=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2021.07.20 15:12:15 =~=~=~=~=~=~=~=~=~=~=~= login as: admin admin@172.16.17.1's password:  Sophos Firmware Version SFOS 18.5.1 MR-1-Build318 Main Menu 1. Network Configuration 2. System Configuration 3. Route Configuration 4. Device Console 5. Device Management 6. VPN Management 7. Shutdown/Reboot Device 0. Exit Select Menu Number [0-7]: 4 Sophos Firmware Version SFOS 18.5.1 MR-1-Build318 console> drop-packet-capture 'host 192.168.1.199 2021-07-20 15:12:51 0101021 IP 192.168.1.199.57390 > 192.168.1.46.1883 : proto TCP: S 1760088747:1760088747(0) win 2144 checksum : 55031 0x0000: 4500 0030 3d21 0000 ff06 fa60 c0a8 01c7 E..0=!.....`.... 0x0010: c0a8 012e e02e 075b 68e8 d2ab 0000 0000 .......[h....... 0x0020: 7002 0860 d6f7 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:12:51 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57390 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652758464 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:12:53 010202130 IP 192.168.1.199.57390 > 192.168.1.46.1883 : proto TCP: R 1760088748:1760088748(0) win 24584 checksum : 43107 0x0000: 4500 0028 3d22 0000 ff06 fa67 c0a8 01c7 E..(=".....g.... 0x0010: c0a8 012e e02e 075b 68e8 d2ac 0000 0000 .......[h....... 0x0020: 5014 6008 a863 0000 P.`..c.. Date=2021-07-20 Time=15:12:53 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57390 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:12:58 0101021 IP 192.168.1.199.64771 > 192.168.1.46.1883 : proto TCP: S 1775415098:1775415098(0) win 2144 checksum : 56489 0x0000: 4500 0030 3d23 0000 ff06 fa5e c0a8 01c7 E..0=#.....^.... 0x0010: c0a8 012e fd03 075b 69d2 af3a 0000 0000 .......[i..:.... 0x0020: 7002 0860 dca9 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:12:58 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64771 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652757824 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:01 0101021 IP 192.168.1.199.64771 > 192.168.1.46.1883 : proto TCP: S 1775415098:1775415098(0) win 2144 checksum : 56489 0x0000: 4500 0030 3d24 0000 ff06 fa5d c0a8 01c7 E..0=$.....].... 0x0010: c0a8 012e fd03 075b 69d2 af3a 0000 0000 .......[i..:.... 0x0020: 7002 0860 dca9 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:13:01 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64771 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652757184 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:03 010202130 IP 192.168.1.199.64771 > 192.168.1.46.1883 : proto TCP: R 1775415099:1775415099(0) win 24584 checksum : 44565 0x0000: 4500 0028 3d25 0000 ff06 fa64 c0a8 01c7 E..(=%.....d.... 0x0010: c0a8 012e fd03 075b 69d2 af3b 0000 0000 .......[i..;.... 0x0020: 5014 6008 ae15 0000 P.`..... Date=2021-07-20 Time=15:13:03 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64771 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:08 0101021 IP 192.168.1.199.60140 > 192.168.1.46.1883 : proto TCP: S 1790741460:1790741460(0) win 2144 checksum : 4413 0x0000: 4500 0030 3d26 0000 ff06 fa5b c0a8 01c7 E..0=&.....[.... 0x0010: c0a8 012e eaec 075b 6abc 8bd4 0000 0000 .......[j....... 0x0020: 7002 0860 113d 0000 0204 0218 0101 0402 p..`.=.......... Date=2021-07-20 Time=15:13:08 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=60140 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164386304 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:11 0101021 IP 192.168.1.199.60140 > 192.168.1.46.1883 : proto TCP: S 1790741460:1790741460(0) win 2144 checksum : 4413 0x0000: 4500 0030 3d27 0000 ff06 fa5a c0a8 01c7 E..0='.....Z.... 0x0010: c0a8 012e eaec 075b 6abc 8bd4 0000 0000 .......[j....... 0x0020: 7002 0860 113d 0000 0204 0218 0101 0402 p..`.=.......... Date=2021-07-20 Time=15:13:11 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=60140 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164387264 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:13 010202130 IP 192.168.1.199.60140 > 192.168.1.46.1883 : proto TCP: R 1790741461:1790741461(0) win 24584 checksum : 58024 0x0000: 4500 0028 3d28 0000 ff06 fa61 c0a8 01c7 E..(=(.....a.... 0x0010: c0a8 012e eaec 075b 6abc 8bd5 0000 0000 .......[j....... 0x0020: 5014 6008 e2a8 0000 P.`..... Date=2021-07-20 Time=15:13:13 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=60140 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:18 0101021 IP 192.168.1.199.65389 > 192.168.1.46.1883 : proto TCP: S 1806067832:1806067832(0) win 2144 checksum : 7982 0x0000: 4500 0030 3d29 0000 ff06 fa58 c0a8 01c7 E..0=).....X.... 0x0010: c0a8 012e ff6d 075b 6ba6 6878 0000 0000 .....m.[k.hx.... 0x0020: 7002 0860 1f2e 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:13:18 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=65389 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164384064 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:21 0101021 IP 192.168.1.199.65389 > 192.168.1.46.1883 : proto TCP: S 1806067832:1806067832(0) win 2144 checksum : 7982 0x0000: 4500 0030 3d2a 0000 ff06 fa57 c0a8 01c7 E..0=*.....W.... 0x0010: c0a8 012e ff6d 075b 6ba6 6878 0000 0000 .....m.[k.hx.... 0x0020: 7002 0860 1f2e 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:13:21 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=65389 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164384064 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:23 010202130 IP 192.168.1.199.65389 > 192.168.1.46.1883 : proto TCP: R 1806067833:1806067833(0) win 24584 checksum : 61593 0x0000: 4500 0028 3d2b 0000 ff06 fa5e c0a8 01c7 E..(=+.....^.... 0x0010: c0a8 012e ff6d 075b 6ba6 6879 0000 0000 .....m.[k.hy.... 0x0020: 5014 6008 f099 0000 P.`..... Date=2021-07-20 Time=15:13:23 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=65389 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:28 0101021 IP 192.168.1.199.55545 > 192.168.1.46.1883 : proto TCP: S 1821394214:1821394214(0) win 2144 checksum : 26634 0x0000: 4500 0030 3d2c 0000 ff06 fa55 c0a8 01c7 E..0=,.....U.... 0x0010: c0a8 012e d8f9 075b 6c90 4526 0000 0000 .......[l.E&.... 0x0020: 7002 0860 680a 0000 0204 0218 0101 0402 p..`h........... Date=2021-07-20 Time=15:13:28 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=55545 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164385024 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:31 0101021 IP 192.168.1.199.55545 > 192.168.1.46.1883 : proto TCP: S 1821394214:1821394214(0) win 2144 checksum : 26634 0x0000: 4500 0030 3d2d 0000 ff06 fa54 c0a8 01c7 E..0=-.....T.... 0x0010: c0a8 012e d8f9 075b 6c90 4526 0000 0000 .......[l.E&.... 0x0020: 7002 0860 680a 0000 0204 0218 0101 0402 p..`h........... Date=2021-07-20 Time=15:13:31 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=55545 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164384704 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:33 010202130 IP 192.168.1.199.55545 > 192.168.1.46.1883 : proto TCP: R 1821394215:1821394215(0) win 24584 checksum : 14710 0x0000: 4500 0028 3d2e 0000 ff06 fa5b c0a8 01c7 E..(=......[.... 0x0010: c0a8 012e d8f9 075b 6c90 4527 0000 0000 .......[l.E'.... 0x0020: 5014 6008 3976 0000 P.`.9v.. Date=2021-07-20 Time=15:13:33 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=55545 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:39 0101021 IP 192.168.1.199.51067 > 192.168.1.46.1883 : proto TCP: S 1836720607:1836720607(0) win 2144 checksum : 39909 0x0000: 4500 0030 3d2f 0000 ff06 fa52 c0a8 01c7 E..0=/.....R.... 0x0010: c0a8 012e c77b 075b 6d7a 21df 0000 0000 .....{.[mz!..... 0x0020: 7002 0860 9be5 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:13:39 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=51067 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164381504 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:42 0101021 IP 192.168.1.199.51067 > 192.168.1.46.1883 : proto TCP: S 1836720607:1836720607(0) win 2144 checksum : 39909 0x0000: 4500 0030 3d30 0000 ff06 fa51 c0a8 01c7 E..0=0.....Q.... 0x0010: c0a8 012e c77b 075b 6d7a 21df 0000 0000 .....{.[mz!..... 0x0020: 7002 0860 9be5 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:13:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=51067 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164383104 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:44 010202130 IP 192.168.1.199.51067 > 192.168.1.46.1883 : proto TCP: R 1836720608:1836720608(0) win 24584 checksum : 27985 0x0000: 4500 0028 3d31 0000 ff06 fa58 c0a8 01c7 E..(=1.....X.... 0x0010: c0a8 012e c77b 075b 6d7a 21e0 0000 0000 .....{.[mz!..... 0x0020: 5014 6008 6d51 0000 P.`.mQ.. Date=2021-07-20 Time=15:13:44 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=51067 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:49 0101021 IP 192.168.1.199.56327 > 192.168.1.46.1883 : proto TCP: S 1852047010:1852047010(0) win 2144 checksum : 43436 0x0000: 4500 0030 3d32 0000 ff06 fa4f c0a8 01c7 E..0=2.....O.... 0x0010: c0a8 012e dc07 075b 6e63 fea2 0000 0000 .......[nc...... 0x0020: 7002 0860 a9ac 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:13:49 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=56327 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164382144 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:52 0101021 IP 192.168.1.199.56327 > 192.168.1.46.1883 : proto TCP: S 1852047010:1852047010(0) win 2144 checksum : 43436 0x0000: 4500 0030 3d33 0000 ff06 fa4e c0a8 01c7 E..0=3.....N.... 0x0010: c0a8 012e dc07 075b 6e63 fea2 0000 0000 .......[nc...... 0x0020: 7002 0860 a9ac 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:13:52 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=56327 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164382144 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:54 010202130 IP 192.168.1.199.56327 > 192.168.1.46.1883 : proto TCP: R 1852047011:1852047011(0) win 24584 checksum : 31512 0x0000: 4500 0028 3d34 0000 ff06 fa55 c0a8 01c7 E..(=4.....U.... 0x0010: c0a8 012e dc07 075b 6e63 fea3 0000 0000 .......[nc...... 0x0020: 5014 6008 7b18 0000 P.`.{... Date=2021-07-20 Time=15:13:54 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=56327 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:13:59 0101021 IP 192.168.1.199.60239 > 192.168.1.46.1883 : proto TCP: S 1867373423:1867373423(0) win 2144 checksum : 48301 0x0000: 4500 0030 3d35 0000 ff06 fa4c c0a8 01c7 E..0=5.....L.... 0x0010: c0a8 012e eb4f 075b 6f4d db6f 0000 0000 .....O.[oM.o.... 0x0020: 7002 0860 bcad 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:13:59 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=60239 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164388864 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:02 0101021 IP 192.168.1.199.60239 > 192.168.1.46.1883 : proto TCP: S 1867373423:1867373423(0) win 2144 checksum : 48301 0x0000: 4500 0030 3d36 0000 ff06 fa4b c0a8 01c7 E..0=6.....K.... 0x0010: c0a8 012e eb4f 075b 6f4d db6f 0000 0000 .....O.[oM.o.... 0x0020: 7002 0860 bcad 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:14:02 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=60239 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164388864 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:04 010202130 IP 192.168.1.199.60239 > 192.168.1.46.1883 : proto TCP: R 1867373424:1867373424(0) win 24584 checksum : 36377 0x0000: 4500 0028 3d37 0000 ff06 fa52 c0a8 01c7 E..(=7.....R.... 0x0010: c0a8 012e eb4f 075b 6f4d db70 0000 0000 .....O.[oM.p.... 0x0020: 5014 6008 8e19 0000 P.`..... Date=2021-07-20 Time=15:14:04 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=60239 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:09 0101021 IP 192.168.1.199.50820 > 192.168.1.46.1883 : proto TCP: S 1882699846:1882699846(0) win 2144 checksum : 952 0x0000: 4500 0030 3d38 0000 ff06 fa49 c0a8 01c7 E..0=8.....I.... 0x0010: c0a8 012e c684 075b 7037 b846 0000 0000 .......[p7.F.... 0x0020: 7002 0860 03b8 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:14:09 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=50820 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164387584 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:12 0101021 IP 192.168.1.199.50820 > 192.168.1.46.1883 : proto TCP: S 1882699846:1882699846(0) win 2144 checksum : 952 0x0000: 4500 0030 3d39 0000 ff06 fa48 c0a8 01c7 E..0=9.....H.... 0x0010: c0a8 012e c684 075b 7037 b846 0000 0000 .......[p7.F.... 0x0020: 7002 0860 03b8 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:14:12 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=50820 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164381824 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:14 010202130 IP 192.168.1.199.50820 > 192.168.1.46.1883 : proto TCP: R 1882699847:1882699847(0) win 24584 checksum : 54563 0x0000: 4500 0028 3d3a 0000 ff06 fa4f c0a8 01c7 E..(=:.....O.... 0x0010: c0a8 012e c684 075b 7037 b847 0000 0000 .......[p7.G.... 0x0020: 5014 6008 d523 0000 P.`..#.. Date=2021-07-20 Time=15:14:14 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=50820 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:19 0101021 IP 192.168.1.199.56125 > 192.168.1.46.1883 : proto TCP: S 1898026279:1898026279(0) win 2144 checksum : 4404 0x0000: 4500 0030 3d3b 0000 ff06 fa46 c0a8 01c7 E..0=;.....F.... 0x0010: c0a8 012e db3d 075b 7121 9527 0000 0000 .....=.[q!.'.... 0x0020: 7002 0860 1134 0000 0204 0218 0101 0402 p..`.4.......... Date=2021-07-20 Time=15:14:19 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=56125 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3164387584 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:22 0101021 IP 192.168.1.199.56125 > 192.168.1.46.1883 : proto TCP: S 1898026279:1898026279(0) win 2144 checksum : 4404 0x0000: 4500 0030 3d3c 0000 ff06 fa45 c0a8 01c7 E..0=<.....E.... 0x0010: c0a8 012e db3d 075b 7121 9527 0000 0000 .....=.[q!.'.... 0x0020: 7002 0860 1134 0000 0204 0218 0101 0402 p..`.4.......... Date=2021-07-20 Time=15:14:22 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=56125 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1233687552 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:24 010202130 IP 192.168.1.199.56125 > 192.168.1.46.1883 : proto TCP: R 1898026280:1898026280(0) win 24584 checksum : 58015 0x0000: 4500 0028 3d3d 0000 ff06 fa4c c0a8 01c7 E..(==.....L.... 0x0010: c0a8 012e db3d 075b 7121 9528 0000 0000 .....=.[q!.(.... 0x0020: 5014 6008 e29f 0000 P.`..... Date=2021-07-20 Time=15:14:24 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=56125 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:24 0101021 IP 192.168.1.46. > 192.168.1.199. :proto ICMP: echo request seq 8066 0x0000: 4500 003c 1e5a 4000 8001 5821 c0a8 012e E..<.Z@...X!.... 0x0010: c0a8 01c7 0800 b24b 000c 1f82 6262 6262 .......K....bbbb 0x0020: 6262 6262 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbbbbbb 0x0030: 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbb Date=2021-07-20 Time=15:14:24 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port2 out_dev=Port3 inzone_id=1 outzone_id=1 source_mac=a0:2b:b8:2e:4a:bb dest_mac=2c:f4:32:4a:9f:16 bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.46 dest_ip=192.168.1.199 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1257384768 masterid=0 status=256 state=0, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:29 0101021 IP 192.168.1.199.57403 > 192.168.1.46.1883 : proto TCP: S 1913352722:1913352722(0) win 2144 checksum : 11873 0x0000: 4500 0030 3d3e 0000 ff06 fa43 c0a8 01c7 E..0=>.....C.... 0x0010: c0a8 012e e03b 075b 720b 7212 0000 0000 .....;.[r.r..... 0x0020: 7002 0860 2e61 0000 0204 0218 0101 0402 p..`.a.......... Date=2021-07-20 Time=15:14:29 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57403 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652476416 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:32 0101021 IP 192.168.1.199.57403 > 192.168.1.46.1883 : proto TCP: S 1913352722:1913352722(0) win 2144 checksum : 11873 0x0000: 4500 0030 3d3f 0000 ff06 fa42 c0a8 01c7 E..0=?.....B.... 0x0010: c0a8 012e e03b 075b 720b 7212 0000 0000 .....;.[r.r..... 0x0020: 7002 0860 2e61 0000 0204 0218 0101 0402 p..`.a.......... Date=2021-07-20 Time=15:14:32 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57403 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652484096 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:34 010202130 IP 192.168.1.199.57403 > 192.168.1.46.1883 : proto TCP: R 1913352723:1913352723(0) win 24584 checksum : 65484 0x0000: 4500 0028 3d40 0000 ff06 fa49 c0a8 01c7 E..(=@.....I.... 0x0010: c0a8 012e e03b 075b 720b 7213 0000 0000 .....;.[r.r..... 0x0020: 5014 6008 ffcc 0000 P.`..... Date=2021-07-20 Time=15:14:34 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57403 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:39 0101021 IP 192.168.1.199.63655 > 192.168.1.46.1883 : proto TCP: S 1928679176:1928679176(0) win 2144 checksum : 14357 0x0000: 4500 0030 3d41 0000 ff06 fa40 c0a8 01c7 E..0=A.....@.... 0x0010: c0a8 012e f8a7 075b 72f5 4f08 0000 0000 .......[r.O..... 0x0020: 7002 0860 3815 0000 0204 0218 0101 0402 p..`8........... Date=2021-07-20 Time=15:14:39 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=63655 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1238734784 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:42 0101021 IP 192.168.1.46. > 192.168.1.199. :proto ICMP: echo request seq 8137 0x0000: 4500 003c 1e5b 4000 8001 5820 c0a8 012e E..<.[@...X..... 0x0010: c0a8 01c7 0800 b204 000c 1fc9 6262 6262 ............bbbb 0x0020: 6262 6262 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbbbbbb 0x0030: 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbb Date=2021-07-20 Time=15:14:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port2 out_dev=Port3 inzone_id=1 outzone_id=1 source_mac=a0:2b:b8:2e:4a:bb dest_mac=2c:f4:32:4a:9f:16 bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.46 dest_ip=192.168.1.199 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256691648 masterid=0 status=256 state=0, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:42 0101021 IP 192.168.1.46. > 192.168.1.199. :proto ICMP: echo request seq 8138 0x0000: 4500 003c 1e5c 4000 8001 581f c0a8 012e E..<.\@...X..... 0x0010: c0a8 01c7 0800 b203 000c 1fca 6262 6262 ............bbbb 0x0020: 6262 6262 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbbbbbb 0x0030: 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbb Date=2021-07-20 Time=15:14:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port2 out_dev=Port3 inzone_id=1 outzone_id=1 source_mac=a0:2b:b8:2e:4a:bb dest_mac=2c:f4:32:4a:9f:16 bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.46 dest_ip=192.168.1.199 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256691648 masterid=0 status=256 state=0, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:42 0101021 IP 192.168.1.199.63655 > 192.168.1.46.1883 : proto TCP: S 1928679176:1928679176(0) win 2144 checksum : 14357 0x0000: 4500 0030 3d42 0000 ff06 fa3f c0a8 01c7 E..0=B.....?.... 0x0010: c0a8 012e f8a7 075b 72f5 4f08 0000 0000 .......[r.O..... 0x0020: 7002 0860 3815 0000 0204 0218 0101 0402 p..`8........... Date=2021-07-20 Time=15:14:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=63655 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1238736384 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:43 0101021 IP 192.168.1.46. > 192.168.1.199. :proto ICMP: echo request seq 8139 0x0000: 4500 003c 1e5d 4000 8001 581e c0a8 012e E..<.]@...X..... 0x0010: c0a8 01c7 0800 b202 000c 1fcb 6262 6262 ............bbbb 0x0020: 6262 6262 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbbbbbb 0x0030: 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbb Date=2021-07-20 Time=15:14:43 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port2 out_dev=Port3 inzone_id=1 outzone_id=1 source_mac=a0:2b:b8:2e:4a:bb dest_mac=2c:f4:32:4a:9f:16 bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.46 dest_ip=192.168.1.199 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256689728 masterid=0 status=256 state=0, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:44 010202130 IP 192.168.1.199.63655 > 192.168.1.46.1883 : proto TCP: R 1928679177:1928679177(0) win 24584 checksum : 2433 0x0000: 4500 0028 3d43 0000 ff06 fa46 c0a8 01c7 E..(=C.....F.... 0x0010: c0a8 012e f8a7 075b 72f5 4f09 0000 0000 .......[r.O..... 0x0020: 5014 6008 0981 0000 P.`..... Date=2021-07-20 Time=15:14:44 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=63655 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:49 0101021 IP 192.168.1.199.54457 > 192.168.1.46.1883 : proto TCP: S 1944005640:1944005640(0) win 2144 checksum : 32281 0x0000: 4500 0030 3d44 0000 ff06 fa3d c0a8 01c7 E..0=D.....=.... 0x0010: c0a8 012e d4b9 075b 73df 2c08 0000 0000 .......[s.,..... 0x0020: 7002 0860 7e19 0000 0204 0218 0101 0402 p..`~........... Date=2021-07-20 Time=15:14:49 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=54457 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1238731584 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:53 0101021 IP 192.168.1.199.54457 > 192.168.1.46.1883 : proto TCP: S 1944005640:1944005640(0) win 2144 checksum : 32281 0x0000: 4500 0030 3d45 0000 ff06 fa3c c0a8 01c7 E..0=E.....<.... 0x0010: c0a8 012e d4b9 075b 73df 2c08 0000 0000 .......[s.,..... 0x0020: 7002 0860 7e19 0000 0204 0218 0101 0402 p..`~........... Date=2021-07-20 Time=15:14:53 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=54457 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1238731584 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:14:55 010202130 IP 192.168.1.199.54457 > 192.168.1.46.1883 : proto TCP: R 1944005641:1944005641(0) win 24584 checksum : 20357 0x0000: 4500 0028 3d46 0000 ff06 fa43 c0a8 01c7 E..(=F.....C.... 0x0010: c0a8 012e d4b9 075b 73df 2c09 0000 0000 .......[s.,..... 0x0020: 5014 6008 4f85 0000 P.`.O... Date=2021-07-20 Time=15:14:55 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=54457 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:00 0101021 IP 192.168.1.199.53764 > 192.168.1.46.1883 : proto TCP: S 1959332114:1959332114(0) win 2144 checksum : 41690 0x0000: 4500 0030 3d47 0000 ff06 fa3a c0a8 01c7 E..0=G.....:.... 0x0010: c0a8 012e d204 075b 74c9 0912 0000 0000 .......[t....... 0x0020: 7002 0860 a2da 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:00 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=53764 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1257586176 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:02 0101021 IP 192.168.1.199.53764 > 192.168.1.46.1883 : proto TCP: S 1959332114:1959332114(0) win 2144 checksum : 41690 0x0000: 4500 0030 3d48 0000 ff06 fa39 c0a8 01c7 E..0=H.....9.... 0x0010: c0a8 012e d204 075b 74c9 0912 0000 0000 .......[t....... 0x0020: 7002 0860 a2da 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:02 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=53764 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1257580096 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:05 010202130 IP 192.168.1.199.53764 > 192.168.1.46.1883 : proto TCP: R 1959332115:1959332115(0) win 24584 checksum : 29766 0x0000: 4500 0028 3d49 0000 ff06 fa40 c0a8 01c7 E..(=I.....@.... 0x0010: c0a8 012e d204 075b 74c9 0913 0000 0000 .......[t....... 0x0020: 5014 6008 7446 0000 P.`.tF.. Date=2021-07-20 Time=15:15:05 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=53764 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:10 0101021 IP 192.168.1.199.64570 > 192.168.1.46.1883 : proto TCP: S 1974658599:1974658599(0) win 2144 checksum : 39589 0x0000: 4500 0030 3d4a 0000 ff06 fa37 c0a8 01c7 E..0=J.....7.... 0x0010: c0a8 012e fc3a 075b 75b2 e627 0000 0000 .....:.[u..'.... 0x0020: 7002 0860 9aa5 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:10 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64570 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1257585536 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:13 0101021 IP 192.168.1.199.64570 > 192.168.1.46.1883 : proto TCP: S 1974658599:1974658599(0) win 2144 checksum : 39589 0x0000: 4500 0030 3d4b 0000 ff06 fa36 c0a8 01c7 E..0=K.....6.... 0x0010: c0a8 012e fc3a 075b 75b2 e627 0000 0000 .....:.[u..'.... 0x0020: 7002 0860 9aa5 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:13 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64570 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1257582976 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:15 010202130 IP 192.168.1.199.64570 > 192.168.1.46.1883 : proto TCP: R 1974658600:1974658600(0) win 24584 checksum : 27665 0x0000: 4500 0028 3d4c 0000 ff06 fa3d c0a8 01c7 E..(=L.....=.... 0x0010: c0a8 012e fc3a 075b 75b2 e628 0000 0000 .....:.[u..(.... 0x0020: 5014 6008 6c11 0000 P.`.l... Date=2021-07-20 Time=15:15:15 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64570 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:20 0101021 IP 192.168.1.199.54763 > 192.168.1.46.1883 : proto TCP: S 1989985094:1989985094(0) win 2144 checksum : 58091 0x0000: 4500 0030 3d4d 0000 ff06 fa34 c0a8 01c7 E..0=M.....4.... 0x0010: c0a8 012e d5eb 075b 769c c346 0000 0000 .......[v..F.... 0x0020: 7002 0860 e2eb 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:20 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=54763 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=653352960 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:23 0101021 IP 192.168.1.199.54763 > 192.168.1.46.1883 : proto TCP: S 1989985094:1989985094(0) win 2144 checksum : 58091 0x0000: 4500 0030 3d4e 0000 ff06 fa33 c0a8 01c7 E..0=N.....3.... 0x0010: c0a8 012e d5eb 075b 769c c346 0000 0000 .......[v..F.... 0x0020: 7002 0860 e2eb 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:23 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=54763 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=653356800 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:25 010202130 IP 192.168.1.199.54763 > 192.168.1.46.1883 : proto TCP: R 1989985095:1989985095(0) win 24584 checksum : 46167 0x0000: 4500 0028 3d4f 0000 ff06 fa3a c0a8 01c7 E..(=O.....:.... 0x0010: c0a8 012e d5eb 075b 769c c347 0000 0000 .......[v..G.... 0x0020: 5014 6008 b457 0000 P.`..W.. Date=2021-07-20 Time=15:15:25 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=54763 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:30 0101021 IP 192.168.1.199.59330 > 192.168.1.46.1883 : proto TCP: S 2005311600:2005311600(0) win 2144 checksum : 62208 0x0000: 4500 0030 3d50 0000 ff06 fa31 c0a8 01c7 E..0=P.....1.... 0x0010: c0a8 012e e7c2 075b 7786 a070 0000 0000 .......[w..p.... 0x0020: 7002 0860 f300 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:30 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=59330 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=653358720 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:33 0101021 IP 192.168.1.199.59330 > 192.168.1.46.1883 : proto TCP: S 2005311600:2005311600(0) win 2144 checksum : 62208 0x0000: 4500 0030 3d51 0000 ff06 fa30 c0a8 01c7 E..0=Q.....0.... 0x0010: c0a8 012e e7c2 075b 7786 a070 0000 0000 .......[w..p.... 0x0020: 7002 0860 f300 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:33 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=59330 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=653353600 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:35 010202130 IP 192.168.1.199.59330 > 192.168.1.46.1883 : proto TCP: R 2005311601:2005311601(0) win 24584 checksum : 50284 0x0000: 4500 0028 3d52 0000 ff06 fa37 c0a8 01c7 E..(=R.....7.... 0x0010: c0a8 012e e7c2 075b 7786 a071 0000 0000 .......[w..q.... 0x0020: 5014 6008 c46c 0000 P.`..l.. Date=2021-07-20 Time=15:15:35 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=59330 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:40 0101021 IP 192.168.1.199.62130 > 192.168.1.46.1883 : proto TCP: S 2020638116:2020638116(0) win 2144 checksum : 2547 0x0000: 4500 0030 3d53 0000 ff06 fa2e c0a8 01c7 E..0=S.......... 0x0010: c0a8 012e f2b2 075b 7870 7da4 0000 0000 .......[xp}..... 0x0020: 7002 0860 09f3 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:40 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=62130 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=651332416 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:43 0101021 IP 192.168.1.199.62130 > 192.168.1.46.1883 : proto TCP: S 2020638116:2020638116(0) win 2144 checksum : 2547 0x0000: 4500 0030 3d54 0000 ff06 fa2d c0a8 01c7 E..0=T.....-.... 0x0010: c0a8 012e f2b2 075b 7870 7da4 0000 0000 .......[xp}..... 0x0020: 7002 0860 09f3 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:15:43 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=62130 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=651330816 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:45 010202130 IP 192.168.1.199.62130 > 192.168.1.46.1883 : proto TCP: R 2020638117:2020638117(0) win 24584 checksum : 56158 0x0000: 4500 0028 3d55 0000 ff06 fa34 c0a8 01c7 E..(=U.....4.... 0x0010: c0a8 012e f2b2 075b 7870 7da5 0000 0000 .......[xp}..... 0x0020: 5014 6008 db5e 0000 P.`..^.. Date=2021-07-20 Time=15:15:45 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=62130 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:50 0101021 IP 192.168.1.199.56500 > 192.168.1.46.1883 : proto TCP: S 2035964642:2035964642(0) win 2144 checksum : 16841 0x0000: 4500 0030 3d56 0000 ff06 fa2b c0a8 01c7 E..0=V.....+.... 0x0010: c0a8 012e dcb4 075b 795a 5ae2 0000 0000 .......[yZZ..... 0x0020: 7002 0860 41c9 0000 0204 0218 0101 0402 p..`A........... Date=2021-07-20 Time=15:15:50 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=56500 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=651329536 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:53 0101021 IP 192.168.1.199.56500 > 192.168.1.46.1883 : proto TCP: S 2035964642:2035964642(0) win 2144 checksum : 16841 0x0000: 4500 0030 3d57 0000 ff06 fa2a c0a8 01c7 E..0=W.....*.... 0x0010: c0a8 012e dcb4 075b 795a 5ae2 0000 0000 .......[yZZ..... 0x0020: 7002 0860 41c9 0000 0204 0218 0101 0402 p..`A........... Date=2021-07-20 Time=15:15:53 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=56500 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=651329536 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:15:55 010202130 IP 192.168.1.199.56500 > 192.168.1.46.1883 : proto TCP: R 2035964643:2035964643(0) win 24584 checksum : 4917 0x0000: 4500 0028 3d58 0000 ff06 fa31 c0a8 01c7 E..(=X.....1.... 0x0010: c0a8 012e dcb4 075b 795a 5ae3 0000 0000 .......[yZZ..... 0x0020: 5014 6008 1335 0000 P.`..5.. Date=2021-07-20 Time=15:15:55 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=56500 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:00 0101021 IP 192.168.1.199.65058 > 192.168.1.46.1883 : proto TCP: S 2051291179:2051291179(0) win 2144 checksum : 16936 0x0000: 4500 0030 3d59 0000 ff06 fa28 c0a8 01c7 E..0=Y.....(.... 0x0010: c0a8 012e fe22 075b 7a44 382b 0000 0000 .....".[zD8+.... 0x0020: 7002 0860 4228 0000 0204 0218 0101 0402 p..`B(.......... Date=2021-07-20 Time=15:16:00 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=65058 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2789232064 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:04 0101021 IP 192.168.1.199.65058 > 192.168.1.46.1883 : proto TCP: S 2051291179:2051291179(0) win 2144 checksum : 16936 0x0000: 4500 0030 3d5a 0000 ff06 fa27 c0a8 01c7 E..0=Z.....'.... 0x0010: c0a8 012e fe22 075b 7a44 382b 0000 0000 .....".[zD8+.... 0x0020: 7002 0860 4228 0000 0204 0218 0101 0402 p..`B(.......... Date=2021-07-20 Time=15:16:04 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=65058 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2789232064 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:06 010202130 IP 192.168.1.199.65058 > 192.168.1.46.1883 : proto TCP: R 2051291180:2051291180(0) win 24584 checksum : 5012 0x0000: 4500 0028 3d5b 0000 ff06 fa2e c0a8 01c7 E..(=[.......... 0x0010: c0a8 012e fe22 075b 7a44 382c 0000 0000 .....".[zD8,.... 0x0020: 5014 6008 1394 0000 P.`..... Date=2021-07-20 Time=15:16:06 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=65058 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:11 0101021 IP 192.168.1.199.64917 > 192.168.1.46.1883 : proto TCP: S 2066617726:2066617726(0) win 2144 checksum : 25720 0x0000: 4500 0030 3d5c 0000 ff06 fa25 c0a8 01c7 E..0=\.....%.... 0x0010: c0a8 012e fd95 075b 7b2e 157e 0000 0000 .......[{..~.... 0x0020: 7002 0860 6478 0000 0204 0218 0101 0402 p..`dx.......... Date=2021-07-20 Time=15:16:11 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64917 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1251842304 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:13 0101021 IP 192.168.1.199.64917 > 192.168.1.46.1883 : proto TCP: S 2066617726:2066617726(0) win 2144 checksum : 25720 0x0000: 4500 0030 3d5d 0000 ff06 fa24 c0a8 01c7 E..0=].....$.... 0x0010: c0a8 012e fd95 075b 7b2e 157e 0000 0000 .......[{..~.... 0x0020: 7002 0860 6478 0000 0204 0218 0101 0402 p..`dx.......... Date=2021-07-20 Time=15:16:13 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64917 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1251836864 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:16 010202130 IP 192.168.1.199.64917 > 192.168.1.46.1883 : proto TCP: R 2066617727:2066617727(0) win 24584 checksum : 13796 0x0000: 4500 0028 3d5e 0000 ff06 fa2b c0a8 01c7 E..(=^.....+.... 0x0010: c0a8 012e fd95 075b 7b2e 157f 0000 0000 .......[{....... 0x0020: 5014 6008 35e4 0000 P.`.5... Date=2021-07-20 Time=15:16:16 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64917 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:21 0101021 IP 192.168.1.199.49916 > 192.168.1.46.1883 : proto TCP: S 2081944283:2081944283(0) win 2144 checksum : 49354 0x0000: 4500 0030 3d5f 0000 ff06 fa22 c0a8 01c7 E..0=_.....".... 0x0010: c0a8 012e c2fc 075b 7c17 f2db 0000 0000 .......[|....... 0x0020: 7002 0860 c0ca 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:16:21 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=49916 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1251838144 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:24 0101021 IP 192.168.1.199.49916 > 192.168.1.46.1883 : proto TCP: S 2081944283:2081944283(0) win 2144 checksum : 49354 0x0000: 4500 0030 3d60 0000 ff06 fa21 c0a8 01c7 E..0=`.....!.... 0x0010: c0a8 012e c2fc 075b 7c17 f2db 0000 0000 .......[|....... 0x0020: 7002 0860 c0ca 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:16:24 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=49916 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1251841664 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:26 010202130 IP 192.168.1.199.49916 > 192.168.1.46.1883 : proto TCP: R 2081944284:2081944284(0) win 24584 checksum : 37430 0x0000: 4500 0028 3d61 0000 ff06 fa28 c0a8 01c7 E..(=a.....(.... 0x0010: c0a8 012e c2fc 075b 7c17 f2dc 0000 0000 .......[|....... 0x0020: 5014 6008 9236 0000 P.`..6.. Date=2021-07-20 Time=15:16:26 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=49916 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:31 0101021 IP 192.168.1.199.52985 > 192.168.1.46.1883 : proto TCP: S 2097270851:2097270851(0) win 2144 checksum : 54907 0x0000: 4500 0030 3d62 0000 ff06 fa1f c0a8 01c7 E..0=b.......... 0x0010: c0a8 012e cef9 075b 7d01 d043 0000 0000 .......[}..C.... 0x0020: 7002 0860 d67b 0000 0204 0218 0101 0402 p..`.{.......... Date=2021-07-20 Time=15:16:31 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=52985 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652934016 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:34 0101021 IP 192.168.1.199.52985 > 192.168.1.46.1883 : proto TCP: S 2097270851:2097270851(0) win 2144 checksum : 54907 0x0000: 4500 0030 3d63 0000 ff06 fa1e c0a8 01c7 E..0=c.......... 0x0010: c0a8 012e cef9 075b 7d01 d043 0000 0000 .......[}..C.... 0x0020: 7002 0860 d67b 0000 0204 0218 0101 0402 p..`.{.......... Date=2021-07-20 Time=15:16:34 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=52985 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652928576 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:36 010202130 IP 192.168.1.199.52985 > 192.168.1.46.1883 : proto TCP: R 2097270852:2097270852(0) win 24584 checksum : 42983 0x0000: 4500 0028 3d64 0000 ff06 fa25 c0a8 01c7 E..(=d.....%.... 0x0010: c0a8 012e cef9 075b 7d01 d044 0000 0000 .......[}..D.... 0x0020: 5014 6008 a7e7 0000 P.`..... Date=2021-07-20 Time=15:16:36 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=52985 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:41 0101021 IP 192.168.1.199.57880 > 192.168.1.46.1883 : proto TCP: S 2112597429:2112597429(0) win 2144 checksum : 58624 0x0000: 4500 0030 3d65 0000 ff06 fa1c c0a8 01c7 E..0=e.......... 0x0010: c0a8 012e e218 075b 7deb adb5 0000 0000 .......[}....... 0x0020: 7002 0860 e500 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:16:41 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57880 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652932736 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:44 0101021 IP 192.168.1.199.57880 > 192.168.1.46.1883 : proto TCP: S 2112597429:2112597429(0) win 2144 checksum : 58624 0x0000: 4500 0030 3d66 0000 ff06 fa1b c0a8 01c7 E..0=f.......... 0x0010: c0a8 012e e218 075b 7deb adb5 0000 0000 .......[}....... 0x0020: 7002 0860 e500 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:16:44 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57880 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652928896 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:46 010202130 IP 192.168.1.199.57880 > 192.168.1.46.1883 : proto TCP: R 2112597430:2112597430(0) win 24584 checksum : 46700 0x0000: 4500 0028 3d67 0000 ff06 fa22 c0a8 01c7 E..(=g.....".... 0x0010: c0a8 012e e218 075b 7deb adb6 0000 0000 .......[}....... 0x0020: 5014 6008 b66c 0000 P.`..l.. Date=2021-07-20 Time=15:16:46 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57880 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:51 0101021 IP 192.168.1.199.58239 > 192.168.1.46.1883 : proto TCP: S 2127924017:2127924017(0) win 2144 checksum : 1332 0x0000: 4500 0030 3d68 0000 ff06 fa19 c0a8 01c7 E..0=h.......... 0x0010: c0a8 012e e37f 075b 7ed5 8b31 0000 0000 .......[~..1.... 0x0020: 7002 0860 0534 0000 0204 0218 0101 0402 p..`.4.......... Date=2021-07-20 Time=15:16:51 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=58239 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652926976 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:54 0101021 IP 192.168.1.199.58239 > 192.168.1.46.1883 : proto TCP: S 2127924017:2127924017(0) win 2144 checksum : 1332 0x0000: 4500 0030 3d69 0000 ff06 fa18 c0a8 01c7 E..0=i.......... 0x0010: c0a8 012e e37f 075b 7ed5 8b31 0000 0000 .......[~..1.... 0x0020: 7002 0860 0534 0000 0204 0218 0101 0402 p..`.4.......... Date=2021-07-20 Time=15:16:54 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=58239 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652927936 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:16:56 010202130 IP 192.168.1.199.58239 > 192.168.1.46.1883 : proto TCP: R 2127924018:2127924018(0) win 24584 checksum : 54943 0x0000: 4500 0028 3d6a 0000 ff06 fa1f c0a8 01c7 E..(=j.......... 0x0010: c0a8 012e e37f 075b 7ed5 8b32 0000 0000 .......[~..2.... 0x0020: 5014 6008 d69f 0000 P.`..... Date=2021-07-20 Time=15:16:56 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=58239 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:01 0101021 IP 192.168.1.199.60647 > 192.168.1.46.1883 : proto TCP: S 2143250616:2143250616(0) win 2144 checksum : 7515 0x0000: 4500 0030 3d6b 0000 ff06 fa16 c0a8 01c7 E..0=k.......... 0x0010: c0a8 012e ece7 075b 7fbf 68b8 0000 0000 .......[..h..... 0x0020: 7002 0860 1d5b 0000 0204 0218 0101 0402 p..`.[.......... Date=2021-07-20 Time=15:17:01 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=60647 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=652932416 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:04 0101021 IP 192.168.1.199.60647 > 192.168.1.46.1883 : proto TCP: S 2143250616:2143250616(0) win 2144 checksum : 7515 0x0000: 4500 0030 3d6c 0000 ff06 fa15 c0a8 01c7 E..0=l.......... 0x0010: c0a8 012e ece7 075b 7fbf 68b8 0000 0000 .......[..h..... 0x0020: 7002 0860 1d5b 0000 0204 0218 0101 0402 p..`.[.......... Date=2021-07-20 Time=15:17:04 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=60647 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1257005376 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:06 010202130 IP 192.168.1.199.60647 > 192.168.1.46.1883 : proto TCP: R 2143250617:2143250617(0) win 24584 checksum : 61126 0x0000: 4500 0028 3d6d 0000 ff06 fa1c c0a8 01c7 E..(=m.......... 0x0010: c0a8 012e ece7 075b 7fbf 68b9 0000 0000 .......[..h..... 0x0020: 5014 6008 eec6 0000 P.`..... Date=2021-07-20 Time=15:17:06 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=60647 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:11 0101021 IP 192.168.1.199.59794 > 192.168.1.46.1883 : proto TCP: S 2158577225:2158577225(0) win 2144 checksum : 16949 0x0000: 4500 0030 3d6e 0000 ff06 fa13 c0a8 01c7 E..0=n.......... 0x0010: c0a8 012e e992 075b 80a9 4649 0000 0000 .......[..FI.... 0x0020: 7002 0860 4235 0000 0204 0218 0101 0402 p..`B5.......... Date=2021-07-20 Time=15:17:11 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=59794 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1257011776 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:15 0101021 IP 192.168.1.199.59794 > 192.168.1.46.1883 : proto TCP: S 2158577225:2158577225(0) win 2144 checksum : 16949 0x0000: 4500 0030 3d6f 0000 ff06 fa12 c0a8 01c7 E..0=o.......... 0x0010: c0a8 012e e992 075b 80a9 4649 0000 0000 .......[..FI.... 0x0020: 7002 0860 4235 0000 0204 0218 0101 0402 p..`B5.......... Date=2021-07-20 Time=15:17:15 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=59794 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1257009856 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:17 010202130 IP 192.168.1.199.59794 > 192.168.1.46.1883 : proto TCP: R 2158577226:2158577226(0) win 24584 checksum : 5025 0x0000: 4500 0028 3d70 0000 ff06 fa19 c0a8 01c7 E..(=p.......... 0x0010: c0a8 012e e992 075b 80a9 464a 0000 0000 .......[..FJ.... 0x0020: 5014 6008 13a1 0000 P.`..... Date=2021-07-20 Time=15:17:17 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=59794 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:22 0101021 IP 192.168.1.199.63541 > 192.168.1.46.1883 : proto TCP: S 2173903844:2173903844(0) win 2144 checksum : 21773 0x0000: 4500 0030 3d71 0000 ff06 fa10 c0a8 01c7 E..0=q.......... 0x0010: c0a8 012e f835 075b 8193 23e4 0000 0000 .....5.[..#..... 0x0020: 7002 0860 550d 0000 0204 0218 0101 0402 p..`U........... Date=2021-07-20 Time=15:17:22 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=63541 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256322048 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:24 0101021 IP 192.168.1.46. > 192.168.1.199. :proto ICMP: echo request seq 8351 0x0000: 4500 003c 1e5e 4000 8001 581d c0a8 012e E..<.^@...X..... 0x0010: c0a8 01c7 0800 b12e 000c 209f 6262 6262 ............bbbb 0x0020: 6262 6262 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbbbbbb 0x0030: 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbb Date=2021-07-20 Time=15:17:24 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port2 out_dev=Port3 inzone_id=1 outzone_id=1 source_mac=a0:2b:b8:2e:4a:bb dest_mac=2c:f4:32:4a:9f:16 bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.46 dest_ip=192.168.1.199 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1236723584 masterid=0 status=256 state=0, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:25 0101021 IP 192.168.1.199.63541 > 192.168.1.46.1883 : proto TCP: S 2173903844:2173903844(0) win 2144 checksum : 21773 0x0000: 4500 0030 3d72 0000 ff06 fa0f c0a8 01c7 E..0=r.......... 0x0010: c0a8 012e f835 075b 8193 23e4 0000 0000 .....5.[..#..... 0x0020: 7002 0860 550d 0000 0204 0218 0101 0402 p..`U........... Date=2021-07-20 Time=15:17:25 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=63541 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256323968 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:27 010202130 IP 192.168.1.199.63541 > 192.168.1.46.1883 : proto TCP: R 2173903845:2173903845(0) win 24584 checksum : 9849 0x0000: 4500 0028 3d73 0000 ff06 fa16 c0a8 01c7 E..(=s.......... 0x0010: c0a8 012e f835 075b 8193 23e5 0000 0000 .....5.[..#..... 0x0020: 5014 6008 2679 0000 P.`.&y.. Date=2021-07-20 Time=15:17:27 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=63541 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:32 0101021 IP 192.168.1.199.62772 > 192.168.1.46.1883 : proto TCP: S 2189230473:2189230473(0) win 2144 checksum : 31103 0x0000: 4500 0030 3d74 0000 ff06 fa0d c0a8 01c7 E..0=t.......... 0x0010: c0a8 012e f534 075b 827d 0189 0000 0000 .....4.[.}...... 0x0020: 7002 0860 797f 0000 0204 0218 0101 0402 p..`y........... Date=2021-07-20 Time=15:17:32 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=62772 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256323648 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:35 0101021 IP 192.168.1.199.62772 > 192.168.1.46.1883 : proto TCP: S 2189230473:2189230473(0) win 2144 checksum : 31103 0x0000: 4500 0030 3d75 0000 ff06 fa0c c0a8 01c7 E..0=u.......... 0x0010: c0a8 012e f534 075b 827d 0189 0000 0000 .....4.[.}...... 0x0020: 7002 0860 797f 0000 0204 0218 0101 0402 p..`y........... Date=2021-07-20 Time=15:17:35 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=62772 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256319488 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:37 010202130 IP 192.168.1.199.62772 > 192.168.1.46.1883 : proto TCP: R 2189230474:2189230474(0) win 24584 checksum : 19179 0x0000: 4500 0028 3d76 0000 ff06 fa13 c0a8 01c7 E..(=v.......... 0x0010: c0a8 012e f534 075b 827d 018a 0000 0000 .....4.[.}...... 0x0020: 5014 6008 4aeb 0000 P.`.J... Date=2021-07-20 Time=15:17:37 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=62772 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:42 0101021 IP 192.168.1.199.57668 > 192.168.1.46.1883 : proto TCP: S 2204557113:2204557113(0) win 2144 checksum : 44757 0x0000: 4500 0030 3d77 0000 ff06 fa0a c0a8 01c7 E..0=w.......... 0x0010: c0a8 012e e144 075b 8366 df39 0000 0000 .....D.[.f.9.... 0x0020: 7002 0860 aed5 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:17:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57668 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256318208 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:42 0101021 IP 192.168.1.46. > 192.168.1.199. :proto ICMP: echo request seq 8422 0x0000: 4500 003c 1e5f 4000 8001 581c c0a8 012e E..<._@...X..... 0x0010: c0a8 01c7 0800 b0e7 000c 20e6 6262 6262 ............bbbb 0x0020: 6262 6262 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbbbbbb 0x0030: 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbb Date=2021-07-20 Time=15:17:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port2 out_dev=Port3 inzone_id=1 outzone_id=1 source_mac=a0:2b:b8:2e:4a:bb dest_mac=2c:f4:32:4a:9f:16 bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.46 dest_ip=192.168.1.199 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1233682432 masterid=0 status=256 state=0, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:42 0101021 IP 192.168.1.46. > 192.168.1.199. :proto ICMP: echo request seq 8423 0x0000: 4500 003c 1e60 4000 8001 581b c0a8 012e E..<.`@...X..... 0x0010: c0a8 01c7 0800 b0e6 000c 20e7 6262 6262 ............bbbb 0x0020: 6262 6262 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbbbbbb 0x0030: 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbb Date=2021-07-20 Time=15:17:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port2 out_dev=Port3 inzone_id=1 outzone_id=1 source_mac=a0:2b:b8:2e:4a:bb dest_mac=2c:f4:32:4a:9f:16 bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.46 dest_ip=192.168.1.199 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1233682432 masterid=0 status=256 state=0, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:43 0101021 IP 192.168.1.46. > 192.168.1.199. :proto ICMP: echo request seq 8424 0x0000: 4500 003c 1e61 4000 8001 581a c0a8 012e E..<.a@...X..... 0x0010: c0a8 01c7 0800 b0e5 000c 20e8 6262 6262 ............bbbb 0x0020: 6262 6262 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbbbbbb 0x0030: 6262 6262 6262 6262 6262 6262 bbbbbbbbbbbb Date=2021-07-20 Time=15:17:43 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port2 out_dev=Port3 inzone_id=1 outzone_id=1 source_mac=a0:2b:b8:2e:4a:bb dest_mac=2c:f4:32:4a:9f:16 bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.46 dest_ip=192.168.1.199 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1233682432 masterid=0 status=256 state=0, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:45 0101021 IP 192.168.1.199.57668 > 192.168.1.46.1883 : proto TCP: S 2204557113:2204557113(0) win 2144 checksum : 44757 0x0000: 4500 0030 3d78 0000 ff06 fa09 c0a8 01c7 E..0=x.......... 0x0010: c0a8 012e e144 075b 8366 df39 0000 0000 .....D.[.f.9.... 0x0020: 7002 0860 aed5 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:17:45 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57668 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256317248 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:47 010202130 IP 192.168.1.199.57668 > 192.168.1.46.1883 : proto TCP: R 2204557114:2204557114(0) win 24584 checksum : 32833 0x0000: 4500 0028 3d79 0000 ff06 fa10 c0a8 01c7 E..(=y.......... 0x0010: c0a8 012e e144 075b 8366 df3a 0000 0000 .....D.[.f.:.... 0x0020: 5014 6008 8041 0000 P.`..A.. Date=2021-07-20 Time=15:17:47 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=57668 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:52 0101021 IP 192.168.1.199.49783 > 192.168.1.46.1883 : proto TCP: S 2219883763:2219883763(0) win 2144 checksum : 61182 0x0000: 4500 0030 3d7a 0000 ff06 fa07 c0a8 01c7 E..0=z.......... 0x0010: c0a8 012e c277 075b 8450 bcf3 0000 0000 .....w.[.P...... 0x0020: 7002 0860 eefe 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:17:52 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=49783 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256321728 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:55 0101021 IP 192.168.1.199.49783 > 192.168.1.46.1883 : proto TCP: S 2219883763:2219883763(0) win 2144 checksum : 61182 0x0000: 4500 0030 3d7b 0000 ff06 fa06 c0a8 01c7 E..0={.......... 0x0010: c0a8 012e c277 075b 8450 bcf3 0000 0000 .....w.[.P...... 0x0020: 7002 0860 eefe 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:17:55 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=49783 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256322688 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:17:57 010202130 IP 192.168.1.199.49783 > 192.168.1.46.1883 : proto TCP: R 2219883764:2219883764(0) win 24584 checksum : 49258 0x0000: 4500 0028 3d7c 0000 ff06 fa0d c0a8 01c7 E..(=|.......... 0x0010: c0a8 012e c277 075b 8450 bcf4 0000 0000 .....w.[.P...... 0x0020: 5014 6008 c06a 0000 P.`..j.. Date=2021-07-20 Time=15:17:57 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=49783 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:02 0101021 IP 192.168.1.199.64812 > 192.168.1.46.1883 : proto TCP: S 2235210424:2235210424(0) win 2144 checksum : 54682 0x0000: 4500 0030 3d7d 0000 ff06 fa04 c0a8 01c7 E..0=}.......... 0x0010: c0a8 012e fd2c 075b 853a 9ab8 0000 0000 .....,.[.:...... 0x0020: 7002 0860 d59a 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:18:02 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64812 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256322688 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:05 0101021 IP 192.168.1.199.64812 > 192.168.1.46.1883 : proto TCP: S 2235210424:2235210424(0) win 2144 checksum : 54682 0x0000: 4500 0030 3d7e 0000 ff06 fa03 c0a8 01c7 E..0=~.......... 0x0010: c0a8 012e fd2c 075b 853a 9ab8 0000 0000 .....,.[.:...... 0x0020: 7002 0860 d59a 0000 0204 0218 0101 0402 p..`............ Date=2021-07-20 Time=15:18:05 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64812 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256690688 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:07 010202130 IP 192.168.1.199.64812 > 192.168.1.46.1883 : proto TCP: R 2235210425:2235210425(0) win 24584 checksum : 42758 0x0000: 4500 0028 3d7f 0000 ff06 fa0a c0a8 01c7 E..(=........... 0x0010: c0a8 012e fd2c 075b 853a 9ab9 0000 0000 .....,.[.:...... 0x0020: 5014 6008 a706 0000 P.`..... Date=2021-07-20 Time=15:18:07 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=64812 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:12 0101021 IP 192.168.1.199.49205 > 192.168.1.46.1883 : proto TCP: S 2250537095:2250537095(0) win 2144 checksum : 13273 0x0000: 4500 0030 3d80 0000 ff06 fa01 c0a8 01c7 E..0=........... 0x0010: c0a8 012e c035 075b 8624 7887 0000 0000 .....5.[.$x..... 0x0020: 7002 0860 33d9 0000 0204 0218 0101 0402 p..`3........... Date=2021-07-20 Time=15:18:12 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=49205 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256692608 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:15 0101021 IP 192.168.1.199.49205 > 192.168.1.46.1883 : proto TCP: S 2250537095:2250537095(0) win 2144 checksum : 13273 0x0000: 4500 0030 3d81 0000 ff06 fa00 c0a8 01c7 E..0=........... 0x0010: c0a8 012e c035 075b 8624 7887 0000 0000 .....5.[.$x..... 0x0020: 7002 0860 33d9 0000 0204 0218 0101 0402 p..`3........... Date=2021-07-20 Time=15:18:15 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=49205 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256688448 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:17 010202130 IP 192.168.1.199.49205 > 192.168.1.46.1883 : proto TCP: R 2250537096:2250537096(0) win 24584 checksum : 1349 0x0000: 4500 0028 3d82 0000 ff06 fa07 c0a8 01c7 E..(=........... 0x0010: c0a8 012e c035 075b 8624 7888 0000 0000 .....5.[.$x..... 0x0020: 5014 6008 0545 0000 P.`..E.. Date=2021-07-20 Time=15:18:17 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=49205 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:22 0101021 IP 192.168.1.199.53833 > 192.168.1.46.1883 : proto TCP: S 2265863776:2265863776(0) win 2144 checksum : 17154 0x0000: 4500 0030 3d83 0000 ff06 f9fe c0a8 01c7 E..0=........... 0x0010: c0a8 012e d249 075b 870e 5660 0000 0000 .....I.[..V`.... 0x0020: 7002 0860 4302 0000 0204 0218 0101 0402 p..`C........... Date=2021-07-20 Time=15:18:22 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=53833 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1256691008 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:25 0101021 IP 192.168.1.199.53833 > 192.168.1.46.1883 : proto TCP: S 2265863776:2265863776(0) win 2144 checksum : 17154 0x0000: 4500 0030 3d84 0000 ff06 f9fd c0a8 01c7 E..0=........... 0x0010: c0a8 012e d249 075b 870e 5660 0000 0000 .....I.[..V`.... 0x0020: 7002 0860 4302 0000 0204 0218 0101 0402 p..`C........... Date=2021-07-20 Time=15:18:25 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=53833 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1251841024 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:28 010202130 IP 192.168.1.199.53833 > 192.168.1.46.1883 : proto TCP: R 2265863777:2265863777(0) win 24584 checksum : 5230 0x0000: 4500 0028 3d85 0000 ff06 fa04 c0a8 01c7 E..(=........... 0x0010: c0a8 012e d249 075b 870e 5661 0000 0000 .....I.[..Va.... 0x0020: 5014 6008 146e 0000 P.`..n.. Date=2021-07-20 Time=15:18:28 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=53833 dest_port=1883 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:33 0101021 IP 192.168.1.199.63376 > 192.168.1.46.1883 : proto TCP: S 2281190468:2281190468(0) win 2144 checksum : 16109 0x0000: 4500 0030 3d86 0000 ff06 f9fb c0a8 01c7 E..0=........... 0x0010: c0a8 012e f790 075b 87f8 3444 0000 0000 .......[..4D.... 0x0020: 7002 0860 3eed 0000 0204 0218 0101 0402 p..`>........... Date=2021-07-20 Time=15:18:33 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=63376 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1251838144 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0 2021-07-20 15:18:36 0101021 IP 192.168.1.199.63376 > 192.168.1.46.1883 : proto TCP: S 2281190468:2281190468(0) win 2144 checksum : 16109 0x0000: 4500 0030 3d87 0000 ff06 f9fa c0a8 01c7 E..0=........... 0x0010: c0a8 012e f790 075b 87f8 3444 0000 0000 .......[..4D.... 0x0020: 7002 0860 3eed 0000 0204 0218 0101 0402 p..`>........... Date=2021-07-20 Time=15:18:36 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=Port3 out_dev=Port2 inzone_id=1 outzone_id=1 source_mac=2c:f4:32:4a:9f:16 dest_mac=a0:2b:b8:2e:4a:bb bridge_name=Bridge l3_protocol=IPv4 source_ip=192.168.1.199 dest_ip=192.168.1.46 l4_protocol=TCP source_port=63376 dest_port=1883 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1251837824 masterid=0 status=256 state=1, flag0=588412616704 flags1=35184372088832 pbdid_dir0=0 pbrid_dir1=0