Skip to content

Instantly share code, notes, and snippets.

@jasonish

jasonish/dnp3.json

Last active February 8, 2016 17:23
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save jasonish/724dbf648725c69aeb04 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save jasonish/724dbf648725c69aeb04 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
dnp3.json
{
"timestamp": "2015-07-14T11:45:56.320059-0600",
"flow_id": 106790066891968,
"pcap_cnt": 11,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 0
},
"function_code": 21,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 3,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 4,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.320059-0600",
"flow_id": 106790066891968,
"pcap_cnt": 11,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 0
},
"function_code": 21,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 3,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 4,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.320059-0600",
"flow_id": 106790066891968,
"pcap_cnt": 11,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 0
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": [
"device_restart"
]
}
}
}
{
"timestamp": "2015-07-14T11:45:56.320059-0600",
"flow_id": 106790066891968,
"pcap_cnt": 11,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 0
},
"function_code": 130,
"objects": [],
"complete": true
},
"iin": {
"indicators": [
"device_restart"
]
}
}
}
{
"timestamp": "2015-07-14T11:45:56.320232-0600",
"flow_id": 106790066891968,
"pcap_cnt": 14,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 1
},
"function_code": 2,
"objects": [
{
"group": 80,
"variation": 1,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 7,
"stop": 7,
"count": 1,
"points": [
{
"prefix": 0,
"index": 7,
"state": 0
}
]
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.320232-0600",
"flow_id": 106790066891968,
"pcap_cnt": 14,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 1
},
"function_code": 2,
"objects": [
{
"group": 80,
"variation": 1,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 7,
"stop": 7,
"count": 1,
"points": [
{
"prefix": 0,
"index": 7,
"state": 0
}
]
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.320232-0600",
"flow_id": 106790066891968,
"pcap_cnt": 14,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 1
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:45:56.360140-0600",
"flow_id": 106790066891968,
"pcap_cnt": 19,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 2
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 3,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 4,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 1,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.360140-0600",
"flow_id": 106790066891968,
"pcap_cnt": 19,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 2
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 3,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 4,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 1,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.360140-0600",
"flow_id": 106790066891968,
"pcap_cnt": 19,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 2
},
"function_code": 129,
"objects": [
{
"group": 1,
"variation": 2,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 0,
"stop": 9,
"count": 10,
"points": [
{
"prefix": 0,
"index": 0,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
},
{
"prefix": 0,
"index": 1,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
},
{
"prefix": 0,
"index": 2,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
},
{
"prefix": 0,
"index": 3,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
},
{
"prefix": 0,
"index": 4,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
},
{
"prefix": 0,
"index": 5,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
},
{
"prefix": 0,
"index": 6,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
},
{
"prefix": 0,
"index": 7,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
},
{
"prefix": 0,
"index": 8,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
},
{
"prefix": 0,
"index": 9,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
}
]
},
{
"group": 3,
"variation": 2,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 0,
"stop": 9,
"count": 10,
"points": [
{
"prefix": 0,
"index": 0,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
},
{
"prefix": 0,
"index": 1,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
},
{
"prefix": 0,
"index": 2,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
},
{
"prefix": 0,
"index": 3,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
},
{
"prefix": 0,
"index": 4,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
},
{
"prefix": 0,
"index": 5,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
},
{
"prefix": 0,
"index": 6,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
},
{
"prefix": 0,
"index": 7,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
},
{
"prefix": 0,
"index": 8,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
},
{
"prefix": 0,
"index": 9,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 0
}
]
},
{
"group": 20,
"variation": 1,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 0,
"stop": 9,
"count": 10,
"points": [
{
"prefix": 0,
"index": 0,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 1,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 2,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 3,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 4,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 5,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 6,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 7,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 8,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 9,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
}
]
},
{
"group": 21,
"variation": 1,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 0,
"stop": 9,
"count": 10,
"points": [
{
"prefix": 0,
"index": 0,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 1,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 2,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 3,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 4,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 5,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 6,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 7,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 8,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
},
{
"prefix": 0,
"index": 9,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
}
]
},
{
"group": 30,
"variation": 5,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0
}
]
},
{
"group": 30,
"variation": 1,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 1,
"stop": 9,
"count": 9,
"points": [
{
"prefix": 0,
"index": 1,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 2,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 3,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 4,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 5,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 6,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 7,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 8,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 9,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
}
]
},
{
"group": 10,
"variation": 2,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 0,
"stop": 9,
"count": 10,
"points": [
{
"prefix": 0,
"index": 0,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
},
{
"prefix": 0,
"index": 1,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
},
{
"prefix": 0,
"index": 2,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
},
{
"prefix": 0,
"index": 3,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
},
{
"prefix": 0,
"index": 4,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
},
{
"prefix": 0,
"index": 5,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
},
{
"prefix": 0,
"index": 6,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
},
{
"prefix": 0,
"index": 7,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
},
{
"prefix": 0,
"index": 8,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
},
{
"prefix": 0,
"index": 9,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"reserved0": 0,
"reserved1": 0,
"state": 0
}
]
},
{
"group": 40,
"variation": 1,
"qualifier": 0,
"prefix_code": 0,
"range_code": 0,
"start": 0,
"stop": 9,
"count": 10,
"points": [
{
"prefix": 0,
"index": 0,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 1,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 2,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 3,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 4,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 5,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 6,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 7,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 8,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
},
{
"prefix": 0,
"index": 9,
"online": 0,
"restart": 1,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"value": 0
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:45:56.361531-0600",
"flow_id": 106790066891968,
"pcap_cnt": 22,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 3
},
"function_code": 20,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 3,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 4,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.361531-0600",
"flow_id": 106790066891968,
"pcap_cnt": 22,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 3
},
"function_code": 20,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 3,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
},
{
"group": 60,
"variation": 4,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.361531-0600",
"flow_id": 106790066891968,
"pcap_cnt": 22,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 3
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:45:56.401111-0600",
"flow_id": 106790066891968,
"pcap_cnt": 24,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 4
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.401111-0600",
"flow_id": 106790066891968,
"pcap_cnt": 24,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 4
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:56.401111-0600",
"flow_id": 106790066891968,
"pcap_cnt": 24,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 4
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:45:58.361307-0600",
"flow_id": 106790066891968,
"pcap_cnt": 27,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 5
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:58.361307-0600",
"flow_id": 106790066891968,
"pcap_cnt": 27,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 5
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:45:58.361307-0600",
"flow_id": 106790066891968,
"pcap_cnt": 27,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 5
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:45:59.382213-0600",
"flow_id": 106790066891968,
"pcap_cnt": 29,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 1
},
"function_code": 130,
"objects": [
{
"group": 22,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 0
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:00.401022-0600",
"flow_id": 106790066891968,
"pcap_cnt": 35,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 6
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:00.401022-0600",
"flow_id": 106790066891968,
"pcap_cnt": 35,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 6
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:00.401022-0600",
"flow_id": 106790066891968,
"pcap_cnt": 35,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 6
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:02.361297-0600",
"flow_id": 106790066891968,
"pcap_cnt": 38,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 7
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:02.361297-0600",
"flow_id": 106790066891968,
"pcap_cnt": 38,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 7
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:02.361297-0600",
"flow_id": 106790066891968,
"pcap_cnt": 38,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 7
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:04.361364-0600",
"flow_id": 106790066891968,
"pcap_cnt": 41,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 8
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:04.361364-0600",
"flow_id": 106790066891968,
"pcap_cnt": 41,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 8
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:04.361364-0600",
"flow_id": 106790066891968,
"pcap_cnt": 41,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 8
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:05.846081-0600",
"flow_id": 106790066891968,
"pcap_cnt": 43,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 2
},
"function_code": 130,
"objects": [
{
"group": 22,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 1
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:06.400984-0600",
"flow_id": 106790066891968,
"pcap_cnt": 49,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 9
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:06.400984-0600",
"flow_id": 106790066891968,
"pcap_cnt": 49,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 9
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:06.400984-0600",
"flow_id": 106790066891968,
"pcap_cnt": 49,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 9
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:07.446289-0600",
"flow_id": 106790066891968,
"pcap_cnt": 51,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 3
},
"function_code": 130,
"objects": [
{
"group": 22,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 2
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:08.401013-0600",
"flow_id": 106790066891968,
"pcap_cnt": 57,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 10
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:08.401013-0600",
"flow_id": 106790066891968,
"pcap_cnt": 57,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 10
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:08.401013-0600",
"flow_id": 106790066891968,
"pcap_cnt": 57,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 10
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:08.758149-0600",
"flow_id": 106790066891968,
"pcap_cnt": 59,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 4
},
"function_code": 130,
"objects": [
{
"group": 22,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"rollover": 0,
"discontinuity": 0,
"reserved": 0,
"count": 3
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:10.214623-0600",
"flow_id": 106790066891968,
"pcap_cnt": 63,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 5
},
"function_code": 130,
"objects": [
{
"group": 2,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:10.400955-0600",
"flow_id": 106790066891968,
"pcap_cnt": 68,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 11
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:10.400955-0600",
"flow_id": 106790066891968,
"pcap_cnt": 68,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 11
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:10.400955-0600",
"flow_id": 106790066891968,
"pcap_cnt": 68,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 11
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:11.646245-0600",
"flow_id": 106790066891968,
"pcap_cnt": 70,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 6
},
"function_code": 130,
"objects": [
{
"group": 2,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 1
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:12.401022-0600",
"flow_id": 106790066891968,
"pcap_cnt": 76,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 12
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:12.401022-0600",
"flow_id": 106790066891968,
"pcap_cnt": 76,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 12
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:12.401022-0600",
"flow_id": 106790066891968,
"pcap_cnt": 76,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 12
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:12.646187-0600",
"flow_id": 106790066891968,
"pcap_cnt": 78,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 7
},
"function_code": 130,
"objects": [
{
"group": 2,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 0
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:13.630114-0600",
"flow_id": 106790066891968,
"pcap_cnt": 82,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 8
},
"function_code": 130,
"objects": [
{
"group": 2,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"reserved": 0,
"state": 1
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:14.400978-0600",
"flow_id": 106790066891968,
"pcap_cnt": 87,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 13
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:14.400978-0600",
"flow_id": 106790066891968,
"pcap_cnt": 87,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 13
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:14.400978-0600",
"flow_id": 106790066891968,
"pcap_cnt": 87,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 13
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:14.654298-0600",
"flow_id": 106790066891968,
"pcap_cnt": 89,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 9
},
"function_code": 130,
"objects": [
{
"group": 4,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 1
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:15.886393-0600",
"flow_id": 106790066891968,
"pcap_cnt": 93,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 10
},
"function_code": 130,
"objects": [
{
"group": 4,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 2
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:16.401025-0600",
"flow_id": 106790066891968,
"pcap_cnt": 98,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 14
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:16.401025-0600",
"flow_id": 106790066891968,
"pcap_cnt": 98,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 14
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:16.401025-0600",
"flow_id": 106790066891968,
"pcap_cnt": 98,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 14
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:16.966298-0600",
"flow_id": 106790066891968,
"pcap_cnt": 100,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 11
},
"function_code": 130,
"objects": [
{
"group": 4,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 1
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:18.401026-0600",
"flow_id": 106790066891968,
"pcap_cnt": 106,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 15
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:18.401026-0600",
"flow_id": 106790066891968,
"pcap_cnt": 106,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 15
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:18.401026-0600",
"flow_id": 106790066891968,
"pcap_cnt": 106,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 15
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:19.062395-0600",
"flow_id": 106790066891968,
"pcap_cnt": 108,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 12
},
"function_code": 130,
"objects": [
{
"group": 4,
"variation": 1,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"chatter_filter": 0,
"state": 2
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:20.401023-0600",
"flow_id": 106790066891968,
"pcap_cnt": 114,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 0
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:20.401023-0600",
"flow_id": 106790066891968,
"pcap_cnt": 114,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 0
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:20.401023-0600",
"flow_id": 106790066891968,
"pcap_cnt": 114,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 0
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:20.401106-0600",
"flow_id": 106790066891968,
"pcap_cnt": 116,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 13
},
"function_code": 130,
"objects": [
{
"group": 32,
"variation": 7,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"timestamp": 0
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:22.022608-0600",
"flow_id": 106790066891968,
"pcap_cnt": 120,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 14
},
"function_code": 130,
"objects": [
{
"group": 32,
"variation": 7,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"timestamp": 0
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:22.401073-0600",
"flow_id": 106790066891968,
"pcap_cnt": 125,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 1
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:22.401073-0600",
"flow_id": 106790066891968,
"pcap_cnt": 125,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 1
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:22.401073-0600",
"flow_id": 106790066891968,
"pcap_cnt": 125,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 1
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:23.174428-0600",
"flow_id": 106790066891968,
"pcap_cnt": 127,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 15
},
"function_code": 130,
"objects": [
{
"group": 32,
"variation": 7,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"timestamp": 0
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:24.070578-0600",
"flow_id": 106790066891968,
"pcap_cnt": 131,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "unsolicited_response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": true,
"uns": true,
"sequence": 0
},
"function_code": 130,
"objects": [
{
"group": 32,
"variation": 7,
"qualifier": 40,
"prefix_code": 2,
"range_code": 8,
"start": 0,
"stop": 0,
"count": 1,
"points": [
{
"prefix": 0,
"index": 0,
"online": 1,
"restart": 0,
"comm_lost": 0,
"remote_forced": 0,
"local_forced": 0,
"over_range": 0,
"reference_err": 0,
"reserved": 0,
"timestamp": 0
}
]
}
],
"complete": true
},
"iin": {
"indicators": []
}
}
}
{
"timestamp": "2015-07-14T11:46:24.400957-0600",
"flow_id": 106790066891968,
"pcap_cnt": 136,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 2
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:24.400957-0600",
"flow_id": 106790066891968,
"pcap_cnt": 136,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "request",
"control": {
"dir": true,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 1,
"dst": 10,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 2
},
"function_code": 1,
"objects": [
{
"group": 60,
"variation": 2,
"qualifier": 6,
"prefix_code": 0,
"range_code": 6,
"start": 0,
"stop": 0,
"count": 0
}
],
"complete": true
}
}
}
{
"timestamp": "2015-07-14T11:46:24.400957-0600",
"flow_id": 106790066891968,
"pcap_cnt": 136,
"event_type": "dnp3",
"src_ip": "127.0.0.1",
"src_port": 59602,
"dest_ip": "127.0.0.1",
"dest_port": 20000,
"proto": "TCP",
"dnp3": {
"type": "response",
"control": {
"dir": false,
"pri": true,
"fcb": false,
"fcv": false,
"function_code": 4
},
"src": 10,
"dst": 1,
"application": {
"control": {
"fir": true,
"fin": true,
"con": false,
"uns": false,
"sequence": 2
},
"function_code": 129,
"objects": [],
"complete": true
},
"iin": {
"indicators": []
}
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment