RWRec 1.5.0 - org.cert.netsa.io.silk.RWRec

A SiLK flow record.

Note that in addition to the fields of the case class, some derived fields are also provided. (See below.)

startTime: The instant that the first packet in this flow was observed.
elapsed: The duration between the instants the first and last packets in this flow were observed.
sPort: The source port of this flow, or zero if this flow is neither a TCP nor a UDP flow.
dPort: The destination port of this flow, or zero if this flow is neither a TCP nor a UDP flow.
protocol: The IP protocol of this flow.
flowType: The SiLK flow type (class and type) of this flow, or FlowType(0) if unknown.
sensor: The SiLK sensor that observed this flow, or Sensor(0) if unknown.
flags: The union of all TCP flags observed in this flow, or TCPFlags(0) if this flow is not a TCP flow.
initFlags: The flags observed in the initial packet of this TCP flow, or TCPFlags(0) if this flow is not a TCP flow or if extended flags are not available.
restFlags: The union of all TCP flags observed after the initial packet of this flow, or TCPFlags(0) if this flow is not a TCP flow or if extended flags are not available.
tcpState: Flags relating to the observed status of this flow, including whether extended TCP flags are available. See TCPState for more details.
application: The detected application of this flow, expressed as the common port number for that application, or Port(0) if no application was detected.
memo: A Short value stored as a memo on this flow, or zero if no such memo has been set.
input: The input SNMP routing interface for this flow, or SNMPInterface(0) if routing information is not available.
output: The output SNMP routing interface for this flow, or SNMPInterface(0) if routing information is not available.
packets: The number of IP packets observed in this flow.
bytes: The number of bytes in packets observed in this flow.
sIP: The source IP address of packets in this flow.
dIP: The destination IP address of packets in this flow.
nhIP: The next-hop IP address of packets in this flow, or IPAddress("0.0.0.0") or IPAddress("::") if routing information is not available.

Linear Supertypes

Serializable, Serializable, Product, Equals, AnyRef, Any

Instance Constructors

new RWRec(startTime: Instant, elapsed: Duration, sPort: Port, dPort: Port, protocol: Protocol, flowType: FlowType, sensor: Sensor, flags: TCPFlags, initFlags: TCPFlags, restFlags: TCPFlags, tcpState: TCPState, application: Port, memo: Short, input: SNMPInterface, output: SNMPInterface, packets: Long, bytes: Long, sIP: IPAddress, dIP: IPAddress, nhIP: IPAddress)

startTime
The instant that the first packet in this flow was observed.
elapsed
The duration between the instants the first and last packets in this flow were observed.
sPort
The source port of this flow, or zero if this flow is neither a TCP nor a UDP flow.
dPort
The destination port of this flow, or zero if this flow is neither a TCP nor a UDP flow.
protocol
The IP protocol of this flow.
flowType
The SiLK flow type (class and type) of this flow, or FlowType(0) if unknown.
sensor
The SiLK sensor that observed this flow, or Sensor(0) if unknown.
flags
The union of all TCP flags observed in this flow, or TCPFlags(0) if this flow is not a TCP flow.
initFlags
The flags observed in the initial packet of this TCP flow, or TCPFlags(0) if this flow is not a TCP flow or if extended flags are not available.
restFlags
The union of all TCP flags observed after the initial packet of this flow, or TCPFlags(0) if this flow is not a TCP flow or if extended flags are not available.
tcpState
Flags relating to the observed status of this flow, including whether extended TCP flags are available. See TCPState for more details.
application
The detected application of this flow, expressed as the common port number for that application, or Port(0) if no application was detected.
memo
A Short value stored as a memo on this flow, or zero if no such memo has been set.
input
The input SNMP routing interface for this flow, or SNMPInterface(0) if routing information is not available.
output
The output SNMP routing interface for this flow, or SNMPInterface(0) if routing information is not available.
packets
The number of IP packets observed in this flow.
bytes
The number of bytes in packets observed in this flow.
sIP
The source IP address of packets in this flow.
dIP
The destination IP address of packets in this flow.
nhIP
The next-hop IP address of packets in this flow, or IPAddress("0.0.0.0") or IPAddress("::") if routing information is not available.

Value Members

final def !=(arg0: Any): Boolean

Definition Classes
AnyRef → Any
final def ##(): Int

Definition Classes
AnyRef → Any
final def ==(arg0: Any): Boolean

Definition Classes
AnyRef → Any
val application: Port

The detected application of this flow, expressed as the common port number for that application, or Port(0) if no application was detected.
final def asInstanceOf[T0]: T0

Definition Classes
Any
val bytes: Long

The number of bytes in packets observed in this flow.
def clone(): AnyRef

Attributes
protected[java.lang]
Definition Classes
AnyRef
Annotations
@throws( ... )
val dIP: IPAddress

The destination IP address of packets in this flow.
val dPort: Port

The destination port of this flow, or zero if this flow is neither a TCP nor a UDP flow.
val elapsed: Duration

The duration between the instants the first and last packets in this flow were observed.
def endTime: Instant

The instant that the last packet in this flow was observed.
final def eq(arg0: AnyRef): Boolean

Definition Classes
AnyRef
def finalize(): Unit

Attributes
protected[java.lang]
Definition Classes
AnyRef
Annotations
@throws( classOf[java.lang.Throwable] )
val flags: TCPFlags

The union of all TCP flags observed in this flow, or TCPFlags(0) if this flow is not a TCP flow.
val flowType: FlowType

The SiLK flow type (class and type) of this flow, or FlowType(0) if unknown.
final def getClass(): Class[_]

Definition Classes
AnyRef → Any
def icmpCode: ICMPCode

The code of this ICMP flow, or garbage if this is a TCP or UDP flow, or ICMPType(0) if this is not an ICMP, TCP, or UDP flow.
def icmpType: ICMPType

The type of this ICMP flow, or garbage if this is a TCP or UDP flow, or ICMPType(0) if this is not an ICMP, TCP, or UDP flow.
val initFlags: TCPFlags

The flags observed in the initial packet of this TCP flow, or TCPFlags(0) if this flow is not a TCP flow or if extended flags are not available.
val input: SNMPInterface

The input SNMP routing interface for this flow, or SNMPInterface(0) if routing information is not available.
def isIPv6: Boolean

True if this flow's addresses are IPv6 addresses.
final def isInstanceOf[T0]: Boolean

Definition Classes
Any
val memo: Short

A Short value stored as a memo on this flow, or zero if no such memo has been set.
final def ne(arg0: AnyRef): Boolean

Definition Classes
AnyRef
val nhIP: IPAddress

The next-hop IP address of packets in this flow, or IPAddress("0.0.0.0") or IPAddress("::") if routing information is not available.
final def notify(): Unit

Definition Classes
AnyRef
final def notifyAll(): Unit

Definition Classes
AnyRef
val output: SNMPInterface

The output SNMP routing interface for this flow, or SNMPInterface(0) if routing information is not available.
val packets: Long

The number of IP packets observed in this flow.
val protocol: Protocol

The IP protocol of this flow.
val restFlags: TCPFlags

The union of all TCP flags observed after the initial packet of this flow, or TCPFlags(0) if this flow is not a TCP flow or if extended flags are not available.
val sIP: IPAddress

The source IP address of packets in this flow.
val sPort: Port

The source port of this flow, or zero if this flow is neither a TCP nor a UDP flow.
val sensor: Sensor

The SiLK sensor that observed this flow, or Sensor(0) if unknown.
val startTime: Instant

The instant that the first packet in this flow was observed.
final def synchronized[T0](arg0: ⇒ T0): T0

Definition Classes
AnyRef
val tcpState: TCPState

Flags relating to the observed status of this flow, including whether extended TCP flags are available.
Flags relating to the observed status of this flow, including whether extended TCP flags are available. See TCPState for more details.
final def wait(): Unit

Definition Classes
AnyRef
Annotations
@throws( ... )
final def wait(arg0: Long, arg1: Int): Unit

Definition Classes
AnyRef
Annotations
@throws( ... )
final def wait(arg0: Long): Unit

Definition Classes
AnyRef
Annotations
@throws( ... )

RWRec

Related Doc: package silk

Instance Constructors

Value Members

final def !=(arg0: Any): Boolean

final def ##(): Int

final def ==(arg0: Any): Boolean

val application: Port

final def asInstanceOf[T0]: T0

val bytes: Long

def clone(): AnyRef

val dIP: IPAddress

val dPort: Port

val elapsed: Duration

def endTime: Instant

final def eq(arg0: AnyRef): Boolean

def finalize(): Unit

val flags: TCPFlags

val flowType: FlowType

final def getClass(): Class[_]

def icmpCode: ICMPCode

def icmpType: ICMPType

val initFlags: TCPFlags

val input: SNMPInterface

def isIPv6: Boolean

final def isInstanceOf[T0]: Boolean

val memo: Short

final def ne(arg0: AnyRef): Boolean

val nhIP: IPAddress

final def notify(): Unit

final def notifyAll(): Unit

val output: SNMPInterface

val packets: Long

val protocol: Protocol

val restFlags: TCPFlags

val sIP: IPAddress

val sPort: Port

val sensor: Sensor

val startTime: Instant

final def synchronized[T0](arg0: ⇒ T0): T0

val tcpState: TCPState

final def wait(): Unit

final def wait(arg0: Long, arg1: Int): Unit

final def wait(arg0: Long): Unit

Inherited from Serializable

Inherited from Serializable

Inherited from Product

Inherited from Equals

Inherited from AnyRef

Inherited from Any

Derived Members

Ungrouped