fork download
copy 
  1. set line { 
  2. test-443670#show logging
  3.  
  4. Logging module: enabled
  5.  
  6. Aggregation time: disabled
  7.  
  8. Console logging: level debugging
  9.  
  10. Monitor logging: disabled
  11.  
  12. Buffered logging: level debugging
  13.  
  14. Syslog logging: level debugging
  15.  
  16.     Facility: local7
  17. Log Buffer (5003 bytes):
  18.  
  19. Aug 08 15:44:02 2014: %DATAPLANE-5-: Searching rname(TYPE_A) qweplost.com in dns
  20.  
  21. _hash_table.
  22.  
  23. Aug 08 15:43:58 2014: %DATAPLANE-5-: Unrecognized HTTP URL www.google-analytics.
  24.  
  25. com. Flow: 0x8707e380.
  26.  
  27. Aug 08 15:43:58 2014: %DATAPLANE-5-: Unrecognized HTTP URL www.google-analytics.
  28.  
  29. com. Flow: 0x8707e380.
  30.  
  31. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) ocsp.verisign.net i
  32.  
  33. n dns_hash_table.
  34.  
  35. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  36.  
  37. s.l.google.com in dns_hash_table.
  38.  
  39. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  40.  
  41. s.l.google.com in dns_hash_table.
  42.  
  43. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  44.  
  45. s.l.google.com in dns_hash_table.
  46.  
  47. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  48.  
  49. s.l.google.com in dns_hash_table.
  50.  
  51. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  52.  
  53. s.l.google.com in dns_hash_table.
  54.  
  55. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  56.  
  57. s.l.google.com in dns_hash_table.
  58.  
  59. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  60.  
  61. s.l.google.com in dns_hash_table.
  62.  
  63. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  64.  
  65. s.l.google.com in dns_hash_table.
  66.  
  67. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  68.  
  69. s.l.google.com in dns_hash_table.
  70.  
  71. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  72.  
  73. s.l.google.com in dns_hash_table.
  74.  
  75. Aug 08 15:43:58 2014: %DATAPLANE-5-: Searching rname(TYPE_A) www-google-analytic
  76.  
  77. s.l.google.com in dns_hash_table.
  78.  
  79. Aug 08 15:43:57 2014: %DATAPLANE-5-: Searching rname(TYPE_AAAA) www-google-analy
  80.  
  81. tics.l.google.com in dns_hash_table.
  82.  
  83. Aug 08 15:43:57 2014: %DATAPLANE-5-: Unrecognized HTTP URL www.babelgum.com. Flo
  84.  
  85. w: 0x8706ed80.
  86.  
  87. Aug 08 15:43:57 2014: %DATAPLANE-5-: Unrecognized Server Cert CommonName RapidSS
  88.  
  89. L CA. Flow: 0x87073e80.
  90.  
  91. Aug 08 15:43:57 2014: %DATAPLANE-5-: Unrecognized Server Cert CommonName GeoTrus
  92.  
  93. t Global CA. Flow: 0x87073e80.
  94.  
  95. Aug 08 15:43:57 2014: %DATAPLANE-5-: Unrecognized Server Cert CommonName *.elite
  96.  
  97. modellook.com. Flow: 0x87073e80.
  98.  
  99. Aug 08 15:43:57 2014: %DATAPLANE-5-: Unrecognized Server Cert CommonName RapidSS
  100.  
  101. L CA. Flow: 0x87073e80.
  102.  
  103. Aug 08 15:43:57 2014: %DATAPLANE-5-: Unrecognized HTTP URL www.babelgum.com. Flo
  104.  
  105. w: 0x8706ed80.
  106.  
  107. Aug 08 15:43:57 2014: %DATAPLANE-5-: Unrecognized Client Hello ServerName ?www.b
  108.  
  109. abelgum.com. Flow: 0x87073e80. len_analyzed: 183.
  110.  
  111. Aug 08 15:43:57 2014: %DATAPLANE-5-: Unrecognized HTTP URL www.babelgum.com. Flo
  112.  
  113. w: 0x8706ed80.
  114.  
  115. Aug 08 15:43:57 2014: %DATAPLANE-5-: Searching rname(TYPE_A) elite-862037136.eu-
  116.  
  117. west-1.elb.amazonaws.com in dns_hash_table.
  118.  
  119. Aug 08 15:43:57 2014: %DATAPLANE-5-: Searching rname(TYPE_A) elite-862037136.eu-
  120.  
  121. west-1.elb.amazonaws.com in dns_hash_table.
  122.  
  123. Aug 08 15:43:53 2014: ap622-443670 : %SYSTEM-6-CONFIG_REVISION: Configuration re
  124.  
  125. vision updated to 36 from 35
  126.  
  127. Aug 08 15:43:53 2014: ap622-443670 : %SYSTEM-6-CONFIG_REVISION: Configuration re
  128.  
  129. vision updated to 35 from 34
  130.  
  131. Aug 08 15:43:53 2014: ap622-443670 : %SYSTEM-6-CONFIG_COMMIT: Configuration comm
  132.  
  133. it by user 'admin' (mapsh) from '127.0.0.1'
  134.  
  135. Aug 08 15:43:48 2014: ap622-443670 : %SYSTEM-5-LOGIN: Successfully logged in use
  136.  
  137. r 'admin' with privilege 'superuser' from 'pts/0'
  138.  
  139. Aug 08 15:43:48 2014: %AUTH-6-INFO: login[5597]: user 'admin' on 'pts/0' logged
  140.  
  141. in
  142.  
  143. Aug 08 15:43:42 2014: %DATAPLANE-5-: Searching rname(TYPE_A) qweplost.com in dns
  144.  
  145. _hash_table.
  146.  
  147. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  148.  
  149. ash_table.
  150.  
  151. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  152.  
  153. ash_table.
  154.  
  155. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  156.  
  157. ash_table.
  158.  
  159. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  160.  
  161. ash_table.
  162.  
  163. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  164.  
  165. ash_table.
  166.  
  167. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  168.  
  169. ash_table.
  170.  
  171. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  172.  
  173. ash_table.
  174.  
  175. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  176.  
  177. ash_table.
  178.  
  179. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  180.  
  181. ash_table.
  182.  
  183. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  184.  
  185. ash_table.
  186.  
  187. Aug 08 15:43:28 2014: %DATAPLANE-5-: Searching rname(TYPE_A) google.com in dns_h
  188.  
  189. ash_table.
  190.  
  191. Aug 08 15:43:11 2014: %DATAPLANE-5-: Searching rname(TYPE_A) zeplost.com in dns_
  192.  
  193. hash_table.
  194.  
  195. Aug 08 15:42:50 2014: %DATAPLANE-5-: Searching rname(TYPE_A) zeplost.com in dns_
  196.  
  197. hash_table.
  198.  
  199. Aug 08 15:42:20 2014: %DATAPLANE-5-: Searching rname(TYPE_A) replost.com in dns_
  200.  
  201. hash_table.
  202.  
  203. Aug 08 15:41:59 2014: %DATAPLANE-5-: Searching rname(TYPE_A) replost.com in dns_
  204.  
  205. hash_table.
  206.  
  207. Aug 08 15:39:46 2014: ap622-443670 : %SYSTEM-6-LOGOUT: Logged out user 'admin' w
  208.  
  209. ith privilege 'superuser' from '127.0.0.1'
  210. }
  211.  
  212. set URL [list]
  213. set chs [list]
  214. set shs [list]
  215. set scs [list]
  216. set rname [list]
  217. set cURL 0
  218. set cchs 0
  219. set cshs 0
  220. set cscs 0
  221. set crname 0
  222. regsub -all {[\r\n]} $line "" line
  223. foreach {whole type payload} [regexp -all -inline {(?x)
  224.     \y ( URL
  225.       | (?: Client | Server)[ ]Hello[ ]ServerName
  226.       | Server[ ]Cert[ ]CommonName
  227.       | rname\([^)]+\) )
  228.     \s+ ((?:(?![ ]Flow:| in[ ]dns_hash_table).)+)
  229. } $line] {
  230.     switch -regexp $type {
  231.         URL {lappend URL $payload; incr cURL}
  232.         {Client Hello ServerName} {lappend chs $payload; incr cchs}
  233.         {Server Hello ServerName} {lappend shs $payload; incr cshs}
  234.         {Server Cert CommonName} {lappend scs $payload; incr cscs}
  235.         {rname\([^)]+\)} {lappend rname $payload; incr crname}
  236.     }
  237. }
  238.  
  239. set max [lindex [lsort -decreasing [list $cURL $cchs $cshs $cscs $crname]] 0]
  240. set i 0
  241. set all_list [list]
  242.  
  243. while {$max != $i} {
  244.     if {[catch {regsub -all {\s} [lindex $URL $i] "" one}]} {set one ""}
  245.     if {[catch {regsub -all {\s} [lindex $chs $i] "" two}]} {set two ""}
  246.     if {[catch {regsub -all {\s} [lindex $shs $i] "" three}]} {set three ""}
  247.     if {[catch {regsub -all {\s} [lindex $scs $i] "" four}]} {set four ""}
  248.     if {[catch {regsub -all {\s} [lindex $rname $i] "" five}]} {set five ""}
  249.     lappend all_list [join [list $one $two $three $four $five] ,]
  250.     incr i
  251. }
  252. puts [join $all_list \n]
Success #stdin #stdout 0.06s 5360KB
comments (?)
stdin
copy 
Standard input is empty
stdout
copy 
www.google-analytics.com.,?www.babelgum.com.,,RapidSSLCA.,qweplost.com
www.google-analytics.com.,,,GeoTrustGlobalCA.,ocsp.verisign.net
www.babelgum.com.,,,*.elitemodellook.com.,www-google-analytics.l.google.com
www.babelgum.com.,,,RapidSSLCA.,www-google-analytics.l.google.com
www.babelgum.com.,,,,www-google-analytics.l.google.com
https://ideone.com/ntvsdN
language:
TCL (tcl 8.6)
created:
9 years ago
visibility:
public

Share or Embed source code

Discover > Sphere Engine API

The brand new service which powers Ideone!

Discover > IDE Widget

Widget for compiling and running the source code in a web browser!