2022-12-07 17:02:35 0101021 IP 192.168.178.2.53604 > 40.99.150.18.443 : proto TCP: S 2492438557:2492438557(0) win 65280 checksum : 16267 0x0000: 4500 0034 8d23 4000 7f06 3d80 c0a8 b202 E..4.#@...=..... 0x0010: 2863 9612 d164 01bb 948f 981d 0000 0000 (c...d.......... 0x0020: 8002 ff00 3f8b 0000 0204 054b 0103 0308 ....?......K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:02:35 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.99.150.18 l4_protocol=TCP source_port=53604 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_ id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id= 0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2863589005 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:35 0101021 IP 192.168.178.2.49335 > 142.250.185.67.443 : proto UDP: packet len: 1258 checksum : 54936 0x0000: 4500 04fe e3e4 4000 7f11 5821 c0a8 b202 E.....@...X!.... 0x0010: 8efa b943 c0b7 01bb 04ea d698 c500 0000 ...C............ 0x0020: 0108 df1e 11c7 208d 510c 0040 4700 8be1 ........Q..@G... 0x0030: bf26 ec3a 2d18 c31f dde5 08df 9eb5 369b .&.:-.........6. 0x0040: 93c1 ab08 7ca5 df2c 6243 851a 5c4b 2c72 ....|..,bC..\K,r 0x0050: efd9 d01a 5861 00df 0603 1b2a 5b28 4416 ....Xa.....*[(D. 0x0060: 5686 8bf3 8f66 3381 894d 082e c9cd 4764 V....f3..M....Gd 0x0070: fb7a f806 4488 c2da 2177 7ec0 7a69 5bad .z..D...!w~.zi[. 0x0080: b0dc 3bb7 4329 1f66 5ccc 69bb 7f19 c272 ..;.C).f\.i....r 0x0090: 064f 8ba3 2258 7253 ff48 8764 d5cd c79d .O.."XrS.H.d.... 0x00a0: 58b1 cb60 782e f4cc 8633 ab4b 9fd4 b931 X..`x....3.K...1 0x00b0: 91ae dee6 5431 6e49 c225 d177 4213 3127 ....T1nI.%.wB.1' 0x00c0: 55e7 48f9 8230 c24f 953e bdc4 e533 a668 U.H..0.O.>...3.h 0x00d0: f0f0 a321 29e1 6aa9 f29f 0ff7 3943 60fc ...!).j.....9C`. 0x00e0: 1813 8d1f 07bb b386 358d e540 4f61 13eb ........5..@Oa.. 0x00f0: 914a 2003 82b8 ce23 e277 32b4 4747 2fbc .J.....#.w2.GG/. 0x0100: 1b1b 0c0b 6a9d ab98 a8a2 d02c 6182 591c ....j......,a.Y. 0x0110: e3ea ec81 0949 721c a6fb 1344 37d1 e614 .....Ir....D7... 0x0120: 7cb1 17e1 4bb4 a029 cc9d 3d07 024f 7e89 |...K..)..=..O~. 0x0130: 1684 17aa c4d6 5603 84cd d251 eee7 9417 ......V....Q.... 0x0140: b826 d501 f24a 660f b780 acfe ee19 3f5e .&...Jf.......?^ 0x0150: 6273 0881 5337 1ee2 0704 6034 67bb 2987 bs..S7....`4g.). 0x0160: f5e0 fb72 a04d ef15 b5c5 a7ce 0b61 c4fc ...r.M.......a.. 0x0170: b1c0 5d28 7a6d 7140 c1f6 6642 6ad8 dfdd ..](zmq@..fBj... 0x0180: 2fe4 ffa3 882b 31da c1b7 6c52 93cd ecdd /....+1...lR.... 0x0190: dd93 bd0d 9039 22ff 1e5c ee69 dd83 01eb .....9"..\.i.... 0x01a0: efa9 74a6 44cf 7ab1 e75c e9c2 21e3 c81d ..t.D.z..\..!... 0x01b0: deb7 6541 e751 8c26 1691 4605 8831 6b6f ..eA.Q.&..F..1ko 0x01c0: 21f9 4bc6 6ffd 84d8 624d 1397 475f f2b8 !.K.o...bM..G_.. 0x01d0: ca10 d11e 9e6d 41c1 15af 19a9 1e13 1b46 .....mA........F 0x01e0: ba21 0477 2fc4 bca4 d1cb a8cb ab9e b100 .!.w/........... 0x01f0: b42c 54d2 cfdc 6ba9 7f23 77bf d542 442d .,T...k..#w..BD- 0x0200: 8592 eb24 2851 4405 ac9e e96d b7c1 ce63 ...$(QD....m...c 0x0210: 25c9 0c96 b342 8b28 31b7 50e7 d84b 1809 %....B.(1.P..K.. 0x0220: 4a6d ee2d 06c1 dc6f 2297 e0e9 37b0 98f4 Jm.-...o"...7... 0x0230: 866c 0464 9588 8e77 fc6f e5a6 c79d 95a9 .l.d...w.o...... 0x0240: 7758 7a1d 9afc ab82 b772 4cec 6f80 0ad4 wXz......rL.o... 0x0250: 4657 777f 0122 334f 3d2f 17e3 8ac5 03b0 FWw.."3O=/...... 0x0260: 99e1 4123 1809 f41b 898a 9e3b 69de a5da ..A#.......;i... 0x0270: cc26 dc3f 7b08 1ce2 25be a974 c039 e26f .&.?{...%..t.9.o 0x0280: f158 f4ac d79f f11c a463 d3e7 e747 5c4d .X.......c...G\M 0x0290: 49ce ea25 c497 01c8 859d 93d1 e005 2c6d I..%..........,m 0x02a0: 7e9d 642b 2994 5847 f024 d214 c4b1 194e ~.d+).XG.$.....N 0x02b0: 3187 6c15 5c62 e46d d9f5 902a fe35 2354 1.l.\b.m...*.5#T 0x02c0: 0d25 776f c408 9aa2 70fd 1dc1 4d18 e427 .%wo....p...M..' 0x02d0: 6960 c67b a1cc bdfd 630a 0bda 3aa7 6941 i`.{....c...:.iA 0x02e0: 7826 d3ea aa47 a80b f969 760c 9cb8 2919 x&...G...iv...). 0x02f0: 1300 b737 c908 d09f c4c9 bc5c f887 0691 ...7.......\.... 0x0300: b0cc f1e5 0300 6a85 3a42 d7d6 3fe1 2783 ......j.:B..?.'. 0x0310: 3387 dd36 df77 d8ae 9da2 1877 ca5e eff8 3..6.w.....w.^.. 0x0320: c636 4375 b603 2492 c2d2 df7d 0f24 fb84 .6Cu..$....}.$.. 0x0330: 63b8 aff6 e078 a2d6 bcfd 5004 6149 2b13 c....x....P.aI+. 0x0340: 1027 0f5d 523f 49dd cdf2 bdc5 44e9 9722 .'.]R?I.....D.." 0x0350: a2a9 fb73 0fe4 4c24 91f7 8239 da89 60fa ...s..L$...9..`. 0x0360: a32b 1f40 dd77 9106 9d3c f248 37d9 7f54 .+.@.w...<.H7..T 0x0370: ee6e ef9d 72c0 864d ef0c 5ea3 cab3 9c9b .n..r..M..^..... 0x0380: 004f 8c68 2141 142e 7497 811f e42a 1f52 .O.h!A..t....*.R 0x0390: a890 f29b 56c7 1d2b ba3f bb4e a120 6642 ....V..+.?.N..fB 0x03a0: 8e56 1d5e c9b0 5f70 8d04 282e 8d8c e66c .V.^.._p..(....l 0x03b0: 14cf c525 b1f2 db0d 6524 449a a830 a89e ...%....e$D..0.. 0x03c0: 5eaf 3eb0 0ad4 114a 7384 e5ad 43ac b65c ^.>....Js...C..\ 0x03d0: 604a ca0e dae6 e3be 3b61 b4bf b4c2 7806 `J......;a....x. 0x03e0: 3231 3add 6f43 e79f 5ec8 e546 36e1 799b 21:.oC..^..F6.y. 0x03f0: b072 1972 392f 8792 7574 7e68 bff9 6da0 .r.r9/..ut~h..m. 0x0400: 9933 a658 b108 8742 115b 5791 f60c 4263 .3.X...B.[W...Bc 0x0410: ab63 2ff1 5212 ad1d 3336 87c6 71ac 2731 .c/.R...36..q.'1 0x0420: cf2e c7ff 13a3 a7d0 cf03 bbff 4298 ffdc ............B... 0x0430: 4a09 df0b c190 b904 95e7 9976 5e40 89da J..........v^@.. 0x0440: b364 f0c2 61f6 d526 c7ca 7f49 c990 0fd5 .d..a..&...I.... 0x0450: 9ebe 17c1 a8fa 9345 8d39 144e 289d e81d .......E.9.N(... 0x0460: 5a93 7d9b e227 cdc5 5646 dfd5 ca53 3a6a Z.}..'..VF...S:j 0x0470: af26 97b3 8738 84e7 56af 5dbb cf18 7e1d .&...8..V.]...~. 0x0480: 0e90 b0f1 17b3 b584 34bc a736 eaaa 9d0c ........4..6.... 0x0490: 6816 af08 2793 62b2 0094 e36a 4629 deb5 h...'.b....jF).. 0x04a0: 3214 26a3 1a79 bfbb 8ea8 fa08 9268 7cdf 2.&..y.......h|. 0x04b0: 6fb6 a827 de3d 7349 a4b3 25e8 7ac4 b5f3 o..'.=sI..%.z... 0x04c0: 54d2 efdb a979 f714 1d95 549e 11e6 546c T....y....T...Tl 0x04d0: 6994 feed 7eff 3205 a1b1 1f04 8e3e daad i...~.2......>.. 0x04e0: e3e4 e855 ea27 29e6 e973 8069 8007 6750 ...U.')..s.i..gP 0x04f0: de69 61a5 9479 1c90 29e6 ecc6 0f9b .ia..y..)..... Date=2022-12-07 Time=17:02:35 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=UDP source_port=49335 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ip s_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_i d=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2079398888 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:35 0101021 IP 192.168.178.2.53605 > 40.99.150.18.443 : proto TCP: S 3566332860:3566332860(0) win 65280 checksum : 44008 0x0000: 4500 0034 8d24 4000 7f06 3d7f c0a8 b202 E..4.$@...=..... 0x0010: 2863 9612 d165 01bb d491 ebbc 0000 0000 (c...e.......... 0x0020: 8002 ff00 abe8 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:02:35 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.99.150.18 l4_protocol=TCP source_port=53605 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_ id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id= 0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2147675544 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:35 0101021 IP 192.168.178.2.53606 > 40.99.150.18.443 : proto TCP: S 4281591340:4281591340(0) win 65280 checksum : 34517 0x0000: 4500 0034 8d25 4000 7f06 3d7e c0a8 b202 E..4.%@...=~.... 0x0010: 2863 9612 d166 01bb ff33 e62c 0000 0000 (c...f...3.,.... 0x0020: 8002 ff00 86d5 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:02:35 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.99.150.18 l4_protocol=TCP source_port=53606 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_ id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id= 0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=4267586961 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:35 0101021 IP 192.168.178.2.60735 > 172.16.0.5.53 : proto UDP: packet len: 42 checksum : 62835 0x0000: 4500 003e d9f6 0000 7f11 42f8 c0a8 b202 E..>......B..... 0x0010: ac10 0005 ed3f 0035 002a f573 fded 0100 .....?.5.*.s.... 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:02:35 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=60735 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id= 0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 c luster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3708218423 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:35 0101021 IP 192.168.178.2.53029 > 172.16.0.5.53 : proto UDP: packet len: 45 checksum : 6767 0x0000: 4500 0041 d9f7 0000 7f11 42f4 c0a8 b202 E..A......B..... 0x0010: ac10 0005 cf25 0035 002d 1a6f 824e 0100 .....%.5.-.o.N.. 0x0020: 0001 0000 0000 0000 0974 7261 6e73 6c61 .........transla 0x0030: 7465 0667 6f6f 676c 6502 6465 0000 0100 te.google.de.... 0x0040: 01 . Date=2022-12-07 Time=17:02:35 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=53029 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id= 0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 c luster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=711437982 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:35 0101021 IP 192.168.178.2.53029 > 1.1.1.1.53 : proto UDP: packet len: 45 checksum : 50306 0x0000: 4500 0041 edb2 0000 7f11 d94c c0a8 b202 E..A.......L.... 0x0010: 0101 0101 cf25 0035 002d c482 824e 0100 .....%.5.-...N.. 0x0020: 0001 0000 0000 0000 0974 7261 6e73 6c61 .........transla 0x0030: 7465 0667 6f6f 676c 6502 6465 0000 0100 te.google.de.... 0x0040: 01 . Date=2022-12-07 Time=17:02:35 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=53029 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 s slvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 clus ter_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2796191881 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:36 0101021 IP 192.168.178.2.49335 > 142.250.185.67.443 : proto UDP: packet len: 1258 checksum : 3930 0x0000: 4500 04fe e3e5 4000 7f11 5820 c0a8 b202 E.....@...X..... 0x0010: 8efa b943 c0b7 01bb 04ea 0f5a cb00 0000 ...C.......Z.... 0x0020: 0108 df1e 11c7 208d 510c 0040 4700 8be1 ........Q..@G... 0x0030: bf26 ec3a 2d18 c31f dde5 08df 9eb5 369b .&.:-.........6. 0x0040: 93c1 ab08 7ca5 df2c 6243 851a 5c4b 2c72 ....|..,bC..\K,r 0x0050: efd9 d01a 5861 00df 0603 1b2a 5b28 4416 ....Xa.....*[(D. 0x0060: 5686 8bf3 8f66 3381 894d 082e c9cd 4764 V....f3..M....Gd 0x0070: fb7a f806 4488 f986 1114 1fca e4ed 440a .z..D.........D. 0x0080: aa5a 7832 0d75 e545 48c9 6fca 00b7 cac2 .Zx2.u.EH.o..... 0x0090: 59b0 f260 92d5 7c5f b963 9b9e cab1 caa8 Y..`..|_.c...... 0x00a0: 5746 6791 fa2f b71e 0b06 2f66 6755 32d2 WFg../..../fgU2. 0x00b0: cceb a3e3 691f a905 7f7e bc1c 81d2 0326 ....i....~.....& 0x00c0: 8fb5 b08c e961 76bf cca3 fe99 d138 6c15 .....av......8l. 0x00d0: 20b1 9e33 4d97 109e 4145 3310 2099 2b59 ...3M...AE3...+Y 0x00e0: e697 e310 684f 409f e210 ba55 5ed8 ca3e ....hO@....U^..> 0x00f0: 752c 73a7 735a 5fdd e35a ee3f 823d e5d1 u,s.sZ_..Z.?.=.. 0x0100: 93e9 bbd7 d2a4 1377 6689 c973 cb7b 81a5 .......wf..s.{.. 0x0110: 6a0e 476e 5433 64d7 19b0 d031 ecdd cc91 j.GnT3d....1.... 0x0120: 3f47 5c7c c20e a996 9874 67af 7e97 331d ?G\|.....tg.~.3. 0x0130: 7722 53fb 3783 613d 2794 a38d fa58 70f7 w"S.7.a='....Xp. 0x0140: 48db 01ad 618d 0ad3 0538 4913 5ea2 e7a7 H...a....8I.^... 0x0150: 94ea fa0a 7cf8 9d55 70be 64d0 fa87 e15b ....|..Up.d....[ 0x0160: 168d 41c5 3c44 fabd 081b 33dc 6b67 da1f ..A.U....( 0x01f0: f5ca ee82 0821 6c77 6d75 46fc 6cec ffad .....!lwmuF.l... 0x0200: e6cd 1460 f246 cef7 e127 bde8 0271 f757 ...`.F...'...q.W 0x0210: d474 dce8 5197 aea6 6a2e 7564 27b3 08d5 .t..Q...j.ud'... 0x0220: 1dda ba79 e77c 4db4 bc00 b27f 3d7c 6032 ...y.|M.....=|`2 0x0230: d999 90f9 1d9b eec6 f5ea 282a d867 cae3 ..........(*.g.. 0x0240: 8e5e e222 cf45 70f5 d30f dfbc ef0b a9ca .^.".Ep......... 0x0250: c063 f005 94c4 9f9e 225d 95f4 1bbb 76a0 .c......"]....v. 0x0260: c7a9 75fb 6398 01b7 8b54 9501 ee04 7dd2 ..u.c....T....}. 0x0270: 1b9a 145d 7b00 bad6 ce27 04c1 bce7 2216 ...]{....'....". 0x0280: e94f 9cca 2916 7196 4038 c811 1ee5 717b .O..).q.@8....q{ 0x0290: fa92 cf10 7f87 1d10 a4d8 b8b9 d987 31b5 ..............1. 0x02a0: b7e1 ffec 3358 bd52 4ac6 9c43 b8fe 8929 ....3X.RJ..C...) 0x02b0: dd56 0056 979f e8ac 33b8 32f8 4f4f 6c08 .V.V....3.2.OOl. 0x02c0: 2ff5 ba80 1830 5876 937d 8e5b cfba 0165 /....0Xv.}.[...e 0x02d0: d30d 5f80 edb2 1a7a 7293 ddf7 e332 683a .._....zr....2h: 0x02e0: 41de 3fde 2361 9e6d 063e 9321 321b 1df0 A.?.#a.m.>.!2... 0x02f0: da0b b326 ba14 4dbd 03b8 b6ad 99f0 b527 ...&..M........' 0x0300: bef6 eb10 85d5 ac0b 6a96 5453 01c9 d645 ........j.TS...E 0x0310: 9ed7 14c1 5a32 bd64 9617 3c9d 1f21 3711 ....Z2.d..<..!7. 0x0320: 70ae 9e4b 5a0c fe1c 73a4 ea04 aec0 e6fa p..KZ...s....... 0x0330: 86df e524 30dd 1ccc a1bf 7f94 0b11 a25e ...$0..........^ 0x0340: 75ee db23 a39a 2f95 8d34 5db6 98a6 ccd2 u..#../..4]..... 0x0350: 564f 0a92 3659 e45f bba2 bb50 fdff adca VO..6Y._...P.... 0x0360: 9f6e 2666 de43 6841 33dc 27c2 19fb cb61 .n&f.ChA3.'....a 0x0370: db3d 463d 2b79 9793 e5fc 8f60 e99e 3130 .=F=+y.....`..10 0x0380: abd4 fb48 9012 bc86 e9bd 4f2a 4878 db9e ...H......O*Hx.. 0x0390: 560d aefd 6b4f 3d60 f393 3be3 7dbc 6318 V...kO=`..;.}.c. 0x03a0: dfee 74f0 ebdb 4e06 fa49 abb2 c837 3c81 ..t...N..I...7<. 0x03b0: f484 6486 9ca3 d50f 5a4c 7242 1c63 07cd ..d.....ZLrB.c.. 0x03c0: fedf 378b cf3c 9df4 59af 874c 66c0 efd3 ..7..<..Y..Lf... 0x03d0: 8325 6972 1ced b475 3b74 82fe 3212 fbc8 .%ir...u;t..2... 0x03e0: d36c 3cfe 6293 625e 4773 450c 8511 9b2a .l<.b.b^GsE....* 0x03f0: 0b33 0399 88f3 d996 0164 d2e6 5ba0 5c5d .3.......d..[.\] 0x0400: 67b1 82e3 d832 300a 16f1 2db8 a36d bf81 g....20...-..m.. 0x0410: 8ce5 2021 3a1e 96b7 8cff 7998 3be3 d929 ...!:.....y.;..) 0x0420: 2453 6e22 66c2 3dd5 43e9 880f 6c14 6c17 $Sn"f.=.C...l.l. 0x0430: 0ecb f520 01ac a651 b028 6dba 75e6 2b5b .......Q.(m.u.+[ 0x0440: 8285 826a a1a1 f669 3ba3 9dec 7213 aa15 ...j...i;...r... 0x0450: 9f4a 9e32 b982 fdb4 f16a 952d 4f38 dca2 .J.2.....j.-O8.. 0x0460: f439 88bb 0e55 2b87 7f25 797b f615 967b .9...U+..%y{...{ 0x0470: fba0 8d62 dfac 84b2 d70b 5f22 dd98 55da ...b......_"..U. 0x0480: 9d39 a9a0 f7f3 ce90 426f d44d 61fd 8022 .9......Bo.Ma.." 0x0490: 0036 61ad 4059 1e0f be18 0c3e 8534 f194 .6a.@Y.....>.4.. 0x04a0: e58d 813e c47c 264b 3d80 60a1 1feb bd87 ...>.|&K=.`..... 0x04b0: ecc2 b6f1 67af aa26 fabc a0cf dc0c caf2 ....g..&........ 0x04c0: f963 9d8f e254 ebf8 c0aa ead6 0490 0a95 .c...T.......... 0x04d0: 7a56 13d4 ddfd 7ca0 3fe7 68fb 2083 3f6b zV....|.?.h...?k 0x04e0: 8851 e10b effd 33a1 7932 8017 3f29 733d .Q....3.y2..?)s= 0x04f0: 12a9 dea9 4ab2 dbff 8a73 089c 5753 ....J....s..WS Date=2022-12-07 Time=17:02:36 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=UDP source_port=49335 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ip s_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_i d=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2079398888 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:36 010202130 IP 192.168.178.2.53542 > 176.32.110.78.443 : proto TCP: R 542336812:542336812(0) checksum : 40311 0x0000: 4500 0028 cea1 4000 8006 9b14 c0a8 b202 E..(..@......... 0x0010: b020 6e4e d126 01bb 2053 672c 8d6a 9973 ..nN.&...Sg,.j.s 0x0020: 5014 0000 9d77 0000 P....w.. Date=2022-12-07 Time=17:02:36 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev= out_dev= inzone_id=0 outzone_id=0 sourc e_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=176.32.110.78 l4_protocol=TCP source_port=53542 dest_port=443 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id =0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:36 010202130 IP 192.168.178.2.53543 > 176.32.110.78.443 : proto TCP: R 3443400261:3443400261(0) checksum : 32909 0x0000: 4500 0028 cea2 4000 8006 9b13 c0a8 b202 E..(..@......... 0x0010: b020 6e4e d127 01bb cd3e 1e45 876e 5854 ..nN.'...>.E.nXT 0x0020: 5014 0000 808d 0000 P....... Date=2022-12-07 Time=17:02:36 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev= out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=176.32.110.78 l4_protocol=TCP source_port=53543 dest_port=443 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:36 0101021 IP 192.168.178.2.53608 > 40.99.150.18.443 : proto TCP: S 3338014144:3338014144(0) win 65280 checksum : 38781 0x0000: 4500 0034 8d26 4000 7f06 3d7d c0a8 b202 E..4.&@...=}.... 0x0010: 2863 9612 d168 01bb c6f6 0dc0 0000 0000 (c...h.......... 0x0020: 8002 ff00 977d 0000 0204 054b 0103 0308 .....}.....K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:02:36 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.99.150.18 l4_protocol=TCP source_port=53608 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1785757875 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:36 0101021 IP 192.168.178.2.53609 > 40.99.150.18.443 : proto TCP: S 2708290482:2708290482(0) win 65280 checksum : 36627 0x0000: 4500 0034 8d27 4000 7f06 3d7c c0a8 b202 E..4.'@...=|.... 0x0010: 2863 9612 d169 01bb a16d 3bb2 0000 0000 (c...i...m;..... 0x0020: 8002 ff00 8f13 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:02:36 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.99.150.18 l4_protocol=TCP source_port=53609 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=937973967 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:36 0101021 IP 192.168.178.2.52545 > 172.16.0.5.53 : proto UDP: packet len: 49 checksum : 10835 0x0000: 4500 0045 d9f8 0000 7f11 42ef c0a8 b202 E..E......B..... 0x0010: ac10 0005 cd41 0035 0031 2a53 d7e8 0100 .....A.5.1*S.... 0x0020: 0001 0000 0000 0000 0377 7777 0f6d 7366 .........www.msf 0x0030: 7463 6f6e 6e65 6374 7465 7374 0363 6f6d tconnecttest.com 0x0040: 0000 0100 01 ..... Date=2022-12-07 Time=17:02:36 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=52545 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=563046474 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:36 0101021 IP 192.168.178.2.52545 > 1.1.1.1.53 : proto UDP: packet len: 49 checksum : 54374 0x0000: 4500 0045 edb3 0000 7f11 d947 c0a8 b202 E..E.......G.... 0x0010: 0101 0101 cd41 0035 0031 d466 d7e8 0100 .....A.5.1.f.... 0x0020: 0001 0000 0000 0000 0377 7777 0f6d 7366 .........www.msf 0x0030: 7463 6f6e 6e65 6374 7465 7374 0363 6f6d tconnecttest.com 0x0040: 0000 0100 01 ..... Date=2022-12-07 Time=17:02:36 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=52545 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3038054659 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:37 0101021 IP 192.168.178.2.53610 > 40.99.150.18.443 : proto TCP: S 3660666489:3660666489(0) win 65280 checksum : 15239 0x0000: 4500 0034 8d28 4000 7f06 3d7b c0a8 b202 E..4.(@...={.... 0x0010: 2863 9612 d16a 01bb da31 5679 0000 0000 (c...j...1Vy.... 0x0020: 8002 ff00 3b87 0000 0204 054b 0103 0308 ....;......K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:02:37 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.99.150.18 l4_protocol=TCP source_port=53610 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2606653526 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:37 0101021 IP 192.168.178.2.53611 > 40.115.3.253.443 : proto TCP: S 1273854125:1273854125(0) win 65280 checksum : 14748 0x0000: 4500 0034 b1af 4000 7f06 aaf9 c0a8 b202 E..4..@......... 0x0010: 2873 03fd d16b 01bb 4bed 78ad 0000 0000 (s...k..K.x..... 0x0020: 8002 ff00 399c 0000 0204 054b 0103 0308 ....9......K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:02:37 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.115.3.253 l4_protocol=TCP source_port=53611 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2622943219 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:37 0101021 IP 192.168.178.2.49335 > 142.250.185.67.443 : proto UDP: packet len: 1258 checksum : 35691 0x0000: 4500 04fe e3e6 4000 7f11 581f c0a8 b202 E.....@...X..... 0x0010: 8efa b943 c0b7 01bb 04ea 8b6b cb00 0000 ...C.......k.... 0x0020: 0108 df1e 11c7 208d 510c 0040 4700 8be1 ........Q..@G... 0x0030: bf26 ec3a 2d18 c31f dde5 08df 9eb5 369b .&.:-.........6. 0x0040: 93c1 ab08 7ca5 df2c 6243 851a 5c4b 2c72 ....|..,bC..\K,r 0x0050: efd9 d01a 5861 00df 0603 1b2a 5b28 4416 ....Xa.....*[(D. 0x0060: 5686 8bf3 8f66 3381 894d 082e c9cd 4764 V....f3..M....Gd 0x0070: fb7a f806 4488 72b6 1fc1 008a 9277 e770 .z..D.r......w.p 0x0080: cf95 b215 fc30 bc6a c9d4 3a22 2bc3 cffa .....0.j..:"+... 0x0090: 3fc7 9fbd a899 e39a ff28 fc39 dc7e b181 ?........(.9.~.. 0x00a0: b73f 8b7e b619 02f4 15b2 b967 3fae 3a83 .?.~.......g?.:. 0x00b0: 2806 3adb 6b19 9783 ac75 f20f 934d b024 (.:.k....u...M.$ 0x00c0: b392 aa08 0d11 cabd a1f5 9c4b 3f25 e471 ...........K?%.q 0x00d0: 4cc8 9b38 d341 398e df6f 2782 672c b36b L..8.A9..o'.g,.k 0x00e0: 10f2 e112 391e 9b59 e271 e26d 1623 98b4 ....9..Y.q.m.#.. 0x00f0: 9417 35a8 62cf 89d6 ec4e 2144 2e35 0a73 ..5.b....N!D.5.s 0x0100: 0772 4b6a 8398 ef15 d86d edab cf01 9409 .rKj.....m...... 0x0110: 0bec a96d e242 a86b 7279 9504 fce2 dd16 ...m.B.kry...... 0x0120: 696b 59d6 8d56 40e6 d2e3 8cb8 0676 309a ikY..V@......v0. 0x0130: 5e9c 94fc 8d2e 7f69 72a6 8a78 db19 3532 ^......ir..x..52 0x0140: 3ff0 bdb4 3697 eec1 548b 8dbe 040d 4bbb ?...6...T.....K. 0x0150: a626 bd19 5240 38bf 170b d83f f578 c9cf .&..R@8....?.x.. 0x0160: 24a7 a77c 4901 4943 a721 3b32 6371 5fda $..|I.IC.!;2cq_. 0x0170: 3b0b 3060 4741 ee7a 2fcd d546 5558 1f39 ;.0`GA.z/..FUX.9 0x0180: f230 6ae7 7b01 7bc4 1347 8078 1aeb 8e8c .0j.{.{..G.x.... 0x0190: a842 a339 76aa c3b3 1998 11fe 27b7 b7a3 .B.9v.......'... 0x01a0: 71d6 1c36 1a3b 4fe2 b027 d7db 6c33 16ca q..6.;O..'..l3.. 0x01b0: dee0 bb4d c974 d95a e763 8067 911c 5d14 ...M.t.Z.c.g..]. 0x01c0: f5eb 3d25 fec6 371b 7202 81cf 7e98 7d52 ..=%..7.r...~.}R 0x01d0: e6c9 bb28 3e03 c76d 6f51 cd29 394a 083a ...(>..moQ.)9J.: 0x01e0: cab7 38a2 85ea a800 91c2 1d9b 104a 2ce9 ..8..........J,. 0x01f0: 463c 99d9 9586 f32e ba98 bd92 0262 30b2 F<...........b0. 0x0200: 402d 82dc efd2 d400 c2cf c2dd 7065 7b2b @-..........pe{+ 0x0210: c9a8 9e29 fbe9 cdce e17e 7530 6bd9 b536 ...).....~u0k..6 0x0220: 5cb6 b896 f94b f73b 8c89 c239 af81 f12e \....K.;...9.... 0x0230: 5a6f c39a bde9 fda8 fbab 751b c2ca b02c Zo........u...., 0x0240: f1c7 9708 a0b8 ed94 05f9 aa9c ef41 0609 .............A.. 0x0250: 7ecd 77df ed7c efd8 a8cc 2e54 d80b e7f0 ~.w..|.....T.... 0x0260: b83d fb23 1261 6526 8467 fd70 cb2c 3557 .=.#.ae&.g.p.,5W 0x0270: 2afc 7a08 fe4e 8a7f a7fa 4449 ab95 5438 *.z..N....DI..T8 0x0280: a2cc 4a15 7126 b623 2ca7 ecf6 5158 68e6 ..J.q&.#,...QXh. 0x0290: 0961 a424 62f1 5c20 f24e 1d02 c95e 4471 .a.$b.\..N...^Dq 0x02a0: 2bee c3dc f84d 4914 2efd 04bc 6587 37d4 +....MI.....e.7. 0x02b0: bc7f d408 9c4c ff01 03ef 3361 d50f 2040 .....L....3a...@ 0x02c0: 1404 5340 05dc 469c 6074 aad8 baa9 bd52 ..S@..F.`t.....R 0x02d0: dab4 de74 8393 af5b b7cf 6248 a03f 7863 ...t...[..bH.?xc 0x02e0: 5a80 d139 af0e 341d 43f1 fd6c 440e ae2c Z..9..4.C..lD.., 0x02f0: 0b47 50b0 f499 e8d7 dff5 2c3b a1cf 96e1 .GP.......,;.... 0x0300: 7122 7e8a 1774 863c 38bc 1eff 7010 073a q"~..t.<8...p..: 0x0310: 74c5 dd37 5398 15b0 1fbf 1737 5a99 fdc2 t..7S......7Z... 0x0320: 064e de63 f793 5175 5cb8 cd10 cf20 820c .N.c..Qu\....... 0x0330: 5f96 ab1c bae3 ba26 cde5 877c 2b79 1148 _......&...|+y.H 0x0340: 2e29 ffe4 f45e bfda ba5b a4bc 3fd2 5fe5 .)...^...[..?._. 0x0350: 660a 8f3e a21b 293d c16f 260c b998 6433 f..>..)=.o&...d3 0x0360: 3774 06dc e8c3 5150 bcdc 2b6b 99ac 6815 7t....QP..+k..h. 0x0370: 8b00 e14f 4dcb 29bb 2990 712a 6a97 1752 ...OM.).).q*j..R 0x0380: 267b 8464 92a5 a7f8 d705 5efb a261 ba07 &{.d......^..a.. 0x0390: 68eb a144 bf74 1a45 1a34 967d ad52 f9b1 h..D.t.E.4.}.R.. 0x03a0: b0d5 5351 bb15 6878 8d5a 88c5 ed10 b784 ..SQ..hx.Z...... 0x03b0: 7eca fec1 b9f0 31e4 c771 848b ace2 3bcf ~.....1..q....;. 0x03c0: d1c6 1311 0bc2 3d3c ab50 45c9 351b becb ......=<.PE.5... 0x03d0: 3fc8 7b0f eb84 5d29 9024 af6d 41fd b5ed ?.{...]).$.mA... 0x03e0: a29d 527e f68d e1b7 cc99 6aa3 4461 527d ..R~......j.DaR} 0x03f0: f985 e308 97e3 f079 d2d2 a187 c1e1 1f70 .......y.......p 0x0400: dcdf bd3b fb08 4c68 ae54 414a 550b e49a ...;..Lh.TAJU... 0x0410: 41ee aa67 39a4 e0ca 2c26 ef1e e9b1 bf02 A..g9...,&...... 0x0420: 58a8 9b49 ca89 ffe1 62e6 08f9 1b1e 5ec5 X..I....b.....^. 0x0430: 8ffa 05f5 4942 442d 5020 44e4 f893 882a ....IBD-P.D....* 0x0440: b34e 6449 4739 7464 646e cec4 f393 f7ee .NdIG9tddn...... 0x0450: e53a 4198 bcec 363a 2219 c56a e204 741b .:A...6:"..j..t. 0x0460: cf95 595c 22be c80c e01f ddbd d382 c7f0 ..Y\"........... 0x0470: e373 4352 100b adee ee9a 0ecd 4bf0 a2c4 .sCR........K... 0x0480: af17 4139 2245 f88c 95c8 f5fb 14a6 b9ec ..A9"E.......... 0x0490: 6c0f f496 fad1 e25c 41a8 6583 9a02 37d7 l......\A.e...7. 0x04a0: d771 9a75 6219 2c93 c111 26a1 ba8b 99f6 .q.ub.,...&..... 0x04b0: 2307 8ca1 a86b d1fc 9c14 4e98 7285 a423 #....k....N.r..# 0x04c0: da8b b7eb d5cc 8047 4052 6af1 567a b507 .......G@Rj.Vz.. 0x04d0: 4b26 0edd 70fb 1c36 d539 e21c bdaa 3feb K&..p..6.9....?. 0x04e0: 8071 6fb2 be19 0350 3925 0b94 e05b 93f5 .qo....P9%...[.. 0x04f0: 49b4 0ecd 998a 9575 d304 acb5 eddd I......u...... Date=2022-12-07 Time=17:02:37 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=UDP source_port=49335 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2079398888 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:37 0101021 IP 192.168.178.2.60735 > 172.16.0.5.53 : proto UDP: packet len: 42 checksum : 62835 0x0000: 4500 003e d9f9 0000 7f11 42f5 c0a8 b202 E..>......B..... 0x0010: ac10 0005 ed3f 0035 002a f573 fded 0100 .....?.5.*.s.... 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:02:37 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=60735 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3708218423 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:02:37 0101021 IP 192.168.178.2.60735 > 1.1.1.1.53 : proto UDP: packet len: 42 checksum : 40839 0x0000: 4500 003e edb4 0000 7f11 d94d c0a8 b202 E..>.......M.... 0x0010: 0101 0101 ed3f 0035 002a 9f87 fded 0100 .....?.5.*...... 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:02:37 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=60735 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1979232667 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 ^CSFVH_VM01_SFOS 19.0.1 MR-1-Build365# ping 172.16.0.1 PING 172.16.0.1 (172.16.0.1): 56 data bytes 64 bytes from 172.16.0.1: seq=0 ttl=64 time=0.087 ms 64 bytes from 172.16.0.1: seq=1 ttl=64 time=0.062 ms 64 bytes from 172.16.0.1: seq=2 ttl=64 time=0.064 ms 64 bytes from 172.16.0.1: seq=3 ttl=64 time=0.063 ms 64 bytes from 172.16.0.1: seq=4 ttl=64 time=0.052 ms 64 bytes from 172.16.0.1: seq=5 ttl=64 time=0.073 ms ^C --- 172.16.0.1 ping statistics --- 6 packets transmitted, 6 packets received, 0% packet loss round-trip min/avg/max = 0.052/0.066/0.087 ms SFVH_VM01_SFOS 19.0.1 MR-1-Build365# ping 172.16.0.5 PING 172.16.0.5 (172.16.0.5): 56 data bytes 64 bytes from 172.16.0.5: seq=0 ttl=64 time=0.251 ms 64 bytes from 172.16.0.5: seq=1 ttl=64 time=0.196 ms 64 bytes from 172.16.0.5: seq=2 ttl=64 time=0.215 ms 64 bytes from 172.16.0.5: seq=3 ttl=64 time=0.243 ms ^C --- 172.16.0.5 ping statistics --- 4 packets transmitted, 4 packets received, 0% packet loss round-trip min/avg/max = 0.196/0.226/0.251 ms SFVH_VM01_SFOS 19.0.1 MR-1-Build365# ping 172.16.0.10 PING 172.16.0.10 (172.16.0.10): 56 data bytes 64 bytes from 172.16.0.10: seq=0 ttl=64 time=1.866 ms 64 bytes from 172.16.0.10: seq=1 ttl=64 time=1.107 ms ^C --- 172.16.0.10 ping statistics --- 2 packets transmitted, 2 packets received, 0% packet loss round-trip min/avg/max = 1.107/1.486/1.866 ms SFVH_VM01_SFOS 19.0.1 MR-1-Build365# SFVH_VM01_SFOS 19.0.1 MR-1-Build365# SFVH_VM01_SFOS 19.0.1 MR-1-Build365# SFVH_VM01_SFOS 19.0.1 MR-1-Build365# SFVH_VM01_SFOS 19.0.1 MR-1-Build365# drppkt 2022-12-07 17:05:29 0103021 IP 172.16.0.152.9050 > 255.255.255.255.9050 : proto UDP: packet len: 775 checksum : 21229 0x0000: 4518 031b 0683 4000 4011 848f ac10 0098 E.....@.@....... 0x0010: ffff ffff 235a 235a 0307 52ed 4d73 674c ....#Z#Z..R.MsgL 0x0020: 656e 5b37 3535 5d3b 7b22 6865 6164 6572 en[755];{"header 0x0030: 223a 7b22 6163 6b52 6571 7565 7374 6564 ":{"ackRequested 0x0040: 223a 7472 7565 2c22 7365 7373 696f 6e41 ":true,"sessionA Date=2022-12-07 Time=17:05:29 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=be:bd:23:9d:aa:06 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.152 dest_ip=255.255.255.255 l4_protocol=UDP source_port=9050 dest_port=9050 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3651269856 masterid=0 status=256 state=0, flag0=824635817984 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:30 0103021 IP 172.16.0.152.10665 > 255.255.255.255.10665 : proto UDP: packet len: 775 checksum : 17483 0x0000: 4598 031b 068a 4000 4011 8408 ac10 0098 E.....@.@....... 0x0010: ffff ffff 29a9 29a9 0307 444b 4d73 674c ....).)...DKMsgL 0x0020: 656e 5b37 3535 5d3b 7b22 6865 6164 6572 en[755];{"header 0x0030: 223a 7b22 6163 6b52 6571 7565 7374 6564 ":{"ackRequested 0x0040: 223a 7472 7565 2c22 7365 7373 696f 6e41 ":true,"sessionA Date=2022-12-07 Time=17:05:30 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=be:bd:23:9d:aa:06 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.152 dest_ip=255.255.255.255 l4_protocol=UDP source_port=10665 dest_port=10665 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3489809038 masterid=0 status=256 state=0, flag0=824635817984 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:30 0103021 IP 172.16.0.152.9050 > 255.255.255.255.9050 : proto UDP: packet len: 775 checksum : 20197 0x0000: 4518 031b 06a8 4000 4011 846a ac10 0098 E.....@.@..j.... 0x0010: ffff ffff 235a 235a 0307 4ee5 4d73 674c ....#Z#Z..N.MsgL 0x0020: 656e 5b37 3535 5d3b 7b22 6865 6164 6572 en[755];{"header 0x0030: 223a 7b22 6163 6b52 6571 7565 7374 6564 ":{"ackRequested 0x0040: 223a 7472 7565 2c22 7365 7373 696f 6e41 ":true,"sessionA Date=2022-12-07 Time=17:05:30 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=be:bd:23:9d:aa:06 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.152 dest_ip=255.255.255.255 l4_protocol=UDP source_port=9050 dest_port=9050 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3651269856 masterid=0 status=256 state=0, flag0=824635817984 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:30 0103021 IP 172.16.0.152.9050 > 255.255.255.255.9050 : proto UDP: packet len: 775 checksum : 19189 0x0000: 4518 031b 06af 4000 4011 8463 ac10 0098 E.....@.@..c.... 0x0010: ffff ffff 235a 235a 0307 4af5 4d73 674c ....#Z#Z..J.MsgL 0x0020: 656e 5b37 3535 5d3b 7b22 6865 6164 6572 en[755];{"header 0x0030: 223a 7b22 6163 6b52 6571 7565 7374 6564 ":{"ackRequested 0x0040: 223a 7472 7565 2c22 7365 7373 696f 6e41 ":true,"sessionA Date=2022-12-07 Time=17:05:30 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=be:bd:23:9d:aa:06 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.152 dest_ip=255.255.255.255 l4_protocol=UDP source_port=9050 dest_port=9050 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3651269856 masterid=0 status=256 state=0, flag0=824635817984 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:30 0103021 IP 172.16.0.152.9050 > 255.255.255.255.9050 : proto UDP: packet len: 775 checksum : 18673 0x0000: 4518 031b 06c1 4000 4011 8451 ac10 0098 E.....@.@..Q.... 0x0010: ffff ffff 235a 235a 0307 48f1 4d73 674c ....#Z#Z..H.MsgL 0x0020: 656e 5b37 3535 5d3b 7b22 6865 6164 6572 en[755];{"header 0x0030: 223a 7b22 6163 6b52 6571 7565 7374 6564 ":{"ackRequested 0x0040: 223a 7472 7565 2c22 7365 7373 696f 6e41 ":true,"sessionA Date=2022-12-07 Time=17:05:30 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=be:bd:23:9d:aa:06 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.152 dest_ip=255.255.255.255 l4_protocol=UDP source_port=9050 dest_port=9050 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3651269856 masterid=0 status=256 state=0, flag0=824635817984 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:30 0103021 IP 172.16.0.152.9050 > 255.255.255.255.9050 : proto UDP: packet len: 775 checksum : 18157 0x0000: 4518 031b 06d4 4000 4011 843e ac10 0098 E.....@.@..>.... 0x0010: ffff ffff 235a 235a 0307 46ed 4d73 674c ....#Z#Z..F.MsgL 0x0020: 656e 5b37 3535 5d3b 7b22 6865 6164 6572 en[755];{"header 0x0030: 223a 7b22 6163 6b52 6571 7565 7374 6564 ":{"ackRequested 0x0040: 223a 7472 7565 2c22 7365 7373 696f 6e41 ":true,"sessionA Date=2022-12-07 Time=17:05:30 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=be:bd:23:9d:aa:06 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.152 dest_ip=255.255.255.255 l4_protocol=UDP source_port=9050 dest_port=9050 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3651269856 masterid=0 status=256 state=0, flag0=824635817984 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:30 0103021 IP 172.16.0.152.9050 > 255.255.255.255.9050 : proto UDP: packet len: 775 checksum : 22759 0x0000: 4518 031b 06e8 4000 4011 842a ac10 0098 E.....@.@..*.... 0x0010: ffff ffff 235a 235a 0307 58e7 4d73 674c ....#Z#Z..X.MsgL 0x0020: 656e 5b37 3535 5d3b 7b22 6865 6164 6572 en[755];{"header 0x0030: 223a 7b22 6163 6b52 6571 7565 7374 6564 ":{"ackRequested 0x0040: 223a 7472 7565 2c22 7365 7373 696f 6e41 ":true,"sessionA Date=2022-12-07 Time=17:05:30 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=be:bd:23:9d:aa:06 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.152 dest_ip=255.255.255.255 l4_protocol=UDP source_port=9050 dest_port=9050 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3651269856 masterid=0 status=256 state=0, flag0=824635817984 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:30 0103021 IP 172.16.0.152.9050 > 255.255.255.255.9050 : proto UDP: packet len: 775 checksum : 22243 0x0000: 4518 031b 06ec 4000 4011 8426 ac10 0098 E.....@.@..&.... 0x0010: ffff ffff 235a 235a 0307 56e3 4d73 674c ....#Z#Z..V.MsgL 0x0020: 656e 5b37 3535 5d3b 7b22 6865 6164 6572 en[755];{"header 0x0030: 223a 7b22 6163 6b52 6571 7565 7374 6564 ":{"ackRequested 0x0040: 223a 7472 7565 2c22 7365 7373 696f 6e41 ":true,"sessionA Date=2022-12-07 Time=17:05:30 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=be:bd:23:9d:aa:06 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.152 dest_ip=255.255.255.255 l4_protocol=UDP source_port=9050 dest_port=9050 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3651269856 masterid=0 status=256 state=0, flag0=824635817984 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:30 0101021 IP 192.168.178.2.53677 > 52.31.132.32.443 : proto TCP: S 2432293441:2432293441(0) win 65280 checksum : 1770 0x0000: 4500 0034 e6fe 4000 7f06 e9da c0a8 b202 E..4..@......... 0x0010: 341f 8420 d1ad 01bb 90f9 da41 0000 0000 4..........A.... 0x0020: 8002 ff00 06ea 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:30 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=52.31.132.32 l4_protocol=TCP source_port=53677 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=878992132 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:30 0103021 IP 172.16.0.152.9050 > 255.255.255.255.9050 : proto UDP: packet len: 775 checksum : 21235 0x0000: 4518 031b 06f7 4000 4011 841b ac10 0098 E.....@.@....... 0x0010: ffff ffff 235a 235a 0307 52f3 4d73 674c ....#Z#Z..R.MsgL 0x0020: 656e 5b37 3535 5d3b 7b22 6865 6164 6572 en[755];{"header 0x0030: 223a 7b22 6163 6b52 6571 7565 7374 6564 ":{"ackRequested 0x0040: 223a 7472 7565 2c22 7365 7373 696f 6e41 ":true,"sessionA Date=2022-12-07 Time=17:05:30 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=be:bd:23:9d:aa:06 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.152 dest_ip=255.255.255.255 l4_protocol=UDP source_port=9050 dest_port=9050 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3651269856 masterid=0 status=256 state=0, flag0=824635817984 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:31 0101021 IP 192.168.178.2.53678 > 52.31.132.32.443 : proto TCP: S 3709964397:3709964397(0) win 65280 checksum : 1173 0x0000: 4500 0034 e6ff 4000 7f06 e9d9 c0a8 b202 E..4..@......... 0x0010: 341f 8420 d1ae 01bb dd21 906d 0000 0000 4........!.m.... 0x0020: 8002 ff00 0495 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:31 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=52.31.132.32 l4_protocol=TCP source_port=53678 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2064399755 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:32 010202130 IP 172.16.0.164.42098 > 34.120.88.80.443 : proto TCP: F 3838489298:3838489298(0) win 106 checksum : 40289 0x0000: 4500 0034 8f8e 4000 4006 83b9 ac10 00a4 E..4..@.@....... 0x0010: 2278 5850 a472 01bb e4ca b2d2 4211 d04d "xXP.r......B..M 0x0020: 8011 006a 9d61 0000 0101 080a b338 b140 ...j.a.......8.@ 0x0030: e766 156a .f.j Date=2022-12-07 Time=17:05:32 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev= out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=172.16.0.164 dest_ip=34.120.88.80 l4_protocol=TCP source_port=42098 dest_port=443 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:33 0101021 IP 192.168.178.2.53679 > 23.196.247.70.443 : proto TCP: S 3308654704:3308654704(0) win 65280 checksum : 17841 0x0000: 4500 0034 ce02 4000 7f06 ac0b c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1af 01bb c536 1070 0000 0000 ...F.....6.p.... 0x0020: 8002 ff00 45b1 0000 0204 054b 0103 0308 ....E......K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:33 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53679 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3660954895 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:34 0101021 IP 192.168.178.2.53680 > 40.113.110.67.443 : proto TCP: S 1889110452:1889110452(0) win 65280 checksum : 39263 0x0000: 4500 0034 47da 4000 7f06 aa8a c0a8 b202 E..4G.@......... 0x0010: 2871 6e43 d1b0 01bb 7099 89b4 0000 0000 (qnC....p....... 0x0020: 8002 ff00 995f 0000 0204 054b 0103 0308 ....._.....K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:34 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.113.110.67 l4_protocol=TCP source_port=53680 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2049601500 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:34 0101021 IP 37.49.190.73.8119 > 37.49.83.180.23 : proto TCP: S 1730347887:1730347887(0) win 14600 checksum : 31738 0x0000: 4500 002c 88eb 4000 f206 a380 2531 be49 E..,..@.....%1.I 0x0010: 2531 53b4 1fb7 0017 6723 036f 0000 0000 %1S.....g#.o.... 0x0020: 6002 3908 7bfa 0000 0204 0218 `.9.{....... Date=2022-12-07 Time=17:05:34 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortB out_dev=PortB inzone_id=2 outzone_id=2 source_mac=00:01:5c:7a:44:46 dest_mac=00:0c:29:4a:50:0d bridge_name= l3_protocol=IPv4 source_ip=37.49.190.73 dest_ip=37.49.83.180 l4_protocol=TCP source_port=8119 dest_port=23 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x8001 nfqueue=0 gateway_offset=0 connid=1696835088 masterid=0 status=256 state=1, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:35 0101021 IP 192.168.178.2.53680 > 40.113.110.67.443 : proto TCP: S 1889110452:1889110452(0) win 65280 checksum : 39263 0x0000: 4500 0034 47db 4000 7f06 aa89 c0a8 b202 E..4G.@......... 0x0010: 2871 6e43 d1b0 01bb 7099 89b4 0000 0000 (qnC....p....... 0x0020: 8002 ff00 995f 0000 0204 054b 0103 0308 ....._.....K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:35 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.113.110.67 l4_protocol=TCP source_port=53680 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2049601500 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:35 0103021 IP 172.16.0.2.36207 > 172.16.0.1.65002 : proto TCP: S 3203893627:3203893627(0) win 29200 checksum : 59735 0x0000: 4500 003c 3fab 4000 4006 a2ed ac10 0002 E.. 172.16.0.1.65002 : proto TCP: S 3203893627:3203893627(0) win 29200 checksum : 59479 0x0000: 4500 003c 3fac 4000 4006 a2ec ac10 0002 E.. 40.113.110.67.443 : proto TCP: S 1889110452:1889110452(0) win 65280 checksum : 39263 0x0000: 4500 0034 47dc 4000 7f06 aa88 c0a8 b202 E..4G.@......... 0x0010: 2871 6e43 d1b0 01bb 7099 89b4 0000 0000 (qnC....p....... 0x0020: 8002 ff00 995f 0000 0204 054b 0103 0308 ....._.....K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:37 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.113.110.67 l4_protocol=TCP source_port=53680 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2049601500 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:38 0103021 IP 172.16.0.2.36207 > 172.16.0.1.65002 : proto TCP: S 3203893627:3203893627(0) win 29200 checksum : 58975 0x0000: 4500 003c 3fad 4000 4006 a2eb ac10 0002 E.. 172.16.0.255.137 : proto UDP: packet len: 58 checksum : 44140 0x0000: 4500 004e 3449 4000 4011 ad30 ac10 0006 E..N4I@.@..0.... 0x0010: ac10 00ff 0089 0089 003a ac6c 7659 0110 .........:.lvY.. 0x0020: 0001 0000 0000 0000 2046 4845 5046 4345 .........FHEPFCE 0x0030: 4c45 4846 4345 5046 4646 4143 4143 4143 LEHFCEPFFFACACAC 0x0040: 4143 4143 4143 4142 4e00 0020 0001 ACACACABN..... Date=2022-12-07 Time=17:05:39 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=00:11:32:cd:94:27 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.6 dest_ip=172.16.0.255 l4_protocol=UDP source_port=137 dest_port=137 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=378558338 masterid=0 status=256 state=0, flag0=824635817984 flags1=17179869184 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:39 0101021 IP 192.168.178.2.51287 > 142.250.185.67.443 : proto UDP: packet len: 1258 checksum : 59818 0x0000: 4500 04fe e425 4000 7f11 57e0 c0a8 b202 E....%@...W..... 0x0010: 8efa b943 c857 01bb 04ea e9aa c900 0000 ...C.W.......... 0x0020: 0108 2f64 ac20 100f a441 0000 44d0 4996 ../d.....A..D.I. 0x0030: 615f b479 b0c3 1999 7a93 a3e1 92c0 38cf a_.y....z.....8. 0x0040: 0cb9 4aae 9c33 750f a69a 5b69 4a84 858b ..J..3u...[iJ... 0x0050: 1fce ac2c f0e4 0b70 876b ae52 b4a6 bb48 ...,...p.k.R...H 0x0060: 00e5 9c6a 3a00 9e11 79aa 9bc7 aa2f 8da0 ...j:...y..../.. 0x0070: 3167 2bc2 853e c50c 2f3b 04a7 7421 47ae 1g+..>../;..t!G. 0x0080: 740a f3a0 4a9a e3b3 f6ad 2d60 4c53 7429 t...J.....-`LSt) 0x0090: 8e08 11e7 5787 134c 8d9a 5372 2202 05bf ....W..L..Sr"... 0x00a0: a8f6 e811 45b9 59be 6997 11b5 74d3 cc6a ....E.Y.i...t..j 0x00b0: fa07 2a34 6144 6bcb 43de c030 d894 34ed ..*4aDk.C..0..4. 0x00c0: 19d0 c966 e01e c202 ccdb 0138 b145 8945 ...f.......8.E.E 0x00d0: ca77 67e6 2ead 1035 1814 c133 6968 d2d4 .wg....5...3ih.. 0x00e0: 9fc1 aa8d 1fc2 1b49 6561 11ef dcca 517f .......Iea....Q. 0x00f0: 29ef 31e8 87ae 3384 fce9 f193 ea27 66a7 ).1...3......'f. 0x0100: ad63 727a 71f6 a396 1271 3be8 5990 8309 .crzq....q;.Y... 0x0110: 371a 1b5d ec49 743f f185 b439 0325 39aa 7..].It?...9.%9. 0x0120: d1cd a07e b47a 9c1d 9144 0484 cbd8 2387 ...~.z...D....#. 0x0130: 91a2 6868 c119 eafe b46a 8473 6c52 a053 ..hh.....j.slR.S 0x0140: 66ce 7dbe 8276 f85c cd60 221f 9055 0b20 f.}..v.\.`"..U.. 0x0150: 24ec 53d7 a71e 8435 afb6 7edc 2f68 4022 $.S....5..~./h@" 0x0160: 198a 543c 1032 8aee 86d6 a421 ed79 3846 ..T<.2.....!.y8F 0x0170: 45ae 016f fd91 8d8b 803c cf26 a64b 23ce E..o.....<.&.K#. 0x0180: 3c56 73c6 1052 cbfb d8df b361 df63 83a5 ...i.Y... 0x01b0: 69d4 5ddd ef41 848d 567f d425 af07 492f i.]..A..V..%..I/ 0x01c0: fe80 b001 f861 6484 a929 1c68 e2b2 df38 .....ad..).h...8 0x01d0: c8a4 d037 dfef 5dc1 4a81 6fa1 7977 a064 ...7..].J.o.yw.d 0x01e0: 8b87 8ae5 c680 0ba5 981e 9e66 fd01 c2b1 ...........f.... 0x01f0: f15a 755a 1324 ba33 a68e 76d0 aaa5 5215 .ZuZ.$.3..v...R. 0x0200: d5db 57f2 90c6 b850 60ad 70e3 f5ae 0555 ..W....P`.p....U 0x0210: 2006 10ed 9f14 b394 67d2 9c21 1e42 8893 ........g..!.B.. 0x0220: f45c 195b eb99 345d 586b 64e6 6230 dfad .\.[..4]Xkd.b0.. 0x0230: 5216 a327 2577 572f 18de ca91 9f8e 5e78 R..'%wW/......^x 0x0240: a27e 2d53 ea5d f4a7 7400 0da5 d2fc 59d2 .~-S.]..t.....Y. 0x0250: fa9e 1039 aaad 1105 d50d 0277 1a78 de4f ...9.......w.x.O 0x0260: 0202 8f5f cb13 19b8 4c01 7988 5ef7 0b1d ..._....L.y.^... 0x0270: 65a6 f19d bd3e efe5 51f4 e75e cbd8 87fa e....>..Q..^.... 0x0280: d74a 626d 719b 8b2a d7d6 f0dc 29cb 86ca .Jbmq..*....)... 0x0290: f731 6198 2389 a485 8966 b133 715a 94ec .1a.#....f.3qZ.. 0x02a0: 1f53 b482 426e e3fb 6c3b 2758 e30e 1946 .S..Bn..l;'X...F 0x02b0: b94d 30f6 b363 a364 ffde 6d7e 7dd5 14ab .M0..c.d..m~}... 0x02c0: e252 6a84 7adb 01d2 e581 df0d 48bf 2375 .Rj.z.......H.#u 0x02d0: 437e 68bf 2077 2197 72da fa99 70e3 1773 C~h..w!.r...p..s 0x02e0: 0158 55a3 7497 60fa a122 d45e 936b f3b0 .XU.t.`..".^.k.. 0x02f0: a06d e440 9cfd cb0d 3d59 615d 9915 f334 .m.@....=Ya]...4 0x0300: af50 e326 ce98 e185 46b7 3ba4 de14 3fae .P.&....F.;...?. 0x0310: 3991 3b0f 2d87 5817 fe83 2584 fb59 defb 9.;.-.X...%..Y.. 0x0320: 86eb 81be 5899 5c2e b3c0 5d44 62c9 3b4d ....X.\...]Db.;M 0x0330: 6731 fd0e 4e0f dff4 291f 3ece fb24 05dd g1..N...).>..$.. 0x0340: 3755 8acc a880 830c 1eec 43cf 4f00 6149 7U........C.O.aI 0x0350: c470 f233 0b7e d15e 8ef3 cbf8 4402 33fd .p.3.~.^....D.3. 0x0360: 2922 33d5 d53d 2ee9 a8c8 4bdb 6491 a71f )"3..=....K.d... 0x0370: 6c7d 82e4 5b41 423e 854e 0d37 6d6f c323 l}..[AB>.N.7mo.# 0x0380: f5de 31a3 0c02 bc47 4ee2 7246 5862 2e6a ..1....GN.rFXb.j 0x0390: a83f f6d8 5454 f3be abb7 30a0 85bd 24ea .?..TT....0...$. 0x03a0: 4992 45f2 e03a deee 675b 3b29 a583 bfc7 I.E..:..g[;).... 0x03b0: d672 dcb0 3bea aae5 b689 b5c4 b8ea cc7c .r..;..........| 0x03c0: 100a 324e 1eeb 77e3 51d1 6b07 e307 b1cf ..2N..w.Q.k..... 0x03d0: 1200 546f dd18 49a3 9ef4 9323 1d30 2701 ..To..I....#.0'. 0x03e0: 2e56 a0ca 06f3 d1d4 9218 6a59 6c0c 6f06 .V........jYl.o. 0x03f0: de54 d0c3 e7f0 16a2 ccd2 05f8 a76a 8fb7 .T...........j.. 0x0400: f815 a38e 5150 3f74 fe42 e6f8 b3d6 5836 ....QP?t.B....X6 0x0410: c355 2529 a703 eed0 fb67 04f5 4b69 f7b3 .U%).....g..Ki.. 0x0420: 77fb 4ce8 8a90 1db5 5ba7 e67a c63a 2436 w.L.....[..z.:$6 0x0430: ed67 12be 5dd5 3030 715f d935 d9ca 88d9 .g..].00q_.5.... 0x0440: 7dc2 d4e6 4ea4 6c7d dc30 de72 32c6 c3ee }...N.l}.0.r2... 0x0450: d680 583e 39ca 7659 bc11 a335 ee86 80ff ..X>9.vY...5.... 0x0460: e2bc 8f12 bae2 ba37 c966 3ac5 27cb fb0b .......7.f:.'... 0x0470: 7c67 0d30 fe47 3d8a a618 58e1 f543 31be |g.0.G=...X..C1. 0x0480: 0eda d9a5 0500 9503 84e1 7cb3 609c e0be ..........|.`... 0x0490: d3df 9174 8e32 91c2 ed87 5c51 caa3 7279 ...t.2....\Q..ry 0x04a0: 3502 b9e4 e8fe 3196 e448 7389 52eb 6f5c 5.....1..Hs.R.o\ 0x04b0: b289 d20f 8344 8d7c 6a3b 4464 88e9 c058 .....D.|j;Dd...X 0x04c0: 79a9 5178 8b9e 4b9b 99d8 1324 925a 2617 y.Qx..K....$.Z&. 0x04d0: 8047 8f73 87b3 1065 7cd2 eec2 bbe8 f231 .G.s...e|......1 0x04e0: c7b2 7cc5 d7c6 ee88 1e40 74cf 7a6b 0572 ..|......@t.zk.r 0x04f0: 02ea 936d c7f0 c36a d664 5825 a0ee ...m...j.dX%.. Date=2022-12-07 Time=17:05:39 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=UDP source_port=51287 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2575924265 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:39 0101021 IP 192.168.178.2.53681 > 142.250.185.67.443 : proto TCP: S 1126432078:1126432078(0) win 65280 checksum : 41392 0x0000: 4500 0034 e426 4000 7f06 5cb4 c0a8 b202 E..4.&@...\..... 0x0010: 8efa b943 d1b1 01bb 4323 fd4e 0000 0000 ...C....C#.N.... 0x0020: 8002 ff00 a1b0 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:39 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53681 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=203629468 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:39 0101021 IP 192.168.178.2.53682 > 142.250.185.67.443 : proto TCP: S 1180403688:1180403688(0) win 65280 checksum : 5086 0x0000: 4500 0034 e427 4000 7f06 5cb3 c0a8 b202 E..4.'@...\..... 0x0010: 8efa b943 d1b2 01bb 465b 87e8 0000 0000 ...C....F[...... 0x0020: 8002 ff00 13de 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:39 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53682 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2767119641 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:39 0101021 IP 192.168.178.2.51287 > 142.250.185.67.443 : proto UDP: packet len: 1258 checksum : 8682 0x0000: 4500 04fe e428 4000 7f11 57dd c0a8 b202 E....(@...W..... 0x0010: 8efa b943 c857 01bb 04ea 21ea c700 0000 ...C.W....!..... 0x0020: 0108 2f64 ac20 100f a441 0000 44d0 178e ../d.....A..D... 0x0030: b187 5743 afbd d61a ca8f 2b67 ceb2 26be ..WC......+g..&. 0x0040: 0114 725a 2d5d 85f0 21c2 b22a 7c43 0f79 ..rZ-]..!..*|C.y 0x0050: a7a0 272e 2118 3d65 057b 89c5 f3e9 646a ..'.!.=e.{....dj 0x0060: e099 5ed6 37ad 8b40 e207 d8ac 4b33 238c ..^.7..@....K3#. 0x0070: af8c 6596 8616 d5d6 c2d5 f57a c12d 5b88 ..e........z.-[. 0x0080: f57c 9057 81cf dc74 6cf2 092d a434 9db5 .|.W...tl..-.4.. 0x0090: 9d58 6c0a b2c7 50ac 79e9 66ae 389c 42e7 .Xl...P.y.f.8.B. 0x00a0: 0d84 f6ac 9274 80ab 7b9f bcdb 928d 9fee .....t..{....... 0x00b0: fd29 14ad 0fe5 4a34 e1e4 f726 4cef 4c70 .)....J4...&L.Lp 0x00c0: 1d4d c36f 1d70 733a 87d9 1fbb e18c 409f .M.o.ps:......@. 0x00d0: de4d ad2e c0d5 d4b2 4deb e4f1 3f89 d362 .M......M...?..b 0x00e0: 67a6 d04c 9987 2ac8 9639 2cc8 7482 2732 g..L..*..9,.t.'2 0x00f0: a6de 3aae 39c6 ef26 111d 2e9c 43b7 4960 ..:.9..&....C.I` 0x0100: 8b08 0c80 ac25 fbbe fadf 0068 c113 9974 .....%.....h...t 0x0110: 2504 059c 26e4 a221 7181 f5bf 9a25 cf58 %...&..!q....%.X 0x0120: 7257 7fd0 8899 bc53 3cce 4b0b b4f8 b2e4 rW.....S<.K..... 0x0130: 610d 7adc 9196 5e33 a5f3 dae2 86f7 ae58 a.z...^3.......X 0x0140: 8726 c79e 6d7f 0b1d cf61 8ddf bd3d f1c8 .&..m....a...=.. 0x0150: d6cf 50ec 66ae 6881 bc97 67b4 e6c8 275a ..P.f.h...g...'Z 0x0160: 3c1a dabb c08b 02db 1950 305a 9ea5 38ab <........P0Z..8. 0x0170: 2ea2 0938 c730 79ae b2a3 8a15 ce53 4ec3 ...8.0y......SN. 0x0180: 16cb 41a8 7dcc dea3 2c08 d3fc a415 7fc5 ..A.}...,....... 0x0190: cbf6 3289 cc1c 5112 1dd2 71ed b003 b0e8 ..2...Q...q..... 0x01a0: 75b0 b894 73af b977 6576 3e1f 87e3 6ebf u...s..wev>...n. 0x01b0: 84d3 8af3 e5f3 9ff2 e06c 1ea2 6113 83a1 .........l..a... 0x01c0: 6da2 f29e f045 62a0 2878 80a8 23f5 45eb m....Eb.(x..#.E. 0x01d0: 4ab6 84a5 5546 bf06 bc78 9925 f929 43fe J...UF...x.%.)C. 0x01e0: bddc 4496 a0a8 33ce ad26 0421 5fa7 0919 ..D...3..&.!_... 0x01f0: 3074 4f0a 40a9 550b 0ed3 2dc9 1b68 77d3 0tO.@.U...-..hw. 0x0200: 955c 9794 2ae9 a6ba 1f6a 8129 af7e c90e .\..*....j.).~.. 0x0210: 787d 5c01 74c8 0a29 aceb 430a ee4b 3c47 x}\.t..)..C..K)Q).^.]p,.j. 0x0250: 16d9 09eb 92af b8fd 1ebc 18f5 9f81 8130 ...............0 0x0260: 1014 d406 0ac6 32c7 13fa dc72 a28c a31b ......2....r.... 0x0270: 6b15 0cd0 9119 b665 ca6e f384 a598 0e3c k......e.n.....< 0x0280: f623 a2ae 7870 d62c 2475 337c 0be2 cc22 .#..xp.,$u3|..." 0x0290: 2dd6 51c4 ded3 31a5 9a66 ea0d a36f 92a0 -.Q...1..f...o.. 0x02a0: bf56 479c d992 7393 65cb f039 608e ddd1 .VG...s.e..9`... 0x02b0: 5119 fdd5 10e6 ba0c 5ba6 7f1e 1cfd 8447 Q.......[......G 0x02c0: 41f8 8ca3 b9b0 5b7e 8e4d e1ac a2a9 648f A.....[~.M....d. 0x02d0: 1ddf e2c8 e115 514b af71 b175 5802 4063 ......QK.q.uX.@c 0x02e0: 3c5e bc11 a398 f2e1 03c7 63e2 fdd1 d472 <^........c....r 0x02f0: 53fb 28d1 ead7 074e 30bf d600 4ede e79f S.(....N0...N... 0x0300: 6a86 eb67 656a 86ce ed48 bcc1 db0a a630 j..gej...H.....0 0x0310: 2357 819a 1400 6cbe 88bf 466e bb35 fc59 #W....l...Fn.5.Y 0x0320: a5b2 ece2 cf80 8049 9e32 f030 4884 9d94 .......I.2.0H... 0x0330: 6914 d71c 1ea0 7e6c acaa c4ec 2dc7 6ff6 i.....~l....-.o. 0x0340: 7d14 5cc8 5f85 8794 d526 5095 78db bc54 }.\._....&P.x..T 0x0350: 32a4 d520 0110 9f63 7b90 ccac 2d28 be87 2......c{...-(.. 0x0360: f8fe 8b93 dcd8 d474 8491 82aa a570 6863 .......t.....phc 0x0370: 21d2 d18c e6f6 bd7d eb0d 0fc7 a98b 04ee !......}........ 0x0380: 4339 f4de eb00 f626 356e ae10 4039 bf2c C9.....&5n..@9., 0x0390: 825b 23b7 6145 d359 a328 b855 2d82 1ff1 .[#.aE.Y.(.U-... 0x03a0: 3d8f b5a3 9ac3 d725 6500 1d9b 2c8f d96e =......%e...,..n 0x03b0: 9e9e 5113 41ec 910f 94a8 7f0b 2bc0 d8d1 ..Q.A.......+... 0x03c0: c937 0404 347f 54a6 f41f 9170 2d9b df73 .7..4.T....p-..s 0x03d0: bf0b f1f4 566a 9b44 63e2 2d21 f2a0 2ad2 ....Vj.Dc.-!..*. 0x03e0: 5bc5 315e 05af 5c6e a055 1141 7fd5 6308 [.1^..\n.U.A..c. 0x03f0: 8fdc 9f1d e67f 13ab 8ed9 4cf4 b7c0 ef4c ..........L....L 0x0400: de7f d805 fd98 5e46 a13a 4547 8bf4 e581 ......^F.:EG.... 0x0410: 6dc6 10a7 b4a7 b4c4 7d1b daf8 d643 c98a m.......}....C.. 0x0420: 3bb6 2a6a d610 05a5 c6cc 2701 6f2c 194e ;.*j......'.o,.N 0x0430: 0e3e ad3d a129 2d2d f493 da4b 70a6 4d01 .>.=.)--...Kp.M. 0x0440: 4135 07b2 062c dea4 8a00 8bca 3718 9155 A5...,......7..U 0x0450: 6fed c687 1148 04fe d82e abea 8bbd d0b5 o....H.......... 0x0460: 5086 78b3 07f5 788b 4e10 b42c 5505 20aa P.x...x.N..,U... 0x0470: c3d4 470a 5421 1f30 cd91 e0fb f375 9315 ..G.T!.0.....u.. 0x0480: 26e6 23e4 6697 5ef4 2047 912f fe3a 85dc &.#.f.^..G./.:.. 0x0490: 0e79 e0b0 8ee3 9276 2c03 db4c d42a 87e0 .y.....v,..L.*.. 0x04a0: c987 e921 f701 382c 2941 c6e4 880e e974 ...!..8,)A.....t 0x04b0: aa0e c96a cfda 9cfc 33f1 b9c3 d1b4 e6f1 ...j....3....... 0x04c0: 48b4 44ab 19fc cce8 e1c4 ad2a 4ccd 25ee H.D........*L.%. 0x04d0: 1502 5b4e dbd5 67cc cf2c 341d c251 5ea0 ..[N..g..,4..Q^. 0x04e0: 98a9 c94f cf3f 9fb6 dea1 fd01 570a 674f ...O.?......W.gO 0x04f0: 36d3 6086 3d09 553f b729 e46f d94d 6.`.=.U?.).o.M Date=2022-12-07 Time=17:05:39 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=UDP source_port=51287 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2575924265 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:39 0101021 IP 192.168.178.2.60271 > 172.16.0.5.53 : proto UDP: packet len: 60 checksum : 17090 0x0000: 4500 0050 da4d 0000 7f11 428f c0a8 b202 E..P.M....B..... 0x0010: ac10 0005 eb6f 0035 003c 42c2 e8b4 0100 .....o.5. 1.1.1.1.53 : proto UDP: packet len: 60 checksum : 60629 0x0000: 4500 0050 edf5 0000 7f11 d8fa c0a8 b202 E..P............ 0x0010: 0101 0101 eb6f 0035 003c ecd5 e8b4 0100 .....o.5.<...... 0x0020: 0001 0000 0000 0000 056b 7635 3031 0470 .........kv501.p 0x0030: 726f 6402 646f 0364 7370 026d 7009 6d69 rod.do.dsp.mp.mi 0x0040: 6372 6f73 6f66 7403 636f 6d00 0001 0001 crosoft.com..... Date=2022-12-07 Time=17:05:39 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=60271 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1925495620 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:40 0101021 IP 192.168.178.2.51287 > 142.250.185.67.443 : proto UDP: packet len: 1258 checksum : 42610 0x0000: 4500 04fe e429 4000 7f11 57dc c0a8 b202 E....)@...W..... 0x0010: 8efa b943 c857 01bb 04ea a672 c100 0000 ...C.W.....r.... 0x0020: 0108 2f64 ac20 100f a441 0000 44d0 a5ae ../d.....A..D... 0x0030: ab22 60a9 6ca0 6ac1 6bf2 a019 08b2 8e87 ."`.l.j.k....... 0x0040: 8934 aa9b 2c63 65ef 2600 1be8 39db fbd5 .4..,ce.&...9... 0x0050: f97d 4730 0212 d8ef 629b f7df 5059 69d0 .}G0....b...PYi. 0x0060: bb74 af94 a017 a2eb 092a 5179 9b45 0b16 .t.......*Qy.E.. 0x0070: ebb1 93d6 8539 fc42 c6ea 66a2 f022 282a .....9.B..f.."(* 0x0080: 9a09 5a90 e02f f9e1 8f96 c88a 4cbc 31ca ..Z../......L.1. 0x0090: f7eb 5b86 1b04 65b6 3eb3 8727 9226 e6b0 ..[...e.>..'.&.. 0x00a0: dcd7 3128 b72a cb66 3791 8b28 1105 3c14 ..1(.*.f7..(..<. 0x00b0: fae9 da6c 2553 0618 2a80 595c d3dc 9f36 ...l%S..*.Y\...6 0x00c0: 085e fb5d adee 515a c940 6f95 e6db 2375 .^.]..QZ.@o...#u 0x00d0: 5b71 e80d 1fe8 f2dc 6539 9ee0 0959 c415 [q......e9...Y.. 0x00e0: 255e 52a6 860b 427a f08c c417 3da4 0bb3 %^R...Bz....=... 0x00f0: b68a 68d2 31d8 2136 6858 ff3b 31b8 5c23 ..h.1.!6hX.;1.\# 0x0100: 75e5 4a5b eec2 5337 ebb3 8173 c217 8dd3 u.J[..S7...s.... 0x0110: e91a 896a 029f 7eb5 48bc 805d 437f bb18 ...j..~.H..]C... 0x0120: ca86 e207 20b8 b067 8225 9059 cb91 94c4 .......g.%.Y.... 0x0130: 250e 2bc8 baae c16c fbf0 6858 d61a 572f %.+....l..hX..W/ 0x0140: f503 29c7 134e 1a5e 4745 859b 543e 5acb ..)..N.^GE..T>Z. 0x0150: 1d84 960b 7944 4be7 1152 097f 0b6f 199b ....yDK..R...o.. 0x0160: aa37 8d22 edaf f5d9 24b8 3ae1 0f64 bb66 .7."....$.:..d.f 0x0170: 7c68 8459 ad4a d631 9cdc 086b 9e98 4c0d |h.Y.J.1...k..L. 0x0180: f545 3d13 7dae a18e 3ce8 9083 0396 e9f3 .E=.}...<....... 0x0190: 27a0 bf2f 409b 6c96 29bc d70f 23c2 8b64 '../@.l.)...#..d 0x01a0: 25d7 cf89 5e9f bba7 0ff2 0a61 cd2d d001 %...^......a.-.. 0x01b0: 370d 5b7f b170 e8cc a05e 81df e8b1 8831 7.[..p...^.....1 0x01c0: 0ea4 651a 5cff 1fc2 e5b2 e4e2 8a54 4ff4 ..e.\........TO. 0x01d0: d6e8 f304 5a8d c757 960c 3072 07e2 ae15 ....Z..W..0r.... 0x01e0: 5e92 4f1e 7fdb 8dc9 521a c0a0 f608 8446 ^.O.....R......F 0x01f0: 82ec 8b0c 7371 a637 9897 e827 92c9 2faa ....sq.7...'../. 0x0200: 01f6 9b20 4e35 dbd1 2b2a ed42 9eeb 82f8 ....N5..+*.B.... 0x0210: 82c6 0ffe 1bf8 6677 1d89 f687 fa26 b0db ......fw.....&.. 0x0220: 905f e886 27fb d73f f59d bb58 51e8 17ea ._..'..?...XQ... 0x0230: 38f7 aa03 1f2c da0b b3e1 ec75 f087 5026 8....,.....u..P& 0x0240: f593 75c7 0f80 bda9 03e1 3524 570a d5e7 ..u.......5$W... 0x0250: b33c f897 0f66 9e08 b155 e85f 3c5a efd1 .<...f...U._..r.za...[.. 0x03d0: 33d9 ef50 2f03 1e98 1174 7436 2227 05b9 3..P/....tt6"'.. 0x03e0: b011 ed09 da7f 5b56 78a6 92db a7b5 a271 ......[Vx......q 0x03f0: 8ab1 7b9f def7 6956 ec8b 3427 808f 1bb9 ..{...iV..4'.... 0x0400: b1fb ab17 1140 32ca 79d9 00aa f259 664b .....@2.y....YfK 0x0410: 3d9d c509 53b6 dedd 66f8 906e f959 adab =...S...f..n.Y.. 0x0420: 27d3 ca7a af5b 3684 3594 5952 d73e a98a '..z.[6.5.YR.>.. 0x0430: ce89 5e8a ff50 6215 db60 707c 903c 02ee ..^..Pb..`p|.<.. 0x0440: 95a4 4167 4f09 8048 a6b2 daf4 93f0 a714 ..AgO..H........ 0x0450: 3f20 67f7 ef11 191b 9b05 2060 f232 eef1 ?.g........`.2.. 0x0460: 95f0 cb0b 9979 511c 5cba 5039 5e94 f354 .....yQ.\.P9^..T 0x0470: 1009 f197 c693 8fb1 3651 f84d 0dc2 f227 ........6Q.M...' 0x0480: 1a42 d90e 091b c77a 82b1 52d3 6eeb a2f5 .B.....z..R.n... 0x0490: 7cc8 f86e e18f e76d b544 e962 8eba 6101 |..n...m.D.b..a. 0x04a0: 0a54 950c 0a48 1ba5 87a3 d200 df80 54fa .T...H........T. 0x04b0: eeb1 79cd ed09 1820 5f6e 6fb6 226c 600f ..y....._no."l`. 0x04c0: 3d18 14f7 fe7b 0b06 a58f 7c4f 6c81 4ae2 =....{....|Ol.J. 0x04d0: da66 3d75 d8fb 5346 f150 3c10 7d13 a0c0 .f=u..SF.P<.}... 0x04e0: d45a 0540 a76f 7714 2011 f9e3 6f45 6f28 .Z.@.ow.....oEo( 0x04f0: 1cc2 7f02 f56c 1884 dfd8 c2d6 244e .....l......$N Date=2022-12-07 Time=17:05:40 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=UDP source_port=51287 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2575924265 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:40 0101021 IP 192.168.178.2.53681 > 142.250.185.67.443 : proto TCP: S 1126432078:1126432078(0) win 65280 checksum : 41392 0x0000: 4500 0034 e42a 4000 7f06 5cb0 c0a8 b202 E..4.*@...\..... 0x0010: 8efa b943 d1b1 01bb 4323 fd4e 0000 0000 ...C....C#.N.... 0x0020: 8002 ff00 a1b0 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:40 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53681 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=203629468 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:40 0101021 IP 192.168.178.2.53682 > 142.250.185.67.443 : proto TCP: S 1180403688:1180403688(0) win 65280 checksum : 5086 0x0000: 4500 0034 e42b 4000 7f06 5caf c0a8 b202 E..4.+@...\..... 0x0010: 8efa b943 d1b2 01bb 465b 87e8 0000 0000 ...C....F[...... 0x0020: 8002 ff00 13de 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:40 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53682 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2767119641 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:40 0101021 IP 192.168.178.2.60271 > 172.16.0.5.53 : proto UDP: packet len: 60 checksum : 17090 0x0000: 4500 0050 da4e 0000 7f11 428e c0a8 b202 E..P.N....B..... 0x0010: ac10 0005 eb6f 0035 003c 42c2 e8b4 0100 .....o.5. 172.16.0.255.137 : proto UDP: packet len: 58 checksum : 44140 0x0000: 4500 004e 380a 4000 4011 a96f ac10 0006 E..N8.@.@..o.... 0x0010: ac10 00ff 0089 0089 003a ac6c 7659 0110 .........:.lvY.. 0x0020: 0001 0000 0000 0000 2046 4845 5046 4345 .........FHEPFCE 0x0030: 4c45 4846 4345 5046 4646 4143 4143 4143 LEHFCEPFFFACACAC 0x0040: 4143 4143 4143 4142 4e00 0020 0001 ACACACABN..... Date=2022-12-07 Time=17:05:41 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=00:11:32:cd:94:27 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.6 dest_ip=172.16.0.255 l4_protocol=UDP source_port=137 dest_port=137 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=378558338 masterid=0 status=256 state=0, flag0=824635817984 flags1=17179869184 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:41 0103021 IP 172.16.0.6.137 > 172.16.0.255.137 : proto UDP: packet len: 58 checksum : 44140 0x0000: 4500 004e 380b 4000 4011 a96e ac10 0006 E..N8.@.@..n.... 0x0010: ac10 00ff 0089 0089 003a ac6c 7659 0110 .........:.lvY.. 0x0020: 0001 0000 0000 0000 2046 4845 5046 4345 .........FHEPFCE 0x0030: 4c45 4846 4345 5046 4646 4143 4143 4143 LEHFCEPFFFACACAC 0x0040: 4143 4143 4143 4142 4e00 0020 0001 ACACACABN..... Date=2022-12-07 Time=17:05:41 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=00:11:32:cd:94:27 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.6 dest_ip=172.16.0.255 l4_protocol=UDP source_port=137 dest_port=137 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=378558338 masterid=0 status=256 state=0, flag0=824635817984 flags1=17179869184 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:41 0101021 IP 192.168.178.2.51287 > 142.250.185.67.443 : proto UDP: packet len: 1258 checksum : 46855 0x0000: 4500 04fe e42c 4000 7f11 57d9 c0a8 b202 E....,@...W..... 0x0010: 8efa b943 c857 01bb 04ea b707 c500 0000 ...C.W.......... 0x0020: 0108 2f64 ac20 100f a441 0000 44d0 d8b0 ../d.....A..D... 0x0030: ebf8 b553 25b6 2cd2 3b8a 73de ae60 2235 ...S%.,.;.s..`"5 0x0040: a297 cf76 c780 84af f531 bbe6 009a f66e ...v.....1.....n 0x0050: e01b c34f d2f8 0b93 af57 aadb 003d b9d0 ...O.....W...=.. 0x0060: f121 cee7 e42b 9487 3ad4 96a7 0764 3453 .!...+..:....d4S 0x0070: e2f0 bc3f e192 bcd2 63ec 6483 244c d230 ...?....c.d.$L.0 0x0080: d543 9f9e 623b 059a 804d 2a83 a56f aa14 .C..b;...M*..o.. 0x0090: 6a13 45c5 7955 2a77 2a36 c36c 58c1 4e55 j.E.yU*w*6.lX.NU 0x00a0: bef9 3ce9 7536 1a4a 2ef1 e40b 1d62 96c1 ..<.u6.J.....b.. 0x00b0: bfa4 075b fa3e 1e6b 853f 5323 7eac 0987 ...[.>.k.?S#~... 0x00c0: 2462 d8b2 b182 fd9b f5da 5024 c171 5d48 $b........P$.q]H 0x00d0: 6407 b4fd 2612 2d2c 85e5 9604 9a43 4698 d...&.-,.....CF. 0x00e0: 46f0 0b9b f0de 9001 c0be 0ab3 5add 0e60 F...........Z..` 0x00f0: 5db1 d908 a734 aa0b 3c6a 7883 35da 3fac ]....4..}2. 0x0170: f8c4 6417 e382 ce67 7da6 8475 7d48 363f ..d....g}..u}H6? 0x0180: b15a 7d80 9624 b134 adef 4a21 4672 bdbf .Z}..$.4..J!Fr.. 0x0190: f576 3df7 6944 e94b ba0e c67b 1590 3a5a .v=.iD.K...{..:Z 0x01a0: 34b2 4add 269e f317 8711 9f83 24cd bd20 4.J.&.......$... 0x01b0: 7b4a cfb7 bc47 4d6b 791b 6fe8 9144 9d1c {J...GMky.o..D.. 0x01c0: 2bab be1b 822f 8f75 6584 0cd7 ff54 7bf2 +..../.ue....T{. 0x01d0: a17e 02b4 f9a9 4095 396b 9cd6 28e4 37eb .~....@.9k..(.7. 0x01e0: 3361 89ba 7e16 6bf6 1c8c d0d1 c70b f873 3a..~.k........s 0x01f0: 8046 a24f ed25 c517 83cd e8fb 2e6d 149e .F.O.%.......m.. 0x0200: 76ed 2a4d 942f f2f3 1260 e8e5 313e 897d v.*M./...`..1>.} 0x0210: 0369 b5ed c877 c663 ec5d 51f5 7479 e25c .i...w.c.]Q.ty.\ 0x0220: 2189 a5e6 ce83 9281 4a42 61c5 09c0 d782 !.......JBa..... 0x0230: 0e7a 8b5b 14b5 3033 fd6c 8500 1455 0e6b .z.[..03.l...U.k 0x0240: ab8d 8b2b 931c 573c ede9 19b9 f4a4 4ed1 ...+..W<......N. 0x0250: 430a c4d2 6543 a7d8 8fcc 5946 d5d1 6b36 C...eC....YF..k6 0x0260: 7fce 062b e9f9 5859 fc0c 6560 34d0 4d8d ...+..XY..e`4.M. 0x0270: 181f f5ef 11e9 fcf3 f3f8 e5e9 ca91 f8fa ................ 0x0280: 53da 0f12 04c3 475e 3f0d e4f2 c5ff b3a8 S.....G^?....... 0x0290: 7a85 3e2a c67c 3567 e84c f02a 2399 5f9d z.>*.|5g.L.*#._. 0x02a0: 74ff 7491 8af1 e0bb c37d d162 a9d4 0189 t.t......}.b.... 0x02b0: 9599 cb60 3344 e9de fd82 df3e 1c65 43b5 ...`3D.....>.eC. 0x02c0: 3504 2831 b2c3 bde1 0cfb 203d 183d 4c2d 5.(1.......=.=L- 0x02d0: 98f0 558c ae62 07a9 63e4 0536 e066 3699 ..U..b..c..6.f6. 0x02e0: b3c6 a6dc cd34 ba31 0247 6fe9 3e8c 35c8 .....4.1.Go.>.5. 0x02f0: 7934 1f65 edd7 47e1 4bda ea2f 76d5 0a5d y4.e..G.K../v..] 0x0300: d061 a337 7493 f9d8 4ab9 0e31 024c fdef .a.7t...J..1.L.. 0x0310: cc49 3123 b6bf 5509 dfaa 7a88 a465 d820 .I1#..U...z..e.. 0x0320: e89c 811b 3148 7778 903a 9b3b b491 d04d ....1Hwx.:.;...M 0x0330: ee49 dada 7afb 9765 755f 98ad 828b 07be .I..z..eu_...... 0x0340: 201e 05a2 1924 e679 bf9e c6a3 6125 c6fe .....$.y....a%.. 0x0350: deef 22b1 5341 fb6e f872 c53c 13a8 91ff ..".SA.n.r.<.... 0x0360: bc37 3433 6a20 c860 620e 8830 ffa9 b264 .743j..`b..0...d 0x0370: a189 cdc5 9b2f 017e 2bf3 e497 38ec c796 ...../.~+...8... 0x0380: 27d7 44ed 900d b394 37f8 ddc6 d412 0711 '.D.....7....... 0x0390: a34f 4bd6 4c17 eb13 f332 6e4a 845f 8521 .OK.L....2nJ._.! 0x03a0: b156 be57 0b99 796d d7a0 0bf3 2ac6 d10a .V.W..ym....*... 0x03b0: d06f bbce 0ce4 3652 b4f5 480b ca1e 2555 .o....6R..H...%U 0x03c0: db42 7881 8a40 b148 c77c 53aa 2fa6 8b52 .Bx..@.H.|S./..R 0x03d0: 8888 d6ed c91d 6f33 7dda e321 0d6e 440b ......o3}..!.nD. 0x03e0: df3d 0f7a ea36 5f0a 13fc 3046 b26e 7b62 .=.z.6_...0F.n{b 0x03f0: c2cc f345 5f34 f3ec 8cad 096d 98a6 28ea ...E_4.....m..(. 0x0400: 3135 67cd 6c0b 4f1d 21fe 5ead 5702 a0e9 15g.l.O.!.^.W... 0x0410: 2472 68cd 3042 1638 6a24 68b1 107e 877e $rh.0B.8j$h..~.~ 0x0420: efd5 d1b3 0bab 7f52 8a3f d4f1 e1d8 53ff .......R.?....S. 0x0430: 4601 d205 7648 9110 6d0d 5d91 48e6 14fc F...vH..m.].H... 0x0440: 28c6 b9cb 42f8 291b a75c 8261 1522 ea15 (...B.)..\.a.".. 0x0450: a11e a375 bb18 54f6 0fdb 1b0c eeb9 fb41 ...u..T........A 0x0460: 0fbd b4cd f879 25af 8625 f29d d509 6404 .....y%..%....d. 0x0470: 2e04 2eef a336 99a4 9476 1249 26a6 55ec .....6...v.I&.U. 0x0480: 4e13 fdc9 4f75 2c30 6bde d5c2 1007 85b7 N...Ou,0k....... 0x0490: 2df4 8114 88a6 d785 a2eb ab2e 814c 8f1e -............L.. 0x04a0: 841e e947 0eb7 d42c 4d50 0141 ddbc d4a2 ...G...,MP.A.... 0x04b0: 36ca b9f2 c451 91dc 413d 8db6 8b7e 683d 6....Q..A=...~h= 0x04c0: 027f 0013 08d1 23d6 0537 ee98 6041 07da ......#..7..`A.. 0x04d0: 7c4b f96a 4ca7 2b88 5386 9835 9d7d 42f8 |K.jL.+.S..5.}B. 0x04e0: acbb e4fd c1cf 9ae1 aef4 8d0a c878 3e34 .............x>4 0x04f0: 9dc9 6cf8 8e61 3dfa ca0f ddc9 b91e ..l..a=....... Date=2022-12-07 Time=17:05:41 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=UDP source_port=51287 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2575924265 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:42 0101021 IP 192.168.178.2.53681 > 142.250.185.67.443 : proto TCP: S 1126432078:1126432078(0) win 65280 checksum : 41392 0x0000: 4500 0034 e42d 4000 7f06 5cad c0a8 b202 E..4.-@...\..... 0x0010: 8efa b943 d1b1 01bb 4323 fd4e 0000 0000 ...C....C#.N.... 0x0020: 8002 ff00 a1b0 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53681 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=203629468 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:42 0101021 IP 192.168.178.2.53682 > 142.250.185.67.443 : proto TCP: S 1180403688:1180403688(0) win 65280 checksum : 5086 0x0000: 4500 0034 e42e 4000 7f06 5cac c0a8 b202 E..4..@...\..... 0x0010: 8efa b943 d1b2 01bb 465b 87e8 0000 0000 ...C....F[...... 0x0020: 8002 ff00 13de 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53682 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2767119641 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:42 0101021 IP 192.168.178.2.60271 > 172.16.0.5.53 : proto UDP: packet len: 60 checksum : 17090 0x0000: 4500 0050 da4f 0000 7f11 428d c0a8 b202 E..P.O....B..... 0x0010: ac10 0005 eb6f 0035 003c 42c2 e8b4 0100 .....o.5. 1.1.1.1.53 : proto UDP: packet len: 60 checksum : 60629 0x0000: 4500 0050 edf6 0000 7f11 d8f9 c0a8 b202 E..P............ 0x0010: 0101 0101 eb6f 0035 003c ecd5 e8b4 0100 .....o.5.<...... 0x0020: 0001 0000 0000 0000 056b 7635 3031 0470 .........kv501.p 0x0030: 726f 6402 646f 0364 7370 026d 7009 6d69 rod.do.dsp.mp.mi 0x0040: 6372 6f73 6f66 7403 636f 6d00 0001 0001 crosoft.com..... Date=2022-12-07 Time=17:05:42 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=60271 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1925495620 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:42 010202130 IP 192.168.178.2.53555 > 142.250.186.174.443 : proto TCP: 2416539490:2416539491(1) ack 3661306413 win 512 checksum : 8892 0x0000: 4500 0029 122a 4000 8006 2c51 c0a8 b202 E..).*@...,Q.... 0x0010: 8efa baae d133 01bb 9009 7762 da3b 1a2d .....3....wb.;.- 0x0020: 5010 0200 22bc 0000 00 P...".... Date=2022-12-07 Time=17:05:42 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev= out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.186.174 l4_protocol=TCP source_port=53555 dest_port=443 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:42 0103021 IP 172.16.0.2.36207 > 172.16.0.1.65002 : proto TCP: S 3203893627:3203893627(0) win 29200 checksum : 57959 0x0000: 4500 003c 3fae 4000 4006 a2ea ac10 0002 E.. 172.16.0.255.137 : proto UDP: packet len: 58 checksum : 44140 0x0000: 4500 004e 3d35 4000 4011 a444 ac10 0006 E..N=5@.@..D.... 0x0010: ac10 00ff 0089 0089 003a ac6c 7659 0110 .........:.lvY.. 0x0020: 0001 0000 0000 0000 2046 4845 5046 4345 .........FHEPFCE 0x0030: 4c45 4846 4345 5046 4646 4143 4143 4143 LEHFCEPFFFACACAC 0x0040: 4143 4143 4143 4142 4e00 0020 0001 ACACACABN..... Date=2022-12-07 Time=17:05:43 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=00:11:32:cd:94:27 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.6 dest_ip=172.16.0.255 l4_protocol=UDP source_port=137 dest_port=137 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=378558338 masterid=0 status=256 state=0, flag0=824635817984 flags1=17179869184 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:43 0103021 IP 172.16.0.6.138 > 172.16.0.255.138 : proto UDP: packet len: 191 checksum : 33887 0x0000: 4500 00d3 3d36 4000 4011 a3be ac10 0006 E...=6@.@....... 0x0010: ac10 00ff 008a 008a 00bf 845f 110a 765a ..........._..vZ 0x0020: ac10 0006 008a 00a9 0000 2045 4345 4543 ...........ECEEC 0x0030: 4e45 4f45 4246 4443 4143 4143 4143 4143 NEOEBFDCACACACAC 0x0040: 4143 4143 4143 4143 4141 4100 2046 4845 ACACACACAAA..FHE Date=2022-12-07 Time=17:05:43 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev= inzone_id=1 outzone_id=4 source_mac=00:11:32:cd:94:27 dest_mac=ff:ff:ff:ff:ff:ff bridge_name= l3_protocol=IPv4 source_ip=172.16.0.6 dest_ip=172.16.0.255 l4_protocol=UDP source_port=138 dest_port=138 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1326404920 masterid=0 status=256 state=0, flag0=824635817984 flags1=17179869184 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:43 0101021 IP 192.168.178.2.51287 > 142.250.185.67.443 : proto UDP: packet len: 1258 checksum : 5117 0x0000: 4500 04fe e42f 4000 7f11 57d6 c0a8 b202 E..../@...W..... 0x0010: 8efa b943 c857 01bb 04ea 13fd ca00 0000 ...C.W.......... 0x0020: 0108 2f64 ac20 100f a441 0000 44d0 7fc9 ../d.....A..D... 0x0030: d5bb 39e5 ada3 ba30 a0ce bd93 c978 d332 ..9....0.....x.2 0x0040: d530 13d0 e8ad c5c8 572e f20d 1a3f e2bc .0......W....?.. 0x0050: c8b5 5d7f 4de6 3363 0803 f8ad d2e3 67e9 ..].M.3c......g. 0x0060: 80ef 6b26 28b4 0d50 bf82 e70e fd8f 554e ..k&(..P......UN 0x0070: 0382 25a8 2997 75f2 2587 ef3a edcf f802 ..%.).u.%..:.... 0x0080: 0004 434f 9b87 6403 3618 4c61 f23c ee61 ..CO..d.6.La.<.a 0x0090: c6be 305d 84cc b18b 3e23 2368 2def 409a ..0]....>##h-.@. 0x00a0: c091 dce8 84b5 ba27 55c4 d858 99ff 4f3f .......'U..X..O? 0x00b0: ab44 e3ff cc53 8034 fd2d 934c 05ee af8d .D...S.4.-.L.... 0x00c0: 8d5f 79dd 90eb 0045 4c56 8707 001a 8281 ._y....ELV...... 0x00d0: accc 4a1a a94a 9e6a 7b52 9bba 1ef5 3f7d ..J..J.j{R....?} 0x00e0: 23e9 0d0c 2ef0 4ec9 9b52 3f84 d786 a6be #.....N..R?..... 0x00f0: 2291 dc0b a686 5d78 0e55 3de6 4e4e cbff ".....]x.U=.NN.. 0x0100: cf92 2e7f 77d3 52a3 79ef 8b60 a933 3960 ....w.R.y..`.39` 0x0110: cb52 8af4 b185 d58a 301f f145 5ebd c78d .R......0..E^... 0x0120: 3c6b 8b76 652e f70e bf22 e1cd 8a36 94df ..d.B. 0x01f0: 4bda 16fe 4960 0348 bda3 05b5 19c5 46cd K...I`.H......F. 0x0200: 0ded 183a 362b 1c7d ab2f 2172 b79f a3f6 ...:6+.}./!r.... 0x0210: a920 28d4 8753 9381 32bb 5afa f8c9 4c66 ..(..S..2.Z...Lf 0x0220: ae3a 95f3 9993 cb8b 85fd 3850 e7ab 5059 .:........8P..PY 0x0230: 6005 7913 f8ab 3dfb ddf8 438c a541 8912 `.y...=...C..A.. 0x0240: 51e5 af4c c5dc 5699 1927 0069 bb61 a92d Q..L..V..'.i.a.- 0x0250: d499 0306 fbd2 f2e8 e654 9707 6cc2 5364 .........T..l.Sd 0x0260: 4e49 ccb1 ee7f b4a5 b6da 282c 95fa f6f2 NI........(,.... 0x0270: 35dd 53d5 d6ae ad4a 88fd 326f a89b 1959 5.S....J..2o...Y 0x0280: 2f61 e3fb d5e5 d885 4786 6a60 d338 447a /a......G.j`.8Dz 0x0290: 7f6a 67b3 50ae 3fa8 19c1 01b0 8985 6245 .jg.P.?.......bE 0x02a0: 8a60 e659 62e3 2bb9 4abb 9aa6 3331 ec26 .`.Yb.+.J...31.& 0x02b0: cdd3 3699 8bf8 e1f3 a6c0 1f7f 91c4 2ba9 ..6...........+. 0x02c0: cb7e f2f1 fe03 1514 2d05 6206 5a3e 61d8 .~......-.b.Z>a. 0x02d0: 6679 c992 7082 d256 c6c2 602f 21e9 d1ad fy..p..V..`/!... 0x02e0: 5521 8ca1 e61f d167 70bf 469b e4d4 38dc U!.....gp.F...8. 0x02f0: c66e fd11 ba81 fe97 e921 43e1 b9d9 b361 .n.......!C....a 0x0300: 0585 3d9d 89da 9a80 2fc7 b35a 7290 1385 ..=...../..Zr... 0x0310: c4c3 2ea1 c414 dd66 0938 4849 f3f3 d76f .......f.8HI...o 0x0320: 4416 8171 23ad 473f e324 e4f5 c803 3b0e D..q#.G?.$....;. 0x0330: 9cb1 889c 6b65 8af7 2207 675b 7f5d 46a1 ....ke..".g[.]F. 0x0340: 3814 2cc0 f5cd 514e 52b3 2a85 4317 ced5 8.,...QNR.*.C... 0x0350: 20aa 946a 8136 ece8 e295 0801 1c5c 36c8 ...j.6.......\6. 0x0360: df6b 95ab 8ab3 f5d1 7357 283e e9a8 2db3 .k......sW(>..-. 0x0370: 90d6 728e c732 5fb2 1868 0d9a 4b11 b758 ..r..2_..h..K..X 0x0380: cfed 876a 0223 5773 caf6 6a41 c814 a45f ...j.#Ws..jA..._ 0x0390: dc1e 7f8d 0f4b 63c0 de50 983f fad5 07f6 .....Kc..P.?.... 0x03a0: 782f f0ac ade3 3146 990c f03b 3473 ab81 x/....1F...;4s.. 0x03b0: 45ba 5067 426f 1988 89d1 bc0c 6f63 11fc E.PgBo......oc.. 0x03c0: 56e5 40b1 41f6 d9d6 d89e 63f8 8db4 4341 V.@.A.....c...CA 0x03d0: 8e54 419a 773f 299d 2206 1b5b d3d9 4ae1 .TA.w?)."..[..J. 0x03e0: 9dac ce22 c374 ea54 2210 5798 7abd 0e39 ...".t.T".W.z..9 0x03f0: 5d30 6e4b 3e7e 0b37 6b8c 8125 6892 4876 ]0nK>~.7k..%h.Hv 0x0400: ad85 a7d5 7553 9322 9d82 f080 790d 593a ....uS."....y.Y: 0x0410: 48c3 416c b61d 25d1 c14c f04b 640d 58b4 H.Al..%..L.Kd.X. 0x0420: 300b beac 7c1b 889e 780a 6517 af80 27ab 0...|...x.e...'. 0x0430: 0a5d 0f24 c655 566b ded5 369e 44e7 7060 .].$.UVk..6.D.p` 0x0440: 0f57 d16b a2b2 431e 1ebd 6be5 f860 2ba4 .W.k..C...k..`+. 0x0450: 051d 720d 7f02 3eea 6191 d592 4a57 fda6 ..r...>.a...JW.. 0x0460: 6a66 7d59 31b0 95c5 9311 1f26 281e 073e jf}Y1......&(..> 0x0470: dcbb 7e1b 5e3f f421 c7b5 edda 7ba9 dcc7 ..~.^?.!....{... 0x0480: a929 7e78 b37d 69b9 9729 22c5 4f0d 661d .)~x.}i..)".O.f. 0x0490: d24a ab25 0c1e 1c96 a057 262c 38ca 069a .J.%.....W&,8... 0x04a0: dba2 aacf 578b 2b61 317b 1c44 1ee8 92a8 ....W.+a1{.D.... 0x04b0: f396 0406 8996 c5cb 84fe 1a38 833e fac8 ...........8.>.. 0x04c0: 67cb 09c0 48f9 320f 20aa f56e c692 131d g...H.2....n.... 0x04d0: b08b 7ce0 8cd4 3740 f008 6d53 43da 8073 ..|...7@..mSC..s 0x04e0: 0784 9682 ed6b 1a39 cdfc 661f 5a0b 8412 .....k.9..f.Z... 0x04f0: 5a69 764b 0b26 438d e410 eb4f 0310 ZivK.&C....O.. Date=2022-12-07 Time=17:05:43 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=UDP source_port=51287 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2575924265 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:44 0101021 IP 192.241.199.81.46229 > 37.49.83.180.465 : proto TCP: S 1943749304:1943749304(0) win 65535 checksum : 11680 0x0000: 4500 002c d431 0000 f006 f571 c0f1 c751 E..,.1.....q...Q 0x0010: 2531 53b4 b495 01d1 73db 42b8 0000 0000 %1S.....s.B..... 0x0020: 6002 ffff 2da0 0000 0204 0218 `...-....... Date=2022-12-07 Time=17:05:44 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortB out_dev=PortB inzone_id=2 outzone_id=2 source_mac=00:01:5c:7a:44:46 dest_mac=00:0c:29:4a:50:0d bridge_name= l3_protocol=IPv4 source_ip=192.241.199.81 dest_ip=37.49.83.180 l4_protocol=TCP source_port=46229 dest_port=465 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x8001 nfqueue=0 gateway_offset=0 connid=3593786728 masterid=0 status=256 state=1, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:44 0101021 IP 192.168.178.2.59916 > 172.16.0.5.53 : proto UDP: packet len: 49 checksum : 36794 0x0000: 4500 0045 da50 0000 7f11 4297 c0a8 b202 E..E.P....B..... 0x0010: ac10 0005 ea0c 0035 0031 8fba 55b6 0100 .......5.1..U... 0x0020: 0001 0000 0000 0000 0377 7777 0f6d 7366 .........www.msf 0x0030: 7463 6f6e 6e65 6374 7465 7374 0363 6f6d tconnecttest.com 0x0040: 0000 0100 01 ..... Date=2022-12-07 Time=17:05:44 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=59916 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1148510929 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:44 010202130 IP 192.168.178.2.53529 > 13.224.191.79.443 : proto TCP: 481617219:481617220(1) ack 4282517848 win 1026 checksum : 36495 0x0000: 4500 0029 2394 4000 8006 9760 c0a8 b202 E..)#.@....`.... 0x0010: 0de0 bf4f d119 01bb 1cb4 e543 ff42 0958 ...O.......C.B.X 0x0020: 5010 0402 8e8f 0000 00 P........ Date=2022-12-07 Time=17:05:44 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev= out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=13.224.191.79 l4_protocol=TCP source_port=53529 dest_port=443 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:44 0101021 IP 192.168.178.2.59916 > 1.1.1.1.53 : proto UDP: packet len: 49 checksum : 14798 0x0000: 4500 0045 edf7 0000 7f11 d903 c0a8 b202 E..E............ 0x0010: 0101 0101 ea0c 0035 0031 39ce 55b6 0100 .......5.19.U... 0x0020: 0001 0000 0000 0000 0377 7777 0f6d 7366 .........www.msf 0x0030: 7463 6f6e 6e65 6374 7465 7374 0363 6f6d tconnecttest.com 0x0040: 0000 0100 01 ..... Date=2022-12-07 Time=17:05:44 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=59916 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2700603535 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:45 0101021 IP 192.168.178.2.51836 > 172.16.0.5.53 : proto UDP: packet len: 62 checksum : 57061 0x0000: 4500 0052 da51 0000 7f11 4289 c0a8 b202 E..R.Q....B..... 0x0010: ac10 0005 ca7c 0035 003e dee5 1514 0100 .....|.5.>...... 0x0020: 0001 0000 0000 0000 0764 6973 6335 3031 .........disc501 0x0030: 0470 726f 6402 646f 0364 7370 026d 7009 .prod.do.dsp.mp. 0x0040: 6d69 6372 6f73 6f66 7403 636f 6d00 0001 microsoft.com... 0x0050: 0001 .. Date=2022-12-07 Time=17:05:45 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=51836 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=873215587 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:45 0101021 IP 192.168.178.2.51836 > 1.1.1.1.53 : proto UDP: packet len: 62 checksum : 35065 0x0000: 4500 0052 edf8 0000 7f11 d8f5 c0a8 b202 E..R............ 0x0010: 0101 0101 ca7c 0035 003e 88f9 1514 0100 .....|.5.>...... 0x0020: 0001 0000 0000 0000 0764 6973 6335 3031 .........disc501 0x0030: 0470 726f 6402 646f 0364 7370 026d 7009 .prod.do.dsp.mp. 0x0040: 6d69 6372 6f73 6f66 7403 636f 6d00 0001 microsoft.com... 0x0050: 0001 .. Date=2022-12-07 Time=17:05:45 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=51836 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2600084233 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:45 0101021 IP 192.168.178.2.59916 > 172.16.0.5.53 : proto UDP: packet len: 49 checksum : 36794 0x0000: 4500 0045 da52 0000 7f11 4295 c0a8 b202 E..E.R....B..... 0x0010: ac10 0005 ea0c 0035 0031 8fba 55b6 0100 .......5.1..U... 0x0020: 0001 0000 0000 0000 0377 7777 0f6d 7366 .........www.msf 0x0030: 7463 6f6e 6e65 6374 7465 7374 0363 6f6d tconnecttest.com 0x0040: 0000 0100 01 ..... Date=2022-12-07 Time=17:05:45 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=59916 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1148510929 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:46 0101021 IP 192.168.178.2.53681 > 142.250.185.67.443 : proto TCP: S 1126432078:1126432078(0) win 65280 checksum : 41392 0x0000: 4500 0034 e430 4000 7f06 5caa c0a8 b202 E..4.0@...\..... 0x0010: 8efa b943 d1b1 01bb 4323 fd4e 0000 0000 ...C....C#.N.... 0x0020: 8002 ff00 a1b0 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:46 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53681 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=203629468 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:46 0101021 IP 192.168.178.2.53682 > 142.250.185.67.443 : proto TCP: S 1180403688:1180403688(0) win 65280 checksum : 5086 0x0000: 4500 0034 e431 4000 7f06 5ca9 c0a8 b202 E..4.1@...\..... 0x0010: 8efa b943 d1b2 01bb 465b 87e8 0000 0000 ...C....F[...... 0x0020: 8002 ff00 13de 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:46 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53682 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2767119641 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:46 0101021 IP 192.168.178.2.51836 > 172.16.0.5.53 : proto UDP: packet len: 62 checksum : 57061 0x0000: 4500 0052 da53 0000 7f11 4287 c0a8 b202 E..R.S....B..... 0x0010: ac10 0005 ca7c 0035 003e dee5 1514 0100 .....|.5.>...... 0x0020: 0001 0000 0000 0000 0764 6973 6335 3031 .........disc501 0x0030: 0470 726f 6402 646f 0364 7370 026d 7009 .prod.do.dsp.mp. 0x0040: 6d69 6372 6f73 6f66 7403 636f 6d00 0001 microsoft.com... 0x0050: 0001 .. Date=2022-12-07 Time=17:05:46 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=51836 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=873215587 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:46 0101021 IP 192.168.178.2.60271 > 172.16.0.5.53 : proto UDP: packet len: 60 checksum : 17090 0x0000: 4500 0050 da54 0000 7f11 4288 c0a8 b202 E..P.T....B..... 0x0010: ac10 0005 eb6f 0035 003c 42c2 e8b4 0100 .....o.5. 1.1.1.1.53 : proto UDP: packet len: 60 checksum : 60629 0x0000: 4500 0050 edf9 0000 7f11 d8f6 c0a8 b202 E..P............ 0x0010: 0101 0101 eb6f 0035 003c ecd5 e8b4 0100 .....o.5.<...... 0x0020: 0001 0000 0000 0000 056b 7635 3031 0470 .........kv501.p 0x0030: 726f 6402 646f 0364 7370 026d 7009 6d69 rod.do.dsp.mp.mi 0x0040: 6372 6f73 6f66 7403 636f 6d00 0001 0001 crosoft.com..... Date=2022-12-07 Time=17:05:46 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=60271 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1925495620 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:47 0101021 IP 36.154.224.78.123 > 37.49.83.180.123 : proto UDP: packet len: 12 checksum : 25874 0x0000: 4500 0020 0000 4000 2f11 cdff 249a e04e E.....@./...$..N 0x0010: 2531 53b4 007b 007b 000c 6512 1c00 0000 %1S..{.{..e..... Date=2022-12-07 Time=17:05:47 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortB out_dev=PortB inzone_id=2 outzone_id=2 source_mac=00:01:5c:7a:44:46 dest_mac=00:0c:29:4a:50:0d bridge_name= l3_protocol=IPv4 source_ip=36.154.224.78 dest_ip=37.49.83.180 l4_protocol=UDP source_port=123 dest_port=123 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x8001 nfqueue=0 gateway_offset=0 connid=3198184109 masterid=0 status=256 state=0, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:47 0101021 IP 172.16.0.155.57243 > 18.185.162.35.5083 : proto UDP: packet len: 89 checksum : 28043 0x0000: 4500 006d 0000 4000 3f11 d9f8 ac10 009b E..m..@.?....... 0x0010: 12b9 a223 df9b 13db 0059 6d8b 0000 0051 ...#.....Ym....Q 0x0020: 0817 1a05 342e 302e 3022 064e 6174 4f6e ....4.0.0".NatOn 0x0030: 6528 d49f 0140 0148 015a 30aa 7954 1a19 e(...@.H.Z0.yT.. 0x0040: 99d8 ab3d 4ac8 66cf 317e e2cb ab0c 6800 ...=J.f.1~....h. 0x0050: d60d f0bd cad2 421b 9bb9 8c57 7c26 d480 ......B....W|&.. 0x0060: 3f93 2d16 f5cb 8b44 5f32 1570 00 ?.-....D_2.p. Date=2022-12-07 Time=17:05:47 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev=PortB inzone_id=1 outzone_id=2 source_mac=44:01:bb:cb:b2:16 dest_mac=00:0c:29:4a:50:03 bridge_name= l3_protocol=IPv4 source_ip=172.16.0.155 dest_ip=18.185.162.35 l4_protocol=UDP source_port=57243 dest_port=5083 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1965904557 masterid=0 status=256 state=0, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:47 0101021 IP 172.16.0.151.34752 > 66.102.1.188.5228 : proto TCP: S 421487189:421487189(0) win 65535 checksum : 54606 0x0000: 4500 003c 3281 4000 3f06 1872 ac10 0097 E..<2.@.?..r.... 0x0010: 4266 01bc 87c0 146c 191f 6255 0000 0000 Bf.....l..bU.... 0x0020: a002 ffff d54e 0000 0204 05b4 0402 080a .....N.......... 0x0030: 0148 6900 0000 0000 0103 0306 .Hi......... Date=2022-12-07 Time=17:05:47 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev=PortB inzone_id=1 outzone_id=2 source_mac=54:13:79:9d:7f:89 dest_mac=00:0c:29:4a:50:03 bridge_name= l3_protocol=IPv4 source_ip=172.16.0.151 dest_ip=66.102.1.188 l4_protocol=TCP source_port=34752 dest_port=5228 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=685937322 masterid=0 status=256 state=1, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:47 0101021 IP 192.168.178.2.59916 > 172.16.0.5.53 : proto UDP: packet len: 49 checksum : 36794 0x0000: 4500 0045 da55 0000 7f11 4292 c0a8 b202 E..E.U....B..... 0x0010: ac10 0005 ea0c 0035 0031 8fba 55b6 0100 .......5.1..U... 0x0020: 0001 0000 0000 0000 0377 7777 0f6d 7366 .........www.msf 0x0030: 7463 6f6e 6e65 6374 7465 7374 0363 6f6d tconnecttest.com 0x0040: 0000 0100 01 ..... Date=2022-12-07 Time=17:05:47 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=59916 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1148510929 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:47 0101021 IP 192.168.178.2.59916 > 1.1.1.1.53 : proto UDP: packet len: 49 checksum : 14798 0x0000: 4500 0045 edfa 0000 7f11 d900 c0a8 b202 E..E............ 0x0010: 0101 0101 ea0c 0035 0031 39ce 55b6 0100 .......5.19.U... 0x0020: 0001 0000 0000 0000 0377 7777 0f6d 7366 .........www.msf 0x0030: 7463 6f6e 6e65 6374 7465 7374 0363 6f6d tconnecttest.com 0x0040: 0000 0100 01 ..... Date=2022-12-07 Time=17:05:47 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=59916 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2700603535 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:48 0101021 IP 192.168.178.2.51836 > 172.16.0.5.53 : proto UDP: packet len: 62 checksum : 57061 0x0000: 4500 0052 da56 0000 7f11 4284 c0a8 b202 E..R.V....B..... 0x0010: ac10 0005 ca7c 0035 003e dee5 1514 0100 .....|.5.>...... 0x0020: 0001 0000 0000 0000 0764 6973 6335 3031 .........disc501 0x0030: 0470 726f 6402 646f 0364 7370 026d 7009 .prod.do.dsp.mp. 0x0040: 6d69 6372 6f73 6f66 7403 636f 6d00 0001 microsoft.com... 0x0050: 0001 .. Date=2022-12-07 Time=17:05:48 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=51836 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=873215587 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:48 0101021 IP 192.168.178.2.51836 > 1.1.1.1.53 : proto UDP: packet len: 62 checksum : 35065 0x0000: 4500 0052 edfb 0000 7f11 d8f2 c0a8 b202 E..R............ 0x0010: 0101 0101 ca7c 0035 003e 88f9 1514 0100 .....|.5.>...... 0x0020: 0001 0000 0000 0000 0764 6973 6335 3031 .........disc501 0x0030: 0470 726f 6402 646f 0364 7370 026d 7009 .prod.do.dsp.mp. 0x0040: 6d69 6372 6f73 6f66 7403 636f 6d00 0001 microsoft.com... 0x0050: 0001 .. Date=2022-12-07 Time=17:05:48 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=51836 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2600084233 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:49 0101021 IP 192.168.178.2.64292 > 172.16.0.5.53 : proto UDP: packet len: 42 checksum : 58690 0x0000: 4500 003e da57 0000 7f11 4297 c0a8 b202 E..>.W....B..... 0x0010: ac10 0005 fb24 0035 002a e542 003a 0100 .....$.5.*.B.:.. 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:05:49 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=64292 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=833963615 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:49 0101021 IP 192.168.178.2.64292 > 1.1.1.1.53 : proto UDP: packet len: 42 checksum : 36694 0x0000: 4500 003e edfc 0000 7f11 d905 c0a8 b202 E..>............ 0x0010: 0101 0101 fb24 0035 002a 8f56 003a 0100 .....$.5.*.V.:.. 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:05:49 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=64292 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=90572025 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:49 0101021 IP 192.241.206.92.51063 > 37.49.83.180.50070 : proto TCP: S 3571916601:3571916601(0) win 65535 checksum : 5216 0x0000: 4500 002c d431 0000 f006 ee66 c0f1 ce5c E..,.1.....f...\ 0x0010: 2531 53b4 c777 c396 d4e7 1f39 0000 0000 %1S..w.....9.... 0x0020: 6002 ffff 1460 0000 0204 0218 `....`...... Date=2022-12-07 Time=17:05:49 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortB out_dev=PortB inzone_id=2 outzone_id=2 source_mac=00:01:5c:7a:44:46 dest_mac=00:0c:29:4a:50:0d bridge_name= l3_protocol=IPv4 source_ip=192.241.206.92 dest_ip=37.49.83.180 l4_protocol=TCP source_port=51063 dest_port=50070 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x8001 nfqueue=0 gateway_offset=0 connid=35980926 masterid=0 status=256 state=1, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:50 0101021 IP 192.168.178.2.53684 > 23.196.247.70.443 : proto TCP: S 2044407997:2044407997(0) win 65280 checksum : 28858 0x0000: 4500 0034 ce03 4000 7f06 ac0a c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b4 01bb 79db 30bd 0000 0000 ...F....y.0..... 0x0020: 8002 ff00 70ba 0000 0204 054b 0103 0308 ....p......K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:50 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53684 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3058132667 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:50 0101021 IP 192.168.178.2.64292 > 172.16.0.5.53 : proto UDP: packet len: 42 checksum : 58690 0x0000: 4500 003e da58 0000 7f11 4296 c0a8 b202 E..>.X....B..... 0x0010: ac10 0005 fb24 0035 002a e542 003a 0100 .....$.5.*.B.:.. 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:05:50 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=64292 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=833963615 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:51 0101021 IP 192.168.178.2.53526 > 151.101.65.16.443 : proto TCP: 920583224:920583225(1) ack 2154397835 win 2051 checksum : 21970 0x0000: 4500 0029 1e95 4000 7f06 9219 c0a8 b202 E..)..@......... 0x0010: 9765 4110 d116 01bb 36de fc38 8069 808b .eA.....6..8.i.. 0x0020: 5010 0803 55d2 0000 00 P...U.... Date=2022-12-07 Time=17:05:51 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=151.101.65.16 l4_protocol=TCP source_port=53526 dest_port=443 fw_rule_id=0 policytype=2 live_userid=0 userid=0 user_gp=0 ips_id=5 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=3 app_id=1285 category_id=29 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=2 cluster_node=0 inmark=0x0 nfqueue=1 gateway_offset=0 connid=1239798217 masterid=0 status=414 state=3, flag0=1190085549719814154 flags1=31890778097431 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:51 0101021 IP 192.168.178.2.53684 > 23.196.247.70.443 : proto TCP: S 2044407997:2044407997(0) win 65280 checksum : 28858 0x0000: 4500 0034 ce04 4000 7f06 ac09 c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b4 01bb 79db 30bd 0000 0000 ...F....y.0..... 0x0020: 8002 ff00 70ba 0000 0204 054b 0103 0308 ....p......K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:51 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53684 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3058132667 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:51 0101021 IP 192.168.178.2.59916 > 172.16.0.5.53 : proto UDP: packet len: 49 checksum : 36794 0x0000: 4500 0045 da59 0000 7f11 428e c0a8 b202 E..E.Y....B..... 0x0010: ac10 0005 ea0c 0035 0031 8fba 55b6 0100 .......5.1..U... 0x0020: 0001 0000 0000 0000 0377 7777 0f6d 7366 .........www.msf 0x0030: 7463 6f6e 6e65 6374 7465 7374 0363 6f6d tconnecttest.com 0x0040: 0000 0100 01 ..... Date=2022-12-07 Time=17:05:51 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=59916 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1148510929 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:51 0101021 IP 192.168.178.2.59916 > 1.1.1.1.53 : proto UDP: packet len: 49 checksum : 14798 0x0000: 4500 0045 edfd 0000 7f11 d8fd c0a8 b202 E..E............ 0x0010: 0101 0101 ea0c 0035 0031 39ce 55b6 0100 .......5.19.U... 0x0020: 0001 0000 0000 0000 0377 7777 0f6d 7366 .........www.msf 0x0030: 7463 6f6e 6e65 6374 7465 7374 0363 6f6d tconnecttest.com 0x0040: 0000 0100 01 ..... Date=2022-12-07 Time=17:05:51 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=59916 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2700603535 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:51 010202130 IP 192.168.178.2.53532 > 54.194.250.225.443 : proto TCP: 30556958:30556959(1) ack 3635405037 win 509 checksum : 14370 0x0000: 4500 0029 d8e8 4000 8006 7d97 c0a8 b202 E..)..@...}..... 0x0010: 36c2 fae1 d11c 01bb 01d2 431e d8af e0ed 6.........C..... 0x0020: 5010 01fd 3822 0000 00 P...8"... Date=2022-12-07 Time=17:05:51 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev= out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=54.194.250.225 l4_protocol=TCP source_port=53532 dest_port=443 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:52 0101021 IP 172.16.0.155.60274 > 18.185.162.35.5083 : proto UDP: packet len: 88 checksum : 56206 0x0000: 4500 006c 0000 4000 3f11 d9f9 ac10 009b E..l..@.?....... 0x0010: 12b9 a223 eb72 13db 0058 db8e 0000 0050 ...#.r...X.....P 0x0020: 0817 1a05 342e 302e 3022 064e 6174 4f6e ....4.0.0".NatOn 0x0030: 6528 c862 4001 4801 5a30 e02a 36d8 d22a e(.b@.H.Z0.*6..* 0x0040: 1cc9 0fef 5be7 318d 11eb f7b2 784d 5c17 ....[.1.....xM\. 0x0050: c627 cd7e fbab 98da 32c2 d0b6 88f0 854a .'.~....2......J 0x0060: a3a5 ec8f f0be 1b23 7da9 7000 .......#}.p. Date=2022-12-07 Time=17:05:52 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev=PortB inzone_id=1 outzone_id=2 source_mac=44:01:bb:cb:b2:16 dest_mac=00:0c:29:4a:50:03 bridge_name= l3_protocol=IPv4 source_ip=172.16.0.155 dest_ip=18.185.162.35 l4_protocol=UDP source_port=60274 dest_port=5083 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=295056801 masterid=0 status=256 state=0, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:52 0101021 IP 192.168.178.2.51836 > 172.16.0.5.53 : proto UDP: packet len: 62 checksum : 57061 0x0000: 4500 0052 da5a 0000 7f11 4280 c0a8 b202 E..R.Z....B..... 0x0010: ac10 0005 ca7c 0035 003e dee5 1514 0100 .....|.5.>...... 0x0020: 0001 0000 0000 0000 0764 6973 6335 3031 .........disc501 0x0030: 0470 726f 6402 646f 0364 7370 026d 7009 .prod.do.dsp.mp. 0x0040: 6d69 6372 6f73 6f66 7403 636f 6d00 0001 microsoft.com... 0x0050: 0001 .. Date=2022-12-07 Time=17:05:52 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=51836 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=873215587 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:52 0101021 IP 192.168.178.2.51836 > 1.1.1.1.53 : proto UDP: packet len: 62 checksum : 35065 0x0000: 4500 0052 edfe 0000 7f11 d8ef c0a8 b202 E..R............ 0x0010: 0101 0101 ca7c 0035 003e 88f9 1514 0100 .....|.5.>...... 0x0020: 0001 0000 0000 0000 0764 6973 6335 3031 .........disc501 0x0030: 0470 726f 6402 646f 0364 7370 026d 7009 .prod.do.dsp.mp. 0x0040: 6d69 6372 6f73 6f66 7403 636f 6d00 0001 microsoft.com... 0x0050: 0001 .. Date=2022-12-07 Time=17:05:52 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=51836 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2600084233 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:52 0101021 IP 192.168.178.2.64292 > 172.16.0.5.53 : proto UDP: packet len: 42 checksum : 58690 0x0000: 4500 003e da5b 0000 7f11 4293 c0a8 b202 E..>.[....B..... 0x0010: ac10 0005 fb24 0035 002a e542 003a 0100 .....$.5.*.B.:.. 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:05:52 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=64292 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=833963615 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:52 0101021 IP 192.168.178.2.64292 > 1.1.1.1.53 : proto UDP: packet len: 42 checksum : 36694 0x0000: 4500 003e edff 0000 7f11 d902 c0a8 b202 E..>............ 0x0010: 0101 0101 fb24 0035 002a 8f56 003a 0100 .....$.5.*.V.:.. 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:05:52 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=64292 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=90572025 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:53 0101021 IP 192.168.178.2.53684 > 23.196.247.70.443 : proto TCP: S 2044407997:2044407997(0) win 65280 checksum : 28858 0x0000: 4500 0034 ce05 4000 7f06 ac08 c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b4 01bb 79db 30bd 0000 0000 ...F....y.0..... 0x0020: 8002 ff00 70ba 0000 0204 054b 0103 0308 ....p......K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:53 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53684 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3058132667 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:54 0101021 IP 192.168.178.2.53681 > 142.250.185.67.443 : proto TCP: S 1126432078:1126432078(0) win 65280 checksum : 41392 0x0000: 4500 0034 e432 4000 7f06 5ca8 c0a8 b202 E..4.2@...\..... 0x0010: 8efa b943 d1b1 01bb 4323 fd4e 0000 0000 ...C....C#.N.... 0x0020: 8002 ff00 a1b0 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:54 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53681 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=203629468 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:54 0101021 IP 192.168.178.2.53682 > 142.250.185.67.443 : proto TCP: S 1180403688:1180403688(0) win 65280 checksum : 5086 0x0000: 4500 0034 e433 4000 7f06 5ca7 c0a8 b202 E..4.3@...\..... 0x0010: 8efa b943 d1b2 01bb 465b 87e8 0000 0000 ...C....F[...... 0x0020: 8002 ff00 13de 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:54 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=142.250.185.67 l4_protocol=TCP source_port=53682 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2767119641 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:54 0101021 IP 192.168.178.2. > 172.16.0.5. :proto ICMP: echo request seq 2557 0x0000: 4500 003c da5c 0000 7f01 42a4 c0a8 b202 E..<.\....B..... 0x0010: ac10 0005 0800 435e 0001 09fd 6162 6364 ......C^....abcd 0x0020: 6566 6768 696a 6b6c 6d6e 6f70 7172 7374 efghijklmnopqrst 0x0030: 7576 7761 6263 6465 6667 6869 uvwabcdefghi Date=2022-12-07 Time=17:05:54 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3913910111 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:55 0101021 IP 192.168.178.2.53528 > 151.101.65.16.443 : proto TCP: 2870310536:2870310537(1) ack 2047618520 win 511 checksum : 50781 0x0000: 4500 0029 1e96 4000 7f06 9218 c0a8 b202 E..)..@......... 0x0010: 9765 4110 d118 01bb ab15 7688 7a0c 2dd8 .eA.......v.z.-. 0x0020: 5010 01ff c65d 0000 00 P....]... Date=2022-12-07 Time=17:05:55 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=151.101.65.16 l4_protocol=TCP source_port=53528 dest_port=443 fw_rule_id=0 policytype=2 live_userid=0 userid=0 user_gp=0 ips_id=5 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=3 app_id=1285 category_id=29 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=2 cluster_node=0 inmark=0x0 nfqueue=3 gateway_offset=0 connid=4013271064 masterid=0 status=414 state=3, flag0=1190085549719814154 flags1=31890778097431 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:56 0101021 IP 192.168.178.2.53685 > 23.196.247.70.443 : proto TCP: S 2928852076:2928852076(0) win 65280 checksum : 45138 0x0000: 4500 0034 ce06 4000 7f06 ac07 c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b5 01bb ae92 bc6c 0000 0000 ...F.......l.... 0x0020: 8002 ff00 b052 0000 0204 054b 0103 0308 .....R.....K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:56 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53685 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1600512530 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:56 0101021 IP 192.168.178.2.64292 > 172.16.0.5.53 : proto UDP: packet len: 42 checksum : 58690 0x0000: 4500 003e da5d 0000 7f11 4291 c0a8 b202 E..>.]....B..... 0x0010: ac10 0005 fb24 0035 002a e542 003a 0100 .....$.5.*.B.:.. 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:05:56 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=64292 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=833963615 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:56 0101021 IP 192.168.178.2.64292 > 1.1.1.1.53 : proto UDP: packet len: 42 checksum : 36694 0x0000: 4500 003e ee00 0000 7f11 d901 c0a8 b202 E..>............ 0x0010: 0101 0101 fb24 0035 002a 8f56 003a 0100 .....$.5.*.V.:.. 0x0020: 0001 0000 0000 0000 0364 6e73 086d 7366 .........dns.msf 0x0030: 746e 6373 6903 636f 6d00 0001 0001 tncsi.com..... Date=2022-12-07 Time=17:05:56 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=64292 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=90572025 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:57 0101021 IP 172.16.0.155.53183 > 18.185.162.35.5083 : proto UDP: packet len: 88 checksum : 24280 0x0000: 4500 006c 0000 4000 3f11 d9f9 ac10 009b E..l..@.?....... 0x0010: 12b9 a223 cfbf 13db 0058 5ed8 0000 0050 ...#.....X^....P 0x0020: 0817 1a05 342e 302e 3022 064e 6174 4f6e ....4.0.0".NatOn 0x0030: 6528 bc78 4001 4801 5a30 dae7 bfe8 49d1 e(.x@.H.Z0....I. 0x0040: f64e 7933 ec53 88cf ff45 2cd8 9b81 02a7 .Ny3.S...E,..... 0x0050: 996f 30c2 ae3a 9a7c f630 6efb b517 ead6 .o0..:.|.0n..... 0x0060: 64f7 38b3 31a4 d59c 28d5 7000 d.8.1...(.p. Date=2022-12-07 Time=17:05:57 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortA out_dev=PortB inzone_id=1 outzone_id=2 source_mac=44:01:bb:cb:b2:16 dest_mac=00:0c:29:4a:50:03 bridge_name= l3_protocol=IPv4 source_ip=172.16.0.155 dest_ip=18.185.162.35 l4_protocol=UDP source_port=53183 dest_port=5083 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=258241078 masterid=0 status=256 state=0, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:57 0101021 IP 192.168.178.2.53685 > 23.196.247.70.443 : proto TCP: S 2928852076:2928852076(0) win 65280 checksum : 45138 0x0000: 4500 0034 ce07 4000 7f06 ac06 c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b5 01bb ae92 bc6c 0000 0000 ...F.......l.... 0x0020: 8002 ff00 b052 0000 0204 054b 0103 0308 .....R.....K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:57 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53685 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1600512530 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:57 0101021 IP 192.168.178.2.53684 > 23.196.247.70.443 : proto TCP: S 2044407997:2044407997(0) win 65280 checksum : 28858 0x0000: 4500 0034 ce08 4000 7f06 ac05 c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b4 01bb 79db 30bd 0000 0000 ...F....y.0..... 0x0020: 8002 ff00 70ba 0000 0204 054b 0103 0308 ....p......K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:57 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53684 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3058132667 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:58 010202130 IP 192.168.178.2.53527 > 13.224.191.79.443 : proto TCP: 949630672:949630673(1) ack 890112131 win 508 checksum : 60974 0x0000: 4500 0029 2395 4000 8006 975f c0a8 b202 E..)#.@...._.... 0x0010: 0de0 bf4f d117 01bb 389a 36d0 350e 0883 ...O....8.6.5... 0x0020: 5010 01fc ee2e 0000 00 P........ Date=2022-12-07 Time=17:05:58 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev= out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=13.224.191.79 l4_protocol=TCP source_port=53527 dest_port=443 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:59 0101021 IP 192.168.178.2. > 172.16.0.5. :proto ICMP: echo request seq 2558 0x0000: 4500 003c da5e 0000 7f01 42a2 c0a8 b202 E..<.^....B..... 0x0010: ac10 0005 0800 435d 0001 09fe 6162 6364 ......C]....abcd 0x0020: 6566 6768 696a 6b6c 6d6e 6f70 7172 7374 efghijklmnopqrst 0x0030: 7576 7761 6263 6465 6667 6869 uvwabcdefghi Date=2022-12-07 Time=17:05:59 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2543570465 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:05:59 0101021 IP 192.168.178.2.53685 > 23.196.247.70.443 : proto TCP: S 2928852076:2928852076(0) win 65280 checksum : 45138 0x0000: 4500 0034 ce09 4000 7f06 ac04 c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b5 01bb ae92 bc6c 0000 0000 ...F.......l.... 0x0020: 8002 ff00 b052 0000 0204 054b 0103 0308 .....R.....K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:05:59 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53685 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2509097886 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:03 0101021 IP 192.168.178.2.53685 > 23.196.247.70.443 : proto TCP: S 2928852076:2928852076(0) win 65280 checksum : 45138 0x0000: 4500 0034 ce0a 4000 7f06 ac03 c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b5 01bb ae92 bc6c 0000 0000 ...F.......l.... 0x0020: 8002 ff00 b052 0000 0204 054b 0103 0308 .....R.....K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:06:03 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53685 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1012517111 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:04 0101021 IP 176.113.115.144.57252 > 37.49.83.180.11495 : proto TCP: S 324216971:324216971(0) win 1024 checksum : 45681 0x0000: 4500 002c 57d8 0000 f606 d00c b071 7390 E..,W........qs. 0x0010: 2531 53b4 dfa4 2ce7 1353 288b 0000 0000 %1S...,..S(..... 0x0020: 6002 0400 b271 0000 0204 0218 `....q...... Date=2022-12-07 Time=17:06:04 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortB out_dev=PortB inzone_id=2 outzone_id=2 source_mac=00:01:5c:7a:44:46 dest_mac=00:0c:29:4a:50:0d bridge_name= l3_protocol=IPv4 source_ip=176.113.115.144 dest_ip=37.49.83.180 l4_protocol=TCP source_port=57252 dest_port=11495 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x8001 nfqueue=0 gateway_offset=0 connid=3503931447 masterid=0 status=256 state=1, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:04 0101021 IP 192.168.178.2. > 172.16.0.5. :proto ICMP: echo request seq 2559 0x0000: 4500 003c da5f 0000 7f01 42a1 c0a8 b202 E..<._....B..... 0x0010: ac10 0005 0800 435c 0001 09ff 6162 6364 ......C\....abcd 0x0020: 6566 6768 696a 6b6c 6d6e 6f70 7172 7374 efghijklmnopqrst 0x0030: 7576 7761 6263 6465 6667 6869 uvwabcdefghi Date=2022-12-07 Time=17:06:04 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2427835131 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:05 0103021 IP 162.142.125.237.1828 > 91.89.137.239.5276 : proto TCP: S 4217439323:4217439323(0) win 1024 checksum : 29413 0x0000: 4500 002c 3b0a 0000 2a06 4ffe a28e 7ded E..,;...*.O...}. 0x0010: 5b59 89ef 0724 149c fb61 045b 0000 0000 [Y...$...a.[.... 0x0020: 6002 0400 72e5 0000 0204 05b4 `...r....... Date=2022-12-07 Time=17:06:05 log_id=0103021 log_type=Firewall log_component=Local_ACLs log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortB out_dev= inzone_id=2 outzone_id=4 source_mac=00:01:5c:7a:44:46 dest_mac=00:0c:29:4a:50:0d bridge_name= l3_protocol=IPv4 source_ip=162.142.125.237 dest_ip=91.89.137.239 l4_protocol=TCP source_port=1828 dest_port=5276 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x8001 nfqueue=0 gateway_offset=0 connid=3669598390 masterid=0 status=256 state=1, flag0=824635817984 flags1=17179869184 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:05 0101021 IP 192.168.178.2.53684 > 23.196.247.70.443 : proto TCP: S 2044407997:2044407997(0) win 65280 checksum : 28858 0x0000: 4500 0034 ce0b 4000 7f06 ac02 c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b4 01bb 79db 30bd 0000 0000 ...F....y.0..... 0x0020: 8002 ff00 70ba 0000 0204 054b 0103 0308 ....p......K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:06:05 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53684 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1728326789 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:08 0101021 IP 162.142.125.134.42148 > 37.49.83.180.5901 : proto TCP: S 228811016:228811016(0) win 1024 checksum : 53455 0x0000: 4500 002c 8826 0000 2906 70ac a28e 7d86 E..,.&..).p...}. 0x0010: 2531 53b4 a4a4 170d 0da3 6108 0000 0000 %1S.......a..... 0x0020: 6002 0400 d0cf 0000 0204 05b4 `........... Date=2022-12-07 Time=17:06:08 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=PortB out_dev=PortB inzone_id=2 outzone_id=2 source_mac=00:01:5c:7a:44:46 dest_mac=00:0c:29:4a:50:0d bridge_name= l3_protocol=IPv4 source_ip=162.142.125.134 dest_ip=37.49.83.180 l4_protocol=TCP source_port=42148 dest_port=5901 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x8001 nfqueue=0 gateway_offset=0 connid=2144581188 masterid=0 status=256 state=1, flag0=549757911040 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:08 0101021 IP 192.168.178.2.52594 > 172.16.0.5.53 : proto UDP: packet len: 58 checksum : 190 0x0000: 4500 004e da60 0000 7f11 427e c0a8 b202 E..N.`....B~.... 0x0010: ac10 0005 cd72 0035 003a 00be 8bb5 0100 .....r.5.:...... 0x0020: 0001 0000 0000 0000 0367 656f 0470 726f .........geo.pro 0x0030: 6402 646f 0364 7370 026d 7009 6d69 6372 d.do.dsp.mp.micr 0x0040: 6f73 6f66 7403 636f 6d00 0001 0001 osoft.com..... Date=2022-12-07 Time=17:06:08 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=52594 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1167602414 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:08 0101021 IP 192.168.178.2.52594 > 1.1.1.1.53 : proto UDP: packet len: 58 checksum : 43729 0x0000: 4500 004e ee01 0000 7f11 d8f0 c0a8 b202 E..N............ 0x0010: 0101 0101 cd72 0035 003a aad1 8bb5 0100 .....r.5.:...... 0x0020: 0001 0000 0000 0000 0367 656f 0470 726f .........geo.pro 0x0030: 6402 646f 0364 7370 026d 7009 6d69 6372 d.do.dsp.mp.micr 0x0040: 6f73 6f66 7403 636f 6d00 0001 0001 osoft.com..... Date=2022-12-07 Time=17:06:08 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=52594 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=87348413 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:08 010202130 IP 192.168.178.2.53229 > 104.18.27.143.443 : proto TCP: 3183781389:3183781390(1) ack 2386052490 win 511 checksum : 44618 0x0000: 4500 0029 269d 4000 8006 dde5 c0a8 b202 E..)&.@......... 0x0010: 6812 1b8f cfed 01bb bdc4 a60d 8e38 458a h............8E. 0x0020: 5010 01ff ae4a 0000 00 P....J... Date=2022-12-07 Time=17:06:08 log_id=010202130 log_type=Firewall log_component=Invalid_Traffic log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev= out_dev= inzone_id=0 outzone_id=0 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=104.18.27.143 l4_protocol=TCP source_port=53229 dest_port=443 fw_rule_id=N/A policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=0 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=0 masterid=0 status=0 state=0, flag0=0 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:09 0101021 IP 192.168.178.2. > 172.16.0.5. :proto ICMP: echo request seq 2560 0x0000: 4500 003c da61 0000 7f01 429f c0a8 b202 E..<.a....B..... 0x0010: ac10 0005 0800 435b 0001 0a00 6162 6364 ......C[....abcd 0x0020: 6566 6768 696a 6b6c 6d6e 6f70 7172 7374 efghijklmnopqrst 0x0030: 7576 7761 6263 6465 6667 6869 uvwabcdefghi Date=2022-12-07 Time=17:06:09 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=ICMP icmp_type=8 icmp_code=0 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=3040318581 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:09 0101021 IP 192.168.178.2.53686 > 40.113.110.67.443 : proto TCP: S 1680677570:1680677570(0) win 65280 checksum : 5304 0x0000: 4500 0034 47dd 4000 7f06 aa87 c0a8 b202 E..4G.@......... 0x0010: 2871 6e43 d1b6 01bb 642d 1ac2 0000 0000 (qnC....d-...... 0x0020: 8002 ff00 14b8 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:06:09 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.113.110.67 l4_protocol=TCP source_port=53686 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2851961224 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:09 0101021 IP 192.168.178.2.52594 > 172.16.0.5.53 : proto UDP: packet len: 58 checksum : 190 0x0000: 4500 004e da62 0000 7f11 427c c0a8 b202 E..N.b....B|.... 0x0010: ac10 0005 cd72 0035 003a 00be 8bb5 0100 .....r.5.:...... 0x0020: 0001 0000 0000 0000 0367 656f 0470 726f .........geo.pro 0x0030: 6402 646f 0364 7370 026d 7009 6d69 6372 d.do.dsp.mp.micr 0x0040: 6f73 6f66 7403 636f 6d00 0001 0001 osoft.com..... Date=2022-12-07 Time=17:06:09 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=52594 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1167602414 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:10 0101021 IP 192.168.178.2.53686 > 40.113.110.67.443 : proto TCP: S 1680677570:1680677570(0) win 65280 checksum : 5304 0x0000: 4500 0034 47de 4000 7f06 aa86 c0a8 b202 E..4G.@......... 0x0010: 2871 6e43 d1b6 01bb 642d 1ac2 0000 0000 (qnC....d-...... 0x0020: 8002 ff00 14b8 0000 0204 054b 0103 0308 ...........K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:06:10 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=40.113.110.67 l4_protocol=TCP source_port=53686 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2851961224 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:11 0101021 IP 192.168.178.2.52594 > 172.16.0.5.53 : proto UDP: packet len: 58 checksum : 190 0x0000: 4500 004e da63 0000 7f11 427b c0a8 b202 E..N.c....B{.... 0x0010: ac10 0005 cd72 0035 003a 00be 8bb5 0100 .....r.5.:...... 0x0020: 0001 0000 0000 0000 0367 656f 0470 726f .........geo.pro 0x0030: 6402 646f 0364 7370 026d 7009 6d69 6372 d.do.dsp.mp.micr 0x0040: 6f73 6f66 7403 636f 6d00 0001 0001 osoft.com..... Date=2022-12-07 Time=17:06:11 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortA inzone_id=5 outzone_id=1 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=172.16.0.5 l4_protocol=UDP source_port=52594 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=1167602414 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:11 0101021 IP 192.168.178.2.52594 > 1.1.1.1.53 : proto UDP: packet len: 58 checksum : 43729 0x0000: 4500 004e ee02 0000 7f11 d8ef c0a8 b202 E..N............ 0x0010: 0101 0101 cd72 0035 003a aad1 8bb5 0100 .....r.5.:...... 0x0020: 0001 0000 0000 0000 0367 656f 0470 726f .........geo.pro 0x0030: 6402 646f 0364 7370 026d 7009 6d69 6372 d.do.dsp.mp.micr 0x0040: 6f73 6f66 7403 636f 6d00 0001 0001 osoft.com..... Date=2022-12-07 Time=17:06:11 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=1.1.1.1 l4_protocol=UDP source_port=52594 dest_port=53 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=87348413 masterid=0 status=256 state=0, flag0=1126449664753664 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0 2022-12-07 17:06:11 0101021 IP 192.168.178.2.53685 > 23.196.247.70.443 : proto TCP: S 2928852076:2928852076(0) win 65280 checksum : 45138 0x0000: 4500 0034 ce0c 4000 7f06 ac01 c0a8 b202 E..4..@......... 0x0010: 17c4 f746 d1b5 01bb ae92 bc6c 0000 0000 ...F.......l.... 0x0020: 8002 ff00 b052 0000 0204 054b 0103 0308 .....R.....K.... 0x0030: 0101 0402 .... Date=2022-12-07 Time=17:06:11 log_id=0101021 log_type=Firewall log_component=Firewall_Rule log_subtype=Denied log_status=N/A log_priority=Alert duration=N/A in_dev=tun0 out_dev=PortB inzone_id=5 outzone_id=2 source_mac= dest_mac= bridge_name= l3_protocol=IPv4 source_ip=192.168.178.2 dest_ip=23.196.247.70 l4_protocol=TCP source_port=53685 dest_port=443 fw_rule_id=0 policytype=0 live_userid=0 userid=0 user_gp=0 ips_id=0 sslvpn_id=1 web_filter_id=0 hotspot_id=0 hotspotuser_id=0 hb_src=0 hb_dst=0 dnat_done=0 icap_id=0 app_filter_id=0 app_category_id=0 app_id=0 category_id=0 bandwidth_id=0 up_classid=0 dn_classid=0 nat_id=0 cluster_node=0 inmark=0x0 nfqueue=0 gateway_offset=0 connid=2186615770 masterid=0 status=256 state=1, flag0=1126451812237312 flags1=0 pbrid[0]=0 pbrid[1]=0 profileid[0]=0 profileid[1]=0