select * from httpsummary where startTime <'2005-12-28 22:14:15';

HTTP Parser: HTTPSummary Definition and Ouput

Data Dictionary

HTTPSummary - Summary of the session after all packets have been processed

startTime: java.sql.timestamp - Time the first packet was seen for this session
sensorName: String - The configured name of the DNASensor that captured this session
interface_f1: String - The name of the network interface that the client->server flow was captured
interface_f2: String - The name of the network interface that the server->client flow was captured
session: String - The unique key that descibes the session
duration: Long - Then time in milliseconds from the first packet to the last packet
protocol: String - The name of the Layer 4 protocol |TCP|UDP|ICMP|
client_addr: String - The IP Address of the client which initiated the session
client_port: Integer - The port of the client that the session was sent on
server_addr: String - The IP Address of the server which recieved the connection
server_port: Integer - The port of the server which recived the connection
status: String - The closed status of the session determined by the sensor at the point the session was flushed for output |open|closed|
service_name: String - The Layer 7 protocol name. see /etc/services
packets_sent: Long - The number of packets sent from the client to the server
packets_recv: Long - The number of packets sent from the server to the client
data_sent: Long - The number of bytes sent from the client to the server
data_recv: Long - The number of bytes sent from the server to the client
retry_packets_sent: Long - The number of retry packets sent from the client to the server
retry_packets_recv: Long - The number of retry packets sent from the server to the client
hostName: String - The Host Name servering the HTTP Requests
numRequests: Integer -The number of requests in the HTTP session
maxURLSize: Integer - The size in bytes of the largest URL request in the session
agentType: String - The HTTP Agent type requesting the session

HTTPSummary Output

startTime

sensorName

interface_f1

interface_f2

sessionKey

duration

protoNam

clientAddr

clientPort

serverAddr

serverPort

status

serviceName

packetsSent

packetsRecv

dataSent

dataRecv

retryPktSent

retryPktRecv

hostName

numRequests

maxURLSize

agentType

2005-12-28 21:49:13

home.lan

eth1

267655155045697dbaef1c6

282

tcp

69.105.125.186

61212

38.118.85.21

closed

http

465

375

isapi60.wxbug.com

136

Mozilla/3.0 (compatible; MSIE 4.0; Win32)

2005-12-28 21:54:14

home.lan

eth1

267655155045697dbaef2b6

283

tcp

69.105.125.186

61227

38.118.85.21

closed

http

465

375

isapi60.wxbug.com

136

Mozilla/3.0 (compatible; MSIE 4.0; Win32)

2005-12-28 21:59:14

home.lan

eth1

267655155045697dbaef366

286

tcp

69.105.125.186

61238

38.118.85.21

closed

http

465

355

isapi60.wxbug.com

136

Mozilla/3.0 (compatible; MSIE 4.0; Win32)

2005-12-28 22:04:14

home.lan

eth1

267655155045697dbaef436

284

tcp

69.105.125.186

61251

38.118.85.21

closed

http

465

355

isapi60.wxbug.com

136

Mozilla/3.0 (compatible; MSIE 4.0; Win32)

2005-12-28 22:05:24

home.lan

eth1

42a3ab815045697dbaef476

1042

tcp

69.105.125.186

61255

66.163.171.129

closed

http

1749

42815

my.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:29

home.lan

eth1

42a3ab815045697dbaef4e6

103

tcp

69.105.125.186

61262

66.163.171.129

closed

http

1428

278

my.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:29

home.lan

eth1

42a3ab815045697dbaef4f6

tcp

69.105.125.186

61263

66.163.171.129

closed

http

1429

279

my.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:30

home.lan

eth1

425eea485045697dbaef536

112

tcp

69.105.125.186

61267

66.94.234.72

closed

http

2767

627

bc.us.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:30

home.lan

eth1

448ed8f65045697dbaef526

236

tcp

69.105.125.186

61266

68.142.216.246

closed

http

1168

338

pl.plus.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:30

home.lan

eth1

448ed8f65045697dbaef546

384

tcp

69.105.125.186

61268

68.142.216.246

closed

http

1113

937

pl.plus.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:30

home.lan

eth1

42da48365045697dbaef566

tcp

69.105.125.186

61270

66.218.72.54

closed

http

1112

697

us.rd.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:30

home.lan

eth1

42a3ab915045697dbaef576

tcp

69.105.125.186

61271

66.163.171.145

closed

http

1222

278

e.my.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:30

home.lan

eth1

448ed8f65045697dbaef556

396

tcp

69.105.125.186

61269

68.142.216.246

closed

http

1113

938

pl.plus.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:31

home.lan

eth1

42da48365045697dbaef586

tcp

69.105.125.186

61272

66.218.72.54

closed

http

1118

697

us.rd.yahoo.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:40

home.lan

eth1

4009968b5045697dbaef5b6

30742

tcp

69.105.125.186

61275

64.9.150.139

open

http

148

4513

201870

www.snapstream.net

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:27

home.lan

eth1

45697dbaef4945e25c45506

60959

tcp

69.105.125.186

61257

69.226.92.69

open

http

513

2440

us.a1.yimg.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:27

home.lan

eth1

45697dbaef4a45e25c45506

60959

tcp

69.105.125.186

61258

69.226.92.69

open

http

499

599

us.a1.yimg.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:27

home.lan

eth1

45697dbaef4b45e1af63506

60571

tcp

69.105.125.186

61259

69.225.175.99

open

http

606

319

a1452.g.akamaitech.net

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:27

home.lan

eth1

45697dbaef4845e25c4c506

66121

tcp

69.105.125.186

61256

69.226.92.76

open

http

2298

18752

us.i1.yimg.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:30

home.lan

eth1

45697dbaef5145e25c4c506

62972

tcp

69.105.125.186

61265

69.226.92.76

open

http

624

7871

us.i1.yimg.com

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:28

home.lan

eth1

45697dbaef4d45e25c4f506

64373

tcp

69.105.125.186

61261

69.226.92.79

open

http

1325

7112

i.plus.yahoo.com

182

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:28

home.lan

eth1

45697dbaef4c45e25c4f506

64374

tcp

69.105.125.186

61260

69.226.92.79

open

http

1319

7112

i.plus.yahoo.com

176

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:40

home.lan

eth1

4009968b5045697dbaef5c6

60061

tcp

69.105.125.186

61276

64.9.150.139

open

http

7216

2119

www.snapstream.net

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:41

home.lan

eth1

ffffffffd8ef39635045697dbaef5d6

188407

tcp

69.105.125.186

61277

216.239.57.99

closed

http

2274

3816

pagead2.googlesyndication.com

355

Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705)

2005-12-28 22:05:41

home.lan

eth1

ffffffffd8ef39635045697dbaef5d6

200846

tcp

69.105.125.186

61277

216.239.57.99

closed

http

2274

3856

(null)

2005-12-28 22:09:14

home.lan

eth1

267655155045697dbaef666

284

tcp

69.105.125.186

61286

38.118.85.21

closed

http

465

355

isapi60.wxbug.com

136

Mozilla/3.0 (compatible; MSIE 4.0; Win32)