying to view the conn-summary.07:00:00-08:00:00.log.gz file, they
way I understood it, this is for a 1 hour summary of what's going on in our

However, at the beginning of the output, it displays

>== Total Connections=== 2014-12-12-14-54-42 - 2014-12-15-07-59-55


>== Incoming Connections=== 2014-12-14-18-59-08 - 2014-12-15-07-59-55

Why does it show a span of 3 days and the time is confusing.

Thank you
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20141215/f51193bd/attachment.html 

More information about the Bro mailing list