Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 3616 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Application Control app list

FreddieSorensen

Hi

Where can I find a list of the apps cooresponding to the app numbers, f.ex. app="147" ?

If I see that some eDonkey has been filtered, I check the Report but I only have these app numbers. How can I find out which computer is running eDonkey ?

Thanks for any help

:38693


This thread was automatically locked due to age.
Parents
  • 0

    In the daily report :

    Application Control
    Application Filtering
    TOP10 Applications
    Total Packets: 2 091
    Application Packets % of total
    1 Facebook 1 813 86.70
    2 Winny 137 6.55
    3 eDonkey 76 3.63

    Then, in the UTM 9 Web Admin console, I go to logs & reports (Protokolle & Berichte in german), and view the Application Control log, I see entries like below (I X'ed out the IP and mac addresses), here you see app="147". In other cases there are other app values. How can I find out which number is eDonkey, Winny, etc ?

    2013:03:22-00:56:22 cable-static-XXXXX ulogd[4525]: id="2019" severity="info" sys="SecureNet" sub="packetfilter" name="AFC Block" action="drop" fwrule="3" outitf="eth1" mark="0x3093" app="147" srcmac="XXXXXX" srcip="XXXXXX" dstip="XXXXXX" proto="6" length="40" tos="0x00" prec="0x00" ttl="127" srcport="1720" dstport="443" tcpflags="ACK"
    :38699
Reply
  • 0

    In the daily report :

    Application Control
    Application Filtering
    TOP10 Applications
    Total Packets: 2 091
    Application Packets % of total
    1 Facebook 1 813 86.70
    2 Winny 137 6.55
    3 eDonkey 76 3.63

    Then, in the UTM 9 Web Admin console, I go to logs & reports (Protokolle & Berichte in german), and view the Application Control log, I see entries like below (I X'ed out the IP and mac addresses), here you see app="147". In other cases there are other app values. How can I find out which number is eDonkey, Winny, etc ?

    2013:03:22-00:56:22 cable-static-XXXXX ulogd[4525]: id="2019" severity="info" sys="SecureNet" sub="packetfilter" name="AFC Block" action="drop" fwrule="3" outitf="eth1" mark="0x3093" app="147" srcmac="XXXXXX" srcip="XXXXXX" dstip="XXXXXX" proto="6" length="40" tos="0x00" prec="0x00" ttl="127" srcport="1720" dstport="443" tcpflags="ACK"
    :38699
Children
No Data