[Bro] Question regarding conn-summary reports
Monah Baki
monahbaki at gmail.com
Mon Dec 15 05:22:17 PST 2014
Hi all,
I am trying to view the conn-summary.07:00:00-08:00:00.log.gz file, they
way I understood it, this is for a 1 hour summary of what's going on in our
network.
However, at the beginning of the output, it displays
>== Total Connections=== 2014-12-12-14-54-42 - 2014-12-15-07-59-55
Then
>== Incoming Connections=== 2014-12-14-18-59-08 - 2014-12-15-07-59-55
Why does it show a span of 3 days and the time is confusing.
Thank you
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20141215/f51193bd/attachment.html
More information about the Bro
mailing list