[Dshield] Traffic Test

Peter Stendahl-Juvonen peter.stendahl-juvonen at welho.com
Tue Jun 8 15:41:34 GMT 2004


list-bounces at lists.dshield.org <mailto:list-bounces at lists.dshield.org> wrote on
Friday, June 04, 2004 6:28 PM (EETDST) UTC+3 on behalf of Richard Roy

| Are the logs far behind or something?  It has been several
| days and I am seeing nothing in return indicating successful log
| submission.  Wondering if automatic log submission supresses the
| responses?
| 
| Thanks
| Rich


Richard et al.

Nope, automatic log submissions do not suppress the confirmations. (The
unresponsiveness was apparently due to resources not matching the demand, i.e. the
load.)

AFAIK, you have two options for confirmations:

1) A daily summary of all submissions during that day.
2) A confirmation per submission.

The latter is of the format:


If you are not yet using the Windows Task Scheduler, see
   http://www.dshield.org/clients/schedule_client.html
to find out how to automate log submissions even further.

               Authorized Userid: DShield-ID-#
                          Format: DSHIELD
                        Timezone: +03:00

                   Lines in file: 23
                  Lines rejected: none
Unique lines written to database: 23
  identical lines are added up on import.

  rejected lines (up to 10)

Lines written to database (up to 10):
2004-06-08 15:02:02 +03:00 DShield-ID-# 1 66.30.146.164 1628 TARGET-IP 715 TCP
2004-06-08 15:15:15 +03:00 DShield-ID-# 1 213.78.39.249 4672 TARGET-IP 5000 TCP
2004-06-08 15:17:09 +03:00 DShield-ID-# 1 213.244.199.61 4954 TARGET-IP 2745 TCP
2004-06-08 15:21:51 +03:00 DShield-ID-# 1 212.235.15.63 13092 TARGET-IP 4899 TCP
2004-06-08 15:25:11 +03:00 DShield-ID-# 1 213.78.39.249 4672 TARGET-IP 5000 TCP
2004-06-08 15:27:11 +03:00 DShield-ID-# 1 213.244.199.61 4954 TARGET-IP 2745 TCP
2004-06-08 15:31:41 +03:00 DShield-ID-# 1 212.235.15.63 13092 TARGET-IP 4899 TCP
2004-06-08 15:47:11 +03:00 DShield-ID-# 1 194.251.163.189 80 TARGET-IP 2730 TCP
2004-06-08 15:47:11 +03:00 DShield-ID-# 1 194.251.163.189 80 TARGET-IP 2729 TCP
2004-06-08 15:47:11 +03:00 DShield-ID-# 1 194.126.131.100 80 TARGET-IP 2734 TCP

  Thanks a lot for your input

NOTE: This message indicates that your log submission was parsed. The
data will be imported into the database shortly. 


Subject: FORMAT DSHIELD USERID DShield-ID-# TZ +03:00 CVTWIN (KIWI SYSLOG DAEMON
(LINKSYS))  1.1.87
From: YOUR-EMAIL-ADDRESS
PGP: NO





More information about the list mailing list