[Openstack] Openstack security - port-security, security-groups with added container
Farhad Sunavala
fsbiz at yahoo.com
Fri Apr 22 03:56:47 UTC 2016
Thanks Kevin and Kaustubh. Yes, just 1 node (controller, network and compute).
SRC C DST| | | OpenvSwitch SRC VM = 192.168.0.3DST VM = 192.168.0.4Container C = 192.168.0.5
root at fs-10-145-105-64:~# neutron port-list+--------------------------------------+------+-------------------+-------------------------------------------------------+| id | name | mac_address | fixed_ips |+--------------------------------------+------+-------------------+-------------------------------------------------------+| 371b8923-efb7-499f-b344-a9f38d538a73 | | fa:16:3e:1e:bd:2c | {"subnet_id": "762f6059-a06f-4b3f-a91d-d807bcf9f349", || | | | "ip_address": "192.168.0.3"} || 86883e00-9d97-4bed-b05e-c942227fb268 | | fa:16:3e:2b:36:22 | {"subnet_id": "762f6059-a06f-4b3f-a91d-d807bcf9f349", || | | | "ip_address": "192.168.0.2"} || a1213dae-ab39-41c0-b2cd-99b20714aa8b | | fa:16:3e:c7:23:be | {"subnet_id": "762f6059-a06f-4b3f-a91d-d807bcf9f349", || | | | "ip_address": "192.168.0.5"} || b2339046-da71-43e9-a6f8-cbadf24be654 | | fa:16:3e:06:c5:23 | {"subnet_id": "762f6059-a06f-4b3f-a91d-d807bcf9f349", || | | | "ip_address": "192.168.0.1"} || b2b2c53a-c92e-47b6-88bc-db3d3e135b79 | | fa:16:3e:89:0d:fa | {"subnet_id": "762f6059-a06f-4b3f-a91d-d807bcf9f349", || | | | "ip_address": "192.168.0.4"} |+--------------------------------------+------+-------------------+-------------------------------------------------------+
Just limiting output to SRC (192.168.0.3) and Container C (192.168.0.5)
root at fs-10-145-105-64:~# neutron port-show 371b8923-efb7-499f-b344-a9f38d538a73+-----------------------+------------------------------------------------------------------------------------+| Field | Value |+-----------------------+------------------------------------------------------------------------------------+| admin_state_up | True || allowed_address_pairs | || binding:vnic_type | normal || created_at | 2016-04-21T20:39:37 || description | || device_id | b7995a2e-f5c7-4398-a801-8d71c9c05a54 || device_owner | compute:None || dns_name | || extra_dhcp_opts | || fixed_ips | {"subnet_id": "762f6059-a06f-4b3f-a91d-d807bcf9f349", "ip_address": "192.168.0.3"} || id | 371b8923-efb7-499f-b344-a9f38d538a73 || mac_address | fa:16:3e:1e:bd:2c || name | || network_id | b2be2b73-6e17-427e-9ec3-5e6d1a1ef98d || port_security_enabled | False || security_groups | || status | ACTIVE || tenant_id | ba13e4a3e7724db8889852b398988587 || updated_at | 2016-04-22T03:38:48 |+-----------------------+------------------------------------------------------------------------------------+
root at fs-10-145-105-64:~# neutron port-show a1213dae-ab39-41c0-b2cd-99b20714aa8b+-----------------------+------------------------------------------------------------------------------------+| Field | Value |+-----------------------+------------------------------------------------------------------------------------+| admin_state_up | True || allowed_address_pairs | || binding:vnic_type | normal || created_at | 2016-04-21T20:41:50 || description | || device_id | || device_owner | || dns_name | || extra_dhcp_opts | || fixed_ips | {"subnet_id": "762f6059-a06f-4b3f-a91d-d807bcf9f349", "ip_address": "192.168.0.5"} || id | a1213dae-ab39-41c0-b2cd-99b20714aa8b || mac_address | fa:16:3e:c7:23:be || name | || network_id | b2be2b73-6e17-427e-9ec3-5e6d1a1ef98d || port_security_enabled | False || security_groups | || status | DOWN || tenant_id | ba13e4a3e7724db8889852b398988587 || updated_at | 2016-04-21T20:41:50 |+-----------------------+------------------------------------------------------------------------------------+
The status=DOWN makes sense since the container is not under nova-control.
root at fs-10-145-105-64:~# docker psCONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMESc8d99952695d ubuntu "/bin/bash" 7 hours ago Up 7 hours backstabbing_spenceroot at fs-10-145-105-64:~# docker inspect -f '{{.State.Pid}}' c8d99952695d105529
root at fs-10-145-105-64:~# ip netns105529qrouter-872d95f1-5ef7-4811-8232-8ced2322863bqdhcp-b2be2b73-6e17-427e-9ec3-5e6d1a1ef98d83376root at fs-10-145-105-64:~# ip netns exec 105529 ifconfigeth0 Link encap:Ethernet HWaddr fa:16:3e:c7:23:be inet addr:192.168.0.5 Bcast:192.168.0.255 Mask:255.255.255.0 inet6 addr: fe80::f816:3eff:fec7:23be/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:23908 errors:0 dropped:0 overruns:0 frame:0 TX packets:24514 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:2303668 (2.3 MB) TX bytes:2329412 (2.3 MB)
As you can see the MAC address of container matches what neutron has given along withthe IP address of 192.168.0.5
root at fs-10-145-105-64:~# brctl showbridge name bridge id STP enabled interfacesroot at fs-10-145-1058.-
root at fs-10-145-105-64:~# iptables -LChain INPUT (policy ACCEPT)target prot opt source destinationnova-api-INPUT all -- anywhere anywhereACCEPT udp -- anywhere anywhere udp dpt:domainACCEPT tcp -- anywhere anywhere tcp dpt:domainACCEPT udp -- anywhere anywhere udp dpt:bootpsACCEPT tcp -- anywhere anywhere tcp dpt:bootps
Chain FORWARD (policy ACCEPT)target prot opt source destinationnova-filter-top all -- anywhere anywherenova-api-FORWARD all -- anywhere anywhereACCEPT all -- anywhere 192.168.122.0/24 ctstate RELATED,ESTABLISHEDACCEPT all -- 192.168.122.0/24 anywhereACCEPT all -- anywhere anywhereREJECT all -- anywhere anywhere reject-with icmp-port-unreachableREJECT all -- anywhere anywhere reject-with icmp-port-unreachable
Chain OUTPUT (policy ACCEPT)target prot opt source destinationnova-filter-top all -- anywhere anywherenova-api-OUTPUT all -- anywhere anywhereACCEPT udp -- anywhere anywhere udp dpt:bootpc
Chain nova-api-FORWARD (1 references)target prot opt source destination
Chain nova-api-INPUT (1 references)target prot opt source destinationACCEPT tcp -- anywhere fs-10.145.105.64 tcp dpt:8775
Chain nova-api-OUTPUT (1 references)target prot opt source destination
Chain nova-api-local (1 references)target prot opt source destination
Chain nova-filter-top (2 references)target prot opt source destinationnova-api-local all -- anywhere anywhere
======================================================================
Before sending 3 pings:
root at c8d99952695d:/# ifconfig eth0eth0 Link encap:Ethernet HWaddr fa:16:3e:c7:23:be inet addr:192.168.0.5 Bcast:192.168.0.255 Mask:255.255.255.0 inet6 addr: fe80::f816:3eff:fec7:23be/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:23908 errors:0 dropped:0 overruns:0 frame:0 TX packets:24514 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:2303668 (2.3 MB) TX bytes:2329412 (2.3 MB)
root at fs-10-145-105-64:~# ovs-ofctl dump-flows br-intNXST_FLOW reply (xid=0x4): cookie=0xb67c96fbae779e37, duration=26464.927s, table=0, n_packets=0, n_bytes=0, idle_age=26464, priority=20,mpls actions=resubmit(,10) cookie=0xb67c96fbae779e37, duration=25823.697s, table=0, n_packets=0, n_bytes=0, idle_age=25823, priority=10,icmp6,in_port=7,icmp_type=136 actions=resubmit(,24) cookie=0xb67c96fbae779e37, duration=25803.737s, table=0, n_packets=0, n_bytes=0, idle_age=25803, priority=10,icmp6,in_port=8,icmp_type=136 actions=resubmit(,24) cookie=0xb67c96fbae779e37, duration=26465.387s, table=0, n_packets=734, n_bytes=39540, idle_age=668, priority=0 actions=NORMAL cookie=0xb67c96fbae779e37, duration=26464.921s, table=10, n_packets=0, n_bytes=0, idle_age=26464, priority=0 actions=drop cookie=0xb67c96fbae779e37, duration=26465.381s, table=23, n_packets=0, n_bytes=0, idle_age=26465, priority=0 actions=drop cookie=0xb67c96fbae779e37, duration=26465.375s, table=24, n_packets=0, n_bytes=0, idle_age=26465, priority=0 actions=drop
root at c8d99952695d:/# ping 192.168.0.3 -c3PING 192.168.0.3 (192.168.0.3) 56(84) bytes of data.From 192.168.0.5 icmp_seq=1 Destination Host UnreachableFrom 192.168.0.5 icmp_seq=2 Destination Host UnreachableFrom 192.168.0.5 icmp_seq=3 Destination Host Unreachable
--- 192.168.0.3 ping statistics ---3 packets transmitted, 0 received, +3 errors, 100% packet loss, time 2014ms
(TCPDUn veth_h0 - container's tap interface on br-int - Note: SRC MAC address matches one given by neutron)root at fs-10-145-105-64:~# tcpdump -i veth_h0 -nnXXetcpdump: WARNING: veth_h0: no IPv4 address assignedtcpdump: verbose output suppressed, use -v or -vv for full protocol decodelistening on veth_h0, link-type EN10MB (Ethernet), capture size 65535 bytes20:51:58.629048 fa:16:3e:c7:23:be > ff:ff:ff:ff:ff:ff, ethertype ARP (0x0806), length 42: Request who-has 192.168.0.3 tell 192.168.0.5, length 28 0x0000: ffff ffff ffff fa16 3ec7 23be 0806 0001 ........>.#..... 0x0010: 0800 0604 0001 fa16 3ec7 23be c0a8 0005 ........>.#..... 0x0020: 0000 0000 0000 c0a8 0003 ..........20:51:59.625739 fa:16:3e:c7:23:be > ff:ff:ff:ff:ff:ff, ethertype ARP (0x0806), length 42: Request who-has 192.168.0.3 tell 192.168.0.5, length 28 0x0000: ffff ffff ffff fa16 3ec7 23be 0806 0001 ........>.#..... 0x0010: 0800 0604 0001 fa16 3ec7 23be c0a8 0005 ........>.#..... 0x0020: 0000 0000 0000 c0a8 0003 ..........20:52:00.625741 fa:16:3e:c7:23:be > ff:ff:ff:ff:ff:ff, ethertype ARP (0x0806), length 42: Request who-has 192.168.0.3 tell 192.168.0.5, length 28 0x0000: ffff ffff ffff fa16 3ec7 23be 0806 0001 ........>.#..... 0x0010: 0800 0604 0001 fa16 3ec7 23be c0a8 0005 ........>.#..... 0x0020: 0000 0000 0000 c0a8 0003 ..........
root at fs-10-145-105-64:~# ovs-ofctl dump-flows br-intNXST_FLOW reply (xid=0x4): cookie=0xb67c96fbae779e37, duration=26703.277s, table=0, n_packets=0, n_bytes=0, idle_age=26703, priority=20,mpls actions=resubmit(,10) cookie=0xb67c96fbae779e37, duration=26062.047s, table=0, n_packets=0, n_bytes=0, idle_age=26062, priority=10,icmp6,in_port=7,icmp_type=136 actions=resubmit(,24) cookie=0xb67c96fbae779e37, duration=26042.087s, table=0, n_packets=0, n_bytes=0, idle_age=26042, priority=10,icmp6,in_port=8,icmp_type=136 actions=resubmit(,24) cookie=0xb67c96fbae779e37, duration=26703.737s, table=0, n_packets=737, n_bytes=39666, idle_age=123, priority=0 actions=NORMAL cookie=0xb67c96fbae779e37, duration=26703.271s, table=10, n_packets=0, n_bytes=0, idle_age=26703, priority=0 actions=drop cookie=0xb67c96fbae779e37, duration=26703.731s, table=23, n_packets=0, n_bytes=0, idle_age=26703, priority=0 actions=drop
The packet counter has incremented by 3 (737-734) on table=0, actions:NORMAL
But, the packets never make it out of the tap interface to SRC (192.168.0.3).
Totally stumped. It is reproducible easily.Just get the latest devstack from master (or mitaka stable) latest openvswitch (2.5.90) or OVS 2.4.1.
Thanks,Farhad.
On Thursday, April 21, 2016 3:52 PM, Kevin Benton <kevin at benton.pub> wrote:
I don't see port details for the container port (50686370). That would be the one that needs port_security_enabled=False if your container is not using the MAC address defined in the Neutron Port for that container.
On Thu, Apr 21, 2016 at 3:30 PM, Kaustubh Kelkar <kaustubh.kelkar at casa-systems.com> wrote:
Hi, Can you post the output of:iptables –Lbrctl showovs-ofctl show br-int I presume all the instances are on the same physical node? -Kaustubh From: Farhad Sunavala [mailto:fsbiz at yahoo.com]
Sent: Thursday, April 21, 2016 3:15 PM
To: openstack at lists.openstack.org
Subject: [Openstack] Openstack security - port-security, security-groups with added container Hi folks, My setup is as follows. SRC C DST| | | OpenvSwitch SRC VM = 192.168.0.3DST VM = 192.168.0.4 Container C = 192.168.0.5 Openstack version: latest from masterOpenvSwitch: 2.4.1 Openstack brings up SRC (192.168.0.3) and DST VM (192.168.0.5)I manually bringup container C using docker and connect it to br-int.I allocate a neutron port (192.168.0.5) and configure this IP address on the container C. SRC,DST VMs work fine.Now, my problem is that the container C is not able to pass traffic. Troubleshooting reveals it is sending packet to br-int, it hits the NORMAL action flows on br-int but then br-int does not transmit them forward.I have disabled security-groups and port-security on all ports. It is definitely something to do with security (anti-spoofing) but I am not able to narrow it down.Any pointers will be appreciated. Thanks,Farhad. Details of troubleshooting: Setup: SRC C DST| | | OpenvSwitch SRC VM = 192.168.0.3DST VM = 192.168.0.4 Container C = 192.168.0.5 root at fs-10-145-105-64:~# neutron port-list+--------------------------------------+------+-------------------+-------------------------------------------------------+| id | name | mac_address | fixed_ips |+--------------------------------------+------+-------------------+-------------------------------------------------------+| 31d7fef4-2689-40d5-886c-b0419295eabb | | fa:16:3e:e7:f8:47 | {"subnet_id": "19c6dc03-b255-45e9-9bd7-366631b745b6", || | | | "ip_address": "192.168.0.4"} || 3466abf1-aa9a-420a-bb9b-c4ad55561f19 | | fa:16:3e:84:62:af | {"subnet_id": "19c6dc03-b255-45e9-9bd7-366631b745b6", || | | | "ip_address": "192.168.0.2"} || 50686370-de40-4665-a5a1-39b5b795122b | | fa:16:3e:0d:ae:bc | {"subnet_id": "19c6dc03-b255-45e9-9bd7-366631b745b6", || | | | "ip_address": "192.168.0.5"} || c6043a1e-ac4d-4138-af14-b91ae8e4d57e | | fa:16:3e:36:95:77 | {"subnet_id": "19c6dc03-b255-45e9-9bd7-366631b745b6", || | | | "ip_address": "192.168.0.1"} || e8a167b1-8457-4bd7-a18b-82712e0c46dd | | fa:16:3e:85:92:ee | {"subnet_id": "19c6dc03-b255-45e9-9bd7-366631b745b6", || | | | "ip_address": "192.168.0.3"} |+--------------------------------------+------+-------------------+-------------------------------------------------------+root at fs-10-145-105-64:~# neutron port-show e8a167b1-8457-4bd7-a18b-82712e0c46dd+-----------------------+------------------------------------------------------------------------------------+| Field | Value |+-----------------------+------------------------------------------------------------------------------------+| admin_state_up | True || allowed_address_pairs | || binding:host_id | fs-10-145-105-64 || binding:profile | {} || binding:vif_details | {"port_filter": true, "ovs_hybrid_plug": false} || binding:vif_type | ovs || binding:vnic_type | normal || created_at | 2016-04-21T15:27:51 || description | || device_id | 1a65bcfb-4607-4529-a313-6927d86c9302 || device_owner | compute:nova || dns_name | || extra_dhcp_opts | || fixed_ips | {"subnet_id": "19c6dc03-b255-45e9-9bd7-366631b745b6", "ip_address": "192.168.0.3"} || id | e8a167b1-8457-4bd7-a18b-82712e0c46dd || mac_address | fa:16:3e:85:92:ee || name | || network_id | e4c38c74-c9c2-47a7-802d-446488b82e5f || port_security_enabled | True || security_groups | fcf62b2a-1dd4-432a-b47b-5d9b79813da7 || status | ACTIVE || tenant_id | 62b9eff93cc74b65a2b52a0d41604e2c || updated_at | 2016-04-21T15:27:58 |+-----------------------+------------------------------------------------------------------------------------+ root at fs-10-145-105-64:~# neutron port-show 31d7fef4-2689-40d5-886c-b0419295eabb+-----------------------+------------------------------------------------------------------------------------+| Field | Value |+-----------------------+------------------------------------------------------------------------------------+| admin_state_up | True || allowed_address_pairs | || binding:host_id | fs-10-145-105-64 || binding:profile | {} || binding:vif_details | {"port_filter": true, "ovs_hybrid_plug": false} || binding:vif_type | ovs || binding:vnic_type | normal || created_at | 2016-04-21T15:28:37 || description | || device_id | 9c8a5e3c-0867-4938-b26e-4834a24d0c5d || device_owner | compute:nova || dns_name | || extra_dhcp_opts | || fixed_ips | {"subnet_id": "19c6dc03-b255-45e9-9bd7-366631b745b6", "ip_address": "192.168.0.4"} || id | 31d7fef4-2689-40d5-886c-b0419295eabb || mac_address | fa:16:3e:e7:f8:47 || name | || network_id | e4c38c74-c9c2-47a7-802d-446488b82e5f || port_security_enabled | False || security_groups | || status | ACTIVE || tenant_id | 62b9eff93cc74b65a2b52a0d41604e2c || updated_at | 2016-04-21T18:25:20 |+-----------------------+------------------------------------------------------------------------------------+ root at fs-10-145-105-64:~# neutron port-show 31d7fef4-2689-40d5-886c-b0419295eabb+-----------------------+------------------------------------------------------------------------------------+| Field | Value |+-----------------------+------------------------------------------------------------------------------------+| admin_state_up | True || allowed_address_pairs | || binding:host_id | fs-10-145-105-64 || binding:profile | {} || binding:vif_details | {"port_filter": true, "ovs_hybrid_plug": false} || binding:vif_type | ovs || binding:vnic_type | normal || created_at | 2016-04-21T15:28:37 || description | || device_id | 9c8a5e3c-0867-4938-b26e-4834a24d0c5d || device_owner | compute:nova || dns_name | || extra_dhcp_opts | || fixed_ips | {"subnet_id": "19c6dc03-b255-45e9-9bd7-366631b745b6", "ip_address": "192.168.0.4"} || id | 31d7fef4-2689-40d5-886c-b0419295eabb || mac_address | fa:16:3e:e7:f8:47 || name | || network_id | e4c38c74-c9c2-47a7-802d-446488b82e5f || port_security_enabled | False || security_groups | || status | ACTIVE || tenant_id | 62b9eff93cc74b65a2b52a0d41604e2c || updated_at | 2016-04-21T18:25:20 |+-----------------------+------------------------------------------------------------------------------------+ root at fs-10-145-105-64:~# ovs-vsctl showcd040c9d-427b-418b-943c-7ad5522e1d8f Bridge br-int fail_mode: secure Port "tap3466abf1-aa" tag: 2 Interface "tap3466abf1-aa" type: internal Port "tape8a167b1-84" tag: 2 Interface "tape8a167b1-84" Port br-int Interface br-int type: internal Port patch-tun Interface patch-tun type: patch options: {peer=patch-int} Port "qr-c6043a1e-ac" tag: 2 Interface "qr-c6043a1e-ac" type: internal Port "veth_h0" Interface "veth_h0" root at fs-10-145-105-64:~# docker psCONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES9f0a884a85eb ubuntu "/bin/bash" 48 minutes ago Up 48 minutes desperate_bell root at fs-10-145-105-64:~# docker inspect -f '{{.State.Pid}}' 9f0a884a85eb83376root at fs-10-145-105-64:~# cat /var/netns/cat: /var/netns/: No such file or directoryroot at fs-10-145-105-64:~# ls -l /var/run/netns/total 0lrwxrwxrwx 1 root root 18 Apr 21 11:18 83376 -> /proc/83376/ns/net-r--r--r-- 1 root root 0 Apr 21 08:27 qdhcp-e4c38c74-c9c2-47a7-802d-446488b82e5f-r--r--r-- 1 root root 0 Apr 21 08:30 qrouter-6210bb9f-9be0-49c4-b7d5-d99ca5417bfc root at 9f0a884a85eb:/# ifconfig eth0eth0 Link encap:Ethernet HWaddr 22:b3:09:8e:dd:ae inet addr:192.168.0.5 Bcast:192.168.0.255 Mask:255.255.255.0 inet6 addr: fe80::20b3:9ff:fe8e:ddae/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:7 errors:0 dropped:0 overruns:0 frame:0 TX packets:860 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:738 (738.0 B) TX bytes:36432 (36.4 KB) root at fs-10-145-105-64:~# ovs-ofctl dump-flows br-intNXST_FLOW reply (xid=0x4):cookie=0xb1bf9229541d06ad, duration=13102.723s, table=0, n_packets=982, n_bytes=49690, idle_age=38, priority=0 actions=NORMAL root at 9f0a884a85eb:/# ping 192.168.0.4PING 192.168.0.4 (192.168.0.4) 56(84) bytes of data.From 192.168.0.5 icmp_seq=1 Destination Host UnreachableFrom 192.168.0.5 icmp_seq=2 Destination Host UnreachableFrom 192.168.0.5 icmp_seq=3 Destination Host Unreachable root at fs-10-145-105-64:~# tcpdump -i veth_h0tcpdump: WARNING: veth_h0: no IPv4 address assignedtcpdump: verbose output suppressed, use -v or -vv for full protocol decodelistening on veth_h0, link-type EN10MB (Ethernet), capture size 65535 bytes12:00:03.806091 ARP, Request who-has 192.168.0.4 tell 192.168.0.5, length 2812:00:04.805733 ARP, Request who-has 192.168.0.4 tell 192.168.0.5, length 2812:00:05.805744 ARP, Request who-has 192.168.0.4 tell 192.168.0.5, length 28 root at fs-10-145-105-64:~# ovs-ofctl dump-flows br-intNXST_FLOW reply (xid=0x4):cookie=0xb1bf9229541d06ad, duration=13102.723s, table=0, n_packets=987, n_bytes=49690, idle_age=38, priority=0 actions=NORMAL root at fs-10-145-105-64:~# iptables -LChain INPUT (policy ACCEPT)target prot opt source destination Chain FORWARD (policy ACCEPT)target prot opt source destination Chain OUTPUT (policy ACCEPT)target prot opt source destination root at fs-10-145-105-64:~# conntrack -Ltcp 6 431981 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57902 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57902 [ASSURED] mark=0 use=1tcp 6 429701 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44449 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44449 [ASSURED] mark=0 use=1tcp 6 431981 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57894 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57894 [ASSURED] mark=0 use=1tcp 6 431955 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=60404 dport=33608 src=127.0.0.1 dst=127.0.0.1 sport=33608 dport=60404 [ASSURED] mark=0 use=1tcp 6 431969 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57490 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57490 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59050 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59050 [ASSURED] mark=0 use=1tcp 6 429702 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=45400 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=45400 [ASSURED] mark=0 use=1tcp 6 34 TIME_WAIT src=10.145.105.64 dst=10.145.105.64 sport=59741 dport=35357 src=10.145.105.64 dst=10.145.105.64 sport=35357 dport=59741 [ASSURED] mark=0 use=1tcp 6 428787 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=45547 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=45547 [ASSURED] mark=0 use=1tcp 6 428791 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43599 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43599 [ASSURED] mark=0 use=1tcp 6 426346 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=55546 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=55546 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59071 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59071 [ASSURED] mark=0 use=1tcp 6 431990 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47750 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47750 [ASSURED] mark=0 use=1tcp 6 431978 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47880 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47880 [ASSURED] mark=0 use=1tcp 6 431996 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57905 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57905 [ASSURED] mark=0 use=1tcp 6 431992 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=60530 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=60530 [ASSURED] mark=0 use=1tcp 6 431988 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=32970 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=32970 [ASSURED] mark=0 use=1tcp 6 300 ESTABLISHED src=10.145.90.5 dst=10.145.105.64 sport=58160 dport=22 src=10.145.105.64 dst=10.145.90.5 sport=22 dport=58160 [ASSURED] mark=0 use=2tcp 6 426277 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43066 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43066 [ASSURED] mark=0 use=1tcp 6 431990 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=51382 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=51382 [ASSURED] mark=0 use=1tcp 6 431997 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=40113 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=40113 [ASSURED] mark=0 use=1tcp 6 431981 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57896 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57896 [ASSURED] mark=0 use=1tcp 6 426232 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=49312 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=49312 [ASSURED] mark=0 use=1tcp 6 431989 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=46646 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=46646 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59067 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59067 [ASSURED] mark=0 use=1tcp 6 431995 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=36486 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=36486 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59073 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59073 [ASSURED] mark=0 use=1tcp 6 431985 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=58661 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=58661 [ASSURED] mark=0 use=1tcp 6 431975 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47928 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47928 [ASSURED] mark=0 use=1tcp 6 431989 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59054 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59054 [ASSURED] mark=0 use=1tcp 6 431988 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57917 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57917 [ASSURED] mark=0 use=1tcp 6 431988 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57910 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57910 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59065 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59065 [ASSURED] mark=0 use=1tcp 6 428748 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43729 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43729 [ASSURED] mark=0 use=1tcp 6 429821 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=45488 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=45488 [ASSURED] mark=0 use=1tcp 6 428723 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44254 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44254 [ASSURED] mark=0 use=1tcp 6 431976 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57888 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57888 [ASSURED] mark=0 use=1tcp 6 431996 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=39825 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=39825 [ASSURED] mark=0 use=1tcp 6 426277 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43235 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43235 [ASSURED] mark=0 use=1tcp 6 431972 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57678 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57678 [ASSURED] mark=0 use=1tcp 6 431979 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59053 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59053 [ASSURED] mark=0 use=1tcp 6 431510 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44536 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44536 [ASSURED] mark=0 use=1tcp 6 425920 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43447 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43447 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=10.145.90.5 dst=10.145.105.64 sport=58161 dport=22 src=10.145.105.64 dst=10.145.90.5 sport=22 dport=58161 [ASSURED] mark=0 use=1tcp 6 431992 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=42017 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=42017 [ASSURED] mark=0 use=1tcp 6 431979 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59069 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59069 [ASSURED] mark=0 use=1tcp 6 431969 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59056 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59056 [ASSURED] mark=0 use=1tcp 6 431981 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57895 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57895 [ASSURED] mark=0 use=1tcp 6 426179 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43439 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43439 [ASSURED] mark=0 use=1tcp 6 431994 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47758 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47758 [ASSURED] mark=0 use=1tcp 6 431990 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=37917 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=37917 [ASSURED] mark=0 use=1tcp 6 431965 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=33275 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=33275 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59064 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59064 [ASSURED] mark=0 use=1tcp 6 431978 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48979 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48979 [ASSURED] mark=0 use=1tcp 6 426281 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=52173 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=52173 [ASSURED] mark=0 use=1tcp 6 431984 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57913 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57913 [ASSURED] mark=0 use=2tcp 6 431999 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=60882 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=60882 [ASSURED] mark=0 use=1tcp 6 431991 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57890 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57890 [ASSURED] mark=0 use=1tcp 6 431979 ESTABLISHED src=10.145.15.14 dst=10.145.105.64 sport=52275 dport=6080 src=10.145.105.64 dst=10.145.15.14 sport=6080 dport=52275 [ASSURED] mark=0 use=1tcp 6 425920 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43448 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43448 [ASSURED] mark=0 use=1tcp 6 431993 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=42057 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=42057 [ASSURED] mark=0 use=1tcp 6 431967 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=43484 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=43484 [ASSURED] mark=0 use=1tcp 6 417924 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=40692 dport=4369 src=127.0.0.1 dst=127.0.0.1 sport=4369 dport=40692 [ASSURED] mark=0 use=1tcp 6 431968 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=37038 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=37038 [ASSURED] mark=0 use=1tcp 6 428802 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43610 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43610 [ASSURED] mark=0 use=1tcp 6 431983 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57908 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57908 [ASSURED] mark=0 use=1tcp 6 426274 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=49395 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=49395 [ASSURED] mark=0 use=1tcp 6 431989 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48011 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48011 [ASSURED] mark=0 use=1tcp 6 431988 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57916 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57916 [ASSURED] mark=0 use=1tcp 6 431992 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57919 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57919 [ASSURED] mark=0 use=1tcp 6 426330 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=54866 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=54866 [ASSURED] mark=0 use=1tcp 6 431981 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47748 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47748 [ASSURED] mark=0 use=1tcp 6 432000 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47881 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47881 [ASSURED] mark=0 use=1tcp 6 425920 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43451 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43451 [ASSURED] mark=0 use=1tcp 6 431914 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48632 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48632 [ASSURED] mark=0 use=1tcp 6 431956 ESTABLISHED src=10.145.15.14 dst=10.145.105.64 sport=52265 dport=6080 src=10.145.105.64 dst=10.145.15.14 sport=6080 dport=52265 [ASSURED] mark=0 use=1tcp 6 431991 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57920 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57920 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48201 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48201 [ASSURED] mark=0 use=1tcp 6 431992 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=60531 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=60531 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59051 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59051 [ASSURED] mark=0 use=1tcp 6 431989 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59070 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59070 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59063 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59063 [ASSURED] mark=0 use=1tcp 6 431979 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=36508 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=36508 [ASSURED] mark=0 use=1tcp 6 431981 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57900 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57900 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48613 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48613 [ASSURED] mark=0 use=1tcp 6 431988 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57891 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57891 [ASSURED] mark=0 use=1tcp 6 428798 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=41205 dport=5900 src=127.0.0.1 dst=127.0.0.1 sport=5900 dport=41205 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47749 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47749 [ASSURED] mark=0 use=1tcp 6 426297 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=52774 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=52774 [ASSURED] mark=0 use=1tcp 6 431989 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47753 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47753 [ASSURED] mark=0 use=1tcp 6 431993 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=42018 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=42018 [ASSURED] mark=0 use=1tcp 6 431951 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57897 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57897 [ASSURED] mark=0 use=1tcp 6 431533 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44126 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44126 [ASSURED] mark=0 use=1tcp 6 426297 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=52587 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=52587 [ASSURED] mark=0 use=2tcp 6 431974 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57885 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57885 [ASSURED] mark=0 use=1tcp 6 428782 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43751 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43751 [ASSURED] mark=0 use=1tcp 6 428788 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44345 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44345 [ASSURED] mark=0 use=1tcp 6 428788 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43713 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43713 [ASSURED] mark=0 use=1tcp 6 431981 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57899 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57899 [ASSURED] mark=0 use=1tcp 6 431988 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47751 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47751 [ASSURED] mark=0 use=1tcp 6 426303 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=51977 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=51977 [ASSURED] mark=0 use=1tcp 6 431951 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57901 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57901 [ASSURED] mark=0 use=1tcp 6 426331 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48880 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48880 [ASSURED] mark=0 use=1tcp 6 431994 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47757 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47757 [ASSURED] mark=0 use=1tcp 6 431987 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59062 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59062 [ASSURED] mark=0 use=1tcp 6 429699 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48286 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48286 [ASSURED] mark=0 use=1tcp 6 431990 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48489 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48489 [ASSURED] mark=0 use=1tcp 6 431991 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57903 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57903 [ASSURED] mark=0 use=1tcp 6 431975 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=45380 dport=9696 src=10.145.105.64 dst=10.145.105.64 sport=9696 dport=45380 [ASSURED] mark=0 use=1tcp 6 431964 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59060 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59060 [ASSURED] mark=0 use=1tcp 6 431985 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57915 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57915 [ASSURED] mark=0 use=1tcp 6 431984 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57911 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57911 [ASSURED] mark=0 use=1tcp 6 428781 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=45182 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=45182 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47754 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47754 [ASSURED] mark=0 use=1tcp 6 428801 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=46210 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=46210 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=10.145.90.5 dst=10.145.105.64 sport=58162 dport=22 src=10.145.105.64 dst=10.145.90.5 sport=22 dport=58162 [ASSURED] mark=0 use=1tcp 6 430445 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47817 dport=5901 src=127.0.0.1 dst=127.0.0.1 sport=5901 dport=47817 [ASSURED] mark=0 use=1tcp 6 431987 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=58231 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=58231 [ASSURED] mark=0 use=1tcp 6 431969 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=37219 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=37219 [ASSURED] mark=0 use=1tcp 6 431969 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59072 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59072 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=50737 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=50737 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47759 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47759 [ASSURED] mark=0 use=1tcp 6 431967 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=34837 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=34837 [ASSURED] mark=0 use=1tcp 6 426389 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43438 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43438 [ASSURED] mark=0 use=1tcp 6 431984 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=60883 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=60883 [ASSURED] mark=0 use=1tcp 6 431972 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57659 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57659 [ASSURED] mark=0 use=1tcp 6 431981 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57906 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57906 [ASSURED] mark=0 use=1tcp 6 429732 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=46378 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=46378 [ASSURED] mark=0 use=1tcp 6 431992 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47756 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47756 [ASSURED] mark=0 use=1tcp 6 426296 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=49193 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=49193 [ASSURED] mark=0 use=1tcp 6 431989 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57884 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57884 [ASSURED] mark=0 use=1tcp 6 428748 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44910 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44910 [ASSURED] mark=0 use=2tcp 6 431434 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43946 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43946 [ASSURED] mark=0 use=1tcp 6 428790 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44447 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44447 [ASSURED] mark=0 use=1tcp 6 426275 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43444 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43444 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59057 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59057 [ASSURED] mark=0 use=1tcp 6 428781 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43860 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43860 [ASSURED] mark=0 use=1tcp 6 428782 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=45273 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=45273 [ASSURED] mark=0 use=1tcp 6 429195 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44661 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44661 [ASSURED] mark=0 use=1tcp 6 94 TIME_WAIT src=10.145.105.64 dst=10.145.105.64 sport=59833 dport=35357 src=10.145.105.64 dst=10.145.105.64 sport=35357 dport=59833 [ASSURED] mark=0 use=1tcp 6 428790 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44448 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44448 [ASSURED] mark=0 use=1tcp 6 425920 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43446 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43446 [ASSURED] mark=0 use=1tcp 6 431981 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57904 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57904 [ASSURED] mark=0 use=1tcp 6 431980 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47755 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47755 [ASSURED] mark=0 use=1tcp 6 425920 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43452 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43452 [ASSURED] mark=0 use=1tcp 6 431984 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57912 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57912 [ASSURED] mark=0 use=1tcp 6 428790 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44595 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44595 [ASSURED] mark=0 use=1tcp 6 425920 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43450 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43450 [ASSURED] mark=0 use=1tcp 6 431991 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47747 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47747 [ASSURED] mark=0 use=1tcp 6 428723 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=44253 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=44253 [ASSURED] mark=0 use=1tcp 6 431988 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57918 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57918 [ASSURED] mark=0 use=1tcp 6 431976 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57892 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57892 [ASSURED] mark=0 use=1tcp 6 431979 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=58933 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=58933 [ASSURED] mark=0 use=1tcp 6 431964 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59074 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59074 [ASSURED] mark=0 use=1tcp 6 428787 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=45446 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=45446 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48153 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48153 [ASSURED] mark=0 use=1tcp 6 426295 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=50319 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=50319 [ASSURED] mark=0 use=1tcp 6 431979 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=36498 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=36498 [ASSURED] mark=0 use=1udp 17 29 src=0.0.0.0 dst=255.255.255.255 sport=68 dport=67 [UNREPLIED] src=255.255.255.255 dst=0.0.0.0 sport=67 dport=68 mark=0 use=1tcp 6 431998 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=58139 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=58139 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=47752 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=47752 [ASSURED] mark=0 use=1tcp 6 431999 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59055 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59055 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59052 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59052 [ASSURED] mark=0 use=1tcp 6 425920 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43449 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43449 [ASSURED] mark=0 use=1tcp 6 431969 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57509 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57509 [ASSURED] mark=0 use=1tcp 6 431974 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=59068 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=59068 [ASSURED] mark=0 use=1tcp 6 431991 ESTABLISHED src=10.145.105.64 dst=10.145.105.64 sport=57889 dport=5672 src=10.145.105.64 dst=10.145.105.64 sport=5672 dport=57889 [ASSURED] mark=0 use=1tcp 6 425920 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=43453 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=43453 [ASSURED] mark=0 use=1tcp 6 431914 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=48651 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=48651 [ASSURED] mark=0 use=1tcp 6 426232 ESTABLISHED src=127.0.0.1 dst=127.0.0.1 sport=49376 dport=3306 src=127.0.0.1 dst=127.0.0.1 sport=3306 dport=49376 [ASSURED] mark=0 use=2
_______________________________________________
Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Post to : openstack at lists.openstack.org
Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20160422/f01462b6/attachment.html>
More information about the Openstack
mailing list