3 "_index": "packets-2017-10-26",
9 "frame.encap_type": "1",
10 "frame.time": "Oct 19, 2017 17:07:51.560156000 PDT",
11 "frame.offset_shift": "0.000000000",
12 "frame.time_epoch": "1508458071.560156000",
13 "frame.time_delta": "1.053360000",
14 "frame.time_delta_displayed": "0.000000000",
15 "frame.time_relative": "359.154952000",
16 "frame.number": "380",
18 "frame.cap_len": "76",
21 "frame.protocols": "eth:ethertype:ip:udp:dns",
22 "frame.coloring_rule.name": "UDP",
23 "frame.coloring_rule.string": "udp"
26 "eth.dst": "b0:b9:8a:73:69:8e",
28 "eth.dst_resolved": "Netgear_73:69:8e",
29 "eth.addr": "b0:b9:8a:73:69:8e",
30 "eth.addr_resolved": "Netgear_73:69:8e",
34 "eth.src": "00:17:88:69:ee:e4",
36 "eth.src_resolved": "PhilipsL_69:ee:e4",
37 "eth.addr": "00:17:88:69:ee:e4",
38 "eth.addr_resolved": "PhilipsL_69:ee:e4",
42 "eth.type": "0x00000800"
47 "ip.dsfield": "0x00000000",
49 "ip.dsfield.dscp": "0",
53 "ip.id": "0x0000c5d4",
54 "ip.flags": "0x00000002",
60 "ip.frag_offset": "0",
63 "ip.checksum": "0x0000f2e8",
64 "ip.checksum.status": "2",
65 "ip.src": "192.168.0.160",
66 "ip.addr": "192.168.0.160",
67 "ip.src_host": "192.168.0.160",
68 "ip.host": "192.168.0.160",
69 "ip.dst": "192.168.0.1",
70 "ip.addr": "192.168.0.1",
71 "ip.dst_host": "192.168.0.1",
72 "ip.host": "192.168.0.1",
73 "Source GeoIP: Unknown": "",
74 "Destination GeoIP: Unknown": ""
77 "udp.srcport": "35041",
82 "udp.checksum": "0x0000d04f",
83 "udp.checksum.status": "2",
87 "dns.response_in": "381",
88 "dns.id": "0x00000487",
89 "dns.flags": "0x00000100",
91 "dns.flags.response": "0",
92 "dns.flags.opcode": "0",
93 "dns.flags.truncated": "0",
94 "dns.flags.recdesired": "1",
96 "dns.flags.checkdisable": "0"
98 "dns.count.queries": "1",
99 "dns.count.answers": "0",
100 "dns.count.auth_rr": "0",
101 "dns.count.add_rr": "0",
103 "www2.meethue.com: type A, class IN": {
104 "dns.qry.name": "www2.meethue.com",
105 "dns.qry.name.len": "16",
106 "dns.count.labels": "3",
108 "dns.qry.class": "0x00000001"
117 "_index": "packets-2017-10-26",
118 "_type": "pcap_file",
123 "frame.encap_type": "1",
124 "frame.time": "Oct 19, 2017 17:07:51.597999000 PDT",
125 "frame.offset_shift": "0.000000000",
126 "frame.time_epoch": "1508458071.597999000",
127 "frame.time_delta": "0.037843000",
128 "frame.time_delta_displayed": "0.037843000",
129 "frame.time_relative": "359.192795000",
130 "frame.number": "381",
132 "frame.cap_len": "513",
134 "frame.ignored": "0",
135 "frame.protocols": "eth:ethertype:ip:udp:dns",
136 "frame.coloring_rule.name": "UDP",
137 "frame.coloring_rule.string": "udp"
140 "eth.dst": "00:17:88:69:ee:e4",
142 "eth.dst_resolved": "PhilipsL_69:ee:e4",
143 "eth.addr": "00:17:88:69:ee:e4",
144 "eth.addr_resolved": "PhilipsL_69:ee:e4",
148 "eth.src": "b0:b9:8a:73:69:8e",
150 "eth.src_resolved": "Netgear_73:69:8e",
151 "eth.addr": "b0:b9:8a:73:69:8e",
152 "eth.addr_resolved": "Netgear_73:69:8e",
156 "eth.type": "0x00000800"
161 "ip.dsfield": "0x00000000",
163 "ip.dsfield.dscp": "0",
164 "ip.dsfield.ecn": "0"
167 "ip.id": "0x00001e6a",
168 "ip.flags": "0x00000002",
174 "ip.frag_offset": "0",
177 "ip.checksum": "0x0000989e",
178 "ip.checksum.status": "2",
179 "ip.src": "192.168.0.1",
180 "ip.addr": "192.168.0.1",
181 "ip.src_host": "192.168.0.1",
182 "ip.host": "192.168.0.1",
183 "ip.dst": "192.168.0.160",
184 "ip.addr": "192.168.0.160",
185 "ip.dst_host": "192.168.0.160",
186 "ip.host": "192.168.0.160",
187 "Source GeoIP: Unknown": "",
188 "Destination GeoIP: Unknown": ""
192 "udp.dstport": "35041",
196 "udp.checksum": "0x000083e2",
197 "udp.checksum.status": "2",
201 "dns.response_to": "380",
202 "dns.time": "0.037843000",
203 "dns.id": "0x00000487",
204 "dns.flags": "0x00008180",
206 "dns.flags.response": "1",
207 "dns.flags.opcode": "0",
208 "dns.flags.authoritative": "0",
209 "dns.flags.truncated": "0",
210 "dns.flags.recdesired": "1",
211 "dns.flags.recavail": "1",
213 "dns.flags.authenticated": "0",
214 "dns.flags.checkdisable": "0",
215 "dns.flags.rcode": "0"
217 "dns.count.queries": "1",
218 "dns.count.answers": "4",
219 "dns.count.auth_rr": "9",
220 "dns.count.add_rr": "9",
222 "www2.meethue.com: type A, class IN": {
223 "dns.qry.name": "www2.meethue.com",
224 "dns.qry.name.len": "16",
225 "dns.count.labels": "3",
227 "dns.qry.class": "0x00000001"
231 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
232 "dns.resp.name": "www2.meethue.com",
233 "dns.resp.type": "5",
234 "dns.resp.class": "0x00000001",
235 "dns.resp.ttl": "115",
236 "dns.resp.len": "41",
237 "dns.cname": "brands.lighting.philips.com.edgekey.net"
239 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
240 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
241 "dns.resp.type": "5",
242 "dns.resp.class": "0x00000001",
243 "dns.resp.ttl": "13313",
244 "dns.resp.len": "22",
245 "dns.cname": "e15361.b.akamaiedge.net"
247 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.113": {
248 "dns.resp.name": "e15361.b.akamaiedge.net",
249 "dns.resp.type": "1",
250 "dns.resp.class": "0x00000001",
251 "dns.resp.ttl": "20",
253 "dns.a": "173.223.52.113"
255 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
256 "dns.resp.name": "e15361.b.akamaiedge.net",
257 "dns.resp.type": "1",
258 "dns.resp.class": "0x00000001",
259 "dns.resp.ttl": "20",
261 "dns.a": "173.223.52.125"
264 "Authoritative nameservers": {
265 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
266 "dns.resp.name": "b.akamaiedge.net",
267 "dns.resp.type": "2",
268 "dns.resp.class": "0x00000001",
269 "dns.resp.ttl": "485",
271 "dns.ns": "n3b.akamaiedge.net"
273 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
274 "dns.resp.name": "b.akamaiedge.net",
275 "dns.resp.type": "2",
276 "dns.resp.class": "0x00000001",
277 "dns.resp.ttl": "485",
279 "dns.ns": "n7b.akamaiedge.net"
281 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
282 "dns.resp.name": "b.akamaiedge.net",
283 "dns.resp.type": "2",
284 "dns.resp.class": "0x00000001",
285 "dns.resp.ttl": "485",
287 "dns.ns": "n4b.akamaiedge.net"
289 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
290 "dns.resp.name": "b.akamaiedge.net",
291 "dns.resp.type": "2",
292 "dns.resp.class": "0x00000001",
293 "dns.resp.ttl": "485",
295 "dns.ns": "n6b.akamaiedge.net"
297 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
298 "dns.resp.name": "b.akamaiedge.net",
299 "dns.resp.type": "2",
300 "dns.resp.class": "0x00000001",
301 "dns.resp.ttl": "485",
303 "dns.ns": "n0b.akamaiedge.net"
305 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
306 "dns.resp.name": "b.akamaiedge.net",
307 "dns.resp.type": "2",
308 "dns.resp.class": "0x00000001",
309 "dns.resp.ttl": "485",
311 "dns.ns": "a0b.akamaiedge.net"
313 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
314 "dns.resp.name": "b.akamaiedge.net",
315 "dns.resp.type": "2",
316 "dns.resp.class": "0x00000001",
317 "dns.resp.ttl": "485",
319 "dns.ns": "n2b.akamaiedge.net"
321 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
322 "dns.resp.name": "b.akamaiedge.net",
323 "dns.resp.type": "2",
324 "dns.resp.class": "0x00000001",
325 "dns.resp.ttl": "485",
327 "dns.ns": "n1b.akamaiedge.net"
329 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
330 "dns.resp.name": "b.akamaiedge.net",
331 "dns.resp.type": "2",
332 "dns.resp.class": "0x00000001",
333 "dns.resp.ttl": "485",
335 "dns.ns": "n5b.akamaiedge.net"
338 "Additional records": {
339 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
340 "dns.resp.name": "n0b.akamaiedge.net",
341 "dns.resp.type": "1",
342 "dns.resp.class": "0x00000001",
343 "dns.resp.ttl": "3795",
345 "dns.a": "88.221.81.192"
347 "n1b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
348 "dns.resp.name": "n1b.akamaiedge.net",
349 "dns.resp.type": "1",
350 "dns.resp.class": "0x00000001",
351 "dns.resp.ttl": "2515",
353 "dns.a": "173.197.192.229"
355 "n2b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
356 "dns.resp.name": "n2b.akamaiedge.net",
357 "dns.resp.type": "1",
358 "dns.resp.class": "0x00000001",
359 "dns.resp.ttl": "3016",
361 "dns.a": "173.197.192.229"
363 "n3b.akamaiedge.net: type A, class IN, addr 165.254.134.241": {
364 "dns.resp.name": "n3b.akamaiedge.net",
365 "dns.resp.type": "1",
366 "dns.resp.class": "0x00000001",
367 "dns.resp.ttl": "3200",
369 "dns.a": "165.254.134.241"
371 "n4b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
372 "dns.resp.name": "n4b.akamaiedge.net",
373 "dns.resp.type": "1",
374 "dns.resp.class": "0x00000001",
375 "dns.resp.ttl": "2106",
377 "dns.a": "204.1.137.41"
379 "n5b.akamaiedge.net: type A, class IN, addr 204.1.137.33": {
380 "dns.resp.name": "n5b.akamaiedge.net",
381 "dns.resp.type": "1",
382 "dns.resp.class": "0x00000001",
383 "dns.resp.ttl": "3857",
385 "dns.a": "204.1.137.33"
387 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.95": {
388 "dns.resp.name": "n6b.akamaiedge.net",
389 "dns.resp.type": "1",
390 "dns.resp.class": "0x00000001",
391 "dns.resp.ttl": "3654",
393 "dns.a": "165.254.16.95"
395 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.239": {
396 "dns.resp.name": "n7b.akamaiedge.net",
397 "dns.resp.type": "1",
398 "dns.resp.class": "0x00000001",
399 "dns.resp.ttl": "3718",
401 "dns.a": "165.254.134.239"
403 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
404 "dns.resp.name": "a0b.akamaiedge.net",
405 "dns.resp.type": "28",
406 "dns.resp.class": "0x00000001",
407 "dns.resp.ttl": "2491",
408 "dns.resp.len": "16",
409 "dns.aaaa": "2600:1480:e800::c0"
418 "_index": "packets-2017-10-26",
419 "_type": "pcap_file",
424 "frame.encap_type": "1",
425 "frame.time": "Oct 19, 2017 17:22:51.607393000 PDT",
426 "frame.offset_shift": "0.000000000",
427 "frame.time_epoch": "1508458971.607393000",
428 "frame.time_delta": "4.029605000",
429 "frame.time_delta_displayed": "900.009394000",
430 "frame.time_relative": "1259.202189000",
431 "frame.number": "1239",
433 "frame.cap_len": "76",
435 "frame.ignored": "0",
436 "frame.protocols": "eth:ethertype:ip:udp:dns",
437 "frame.coloring_rule.name": "UDP",
438 "frame.coloring_rule.string": "udp"
441 "eth.dst": "b0:b9:8a:73:69:8e",
443 "eth.dst_resolved": "Netgear_73:69:8e",
444 "eth.addr": "b0:b9:8a:73:69:8e",
445 "eth.addr_resolved": "Netgear_73:69:8e",
449 "eth.src": "00:17:88:69:ee:e4",
451 "eth.src_resolved": "PhilipsL_69:ee:e4",
452 "eth.addr": "00:17:88:69:ee:e4",
453 "eth.addr_resolved": "PhilipsL_69:ee:e4",
457 "eth.type": "0x00000800"
462 "ip.dsfield": "0x00000000",
464 "ip.dsfield.dscp": "0",
465 "ip.dsfield.ecn": "0"
468 "ip.id": "0x00000103",
469 "ip.flags": "0x00000002",
475 "ip.frag_offset": "0",
478 "ip.checksum": "0x0000b7ba",
479 "ip.checksum.status": "2",
480 "ip.src": "192.168.0.160",
481 "ip.addr": "192.168.0.160",
482 "ip.src_host": "192.168.0.160",
483 "ip.host": "192.168.0.160",
484 "ip.dst": "192.168.0.1",
485 "ip.addr": "192.168.0.1",
486 "ip.dst_host": "192.168.0.1",
487 "ip.host": "192.168.0.1",
488 "Source GeoIP: Unknown": "",
489 "Destination GeoIP: Unknown": ""
492 "udp.srcport": "57902",
497 "udp.checksum": "0x00007701",
498 "udp.checksum.status": "2",
502 "dns.response_in": "1240",
503 "dns.id": "0x00000488",
504 "dns.flags": "0x00000100",
506 "dns.flags.response": "0",
507 "dns.flags.opcode": "0",
508 "dns.flags.truncated": "0",
509 "dns.flags.recdesired": "1",
511 "dns.flags.checkdisable": "0"
513 "dns.count.queries": "1",
514 "dns.count.answers": "0",
515 "dns.count.auth_rr": "0",
516 "dns.count.add_rr": "0",
518 "www2.meethue.com: type A, class IN": {
519 "dns.qry.name": "www2.meethue.com",
520 "dns.qry.name.len": "16",
521 "dns.count.labels": "3",
523 "dns.qry.class": "0x00000001"
532 "_index": "packets-2017-10-26",
533 "_type": "pcap_file",
538 "frame.encap_type": "1",
539 "frame.time": "Oct 19, 2017 17:22:51.678853000 PDT",
540 "frame.offset_shift": "0.000000000",
541 "frame.time_epoch": "1508458971.678853000",
542 "frame.time_delta": "0.071460000",
543 "frame.time_delta_displayed": "0.071460000",
544 "frame.time_relative": "1259.273649000",
545 "frame.number": "1240",
547 "frame.cap_len": "467",
549 "frame.ignored": "0",
550 "frame.protocols": "eth:ethertype:ip:udp:dns",
551 "frame.coloring_rule.name": "UDP",
552 "frame.coloring_rule.string": "udp"
555 "eth.dst": "00:17:88:69:ee:e4",
557 "eth.dst_resolved": "PhilipsL_69:ee:e4",
558 "eth.addr": "00:17:88:69:ee:e4",
559 "eth.addr_resolved": "PhilipsL_69:ee:e4",
563 "eth.src": "b0:b9:8a:73:69:8e",
565 "eth.src_resolved": "Netgear_73:69:8e",
566 "eth.addr": "b0:b9:8a:73:69:8e",
567 "eth.addr_resolved": "Netgear_73:69:8e",
571 "eth.type": "0x00000800"
576 "ip.dsfield": "0x00000000",
578 "ip.dsfield.dscp": "0",
579 "ip.dsfield.ecn": "0"
582 "ip.id": "0x00004f7c",
583 "ip.flags": "0x00000002",
589 "ip.frag_offset": "0",
592 "ip.checksum": "0x000067ba",
593 "ip.checksum.status": "2",
594 "ip.src": "192.168.0.1",
595 "ip.addr": "192.168.0.1",
596 "ip.src_host": "192.168.0.1",
597 "ip.host": "192.168.0.1",
598 "ip.dst": "192.168.0.160",
599 "ip.addr": "192.168.0.160",
600 "ip.dst_host": "192.168.0.160",
601 "ip.host": "192.168.0.160",
602 "Source GeoIP: Unknown": "",
603 "Destination GeoIP: Unknown": ""
607 "udp.dstport": "57902",
611 "udp.checksum": "0x000083b4",
612 "udp.checksum.status": "2",
616 "dns.response_to": "1239",
617 "dns.time": "0.071460000",
618 "dns.id": "0x00000488",
619 "dns.flags": "0x00008180",
621 "dns.flags.response": "1",
622 "dns.flags.opcode": "0",
623 "dns.flags.authoritative": "0",
624 "dns.flags.truncated": "0",
625 "dns.flags.recdesired": "1",
626 "dns.flags.recavail": "1",
628 "dns.flags.authenticated": "0",
629 "dns.flags.checkdisable": "0",
630 "dns.flags.rcode": "0"
632 "dns.count.queries": "1",
633 "dns.count.answers": "4",
634 "dns.count.auth_rr": "8",
635 "dns.count.add_rr": "8",
637 "www2.meethue.com: type A, class IN": {
638 "dns.qry.name": "www2.meethue.com",
639 "dns.qry.name.len": "16",
640 "dns.count.labels": "3",
642 "dns.qry.class": "0x00000001"
646 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
647 "dns.resp.name": "www2.meethue.com",
648 "dns.resp.type": "5",
649 "dns.resp.class": "0x00000001",
650 "dns.resp.ttl": "115",
651 "dns.resp.len": "41",
652 "dns.cname": "brands.lighting.philips.com.edgekey.net"
654 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
655 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
656 "dns.resp.type": "5",
657 "dns.resp.class": "0x00000001",
658 "dns.resp.ttl": "12413",
659 "dns.resp.len": "22",
660 "dns.cname": "e15361.b.akamaiedge.net"
662 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.113": {
663 "dns.resp.name": "e15361.b.akamaiedge.net",
664 "dns.resp.type": "1",
665 "dns.resp.class": "0x00000001",
666 "dns.resp.ttl": "20",
668 "dns.a": "173.223.52.113"
670 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
671 "dns.resp.name": "e15361.b.akamaiedge.net",
672 "dns.resp.type": "1",
673 "dns.resp.class": "0x00000001",
674 "dns.resp.ttl": "20",
676 "dns.a": "173.223.52.125"
679 "Authoritative nameservers": {
680 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
681 "dns.resp.name": "b.akamaiedge.net",
682 "dns.resp.type": "2",
683 "dns.resp.class": "0x00000001",
684 "dns.resp.ttl": "587",
686 "dns.ns": "n0b.akamaiedge.net"
688 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
689 "dns.resp.name": "b.akamaiedge.net",
690 "dns.resp.type": "2",
691 "dns.resp.class": "0x00000001",
692 "dns.resp.ttl": "587",
694 "dns.ns": "n1b.akamaiedge.net"
696 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
697 "dns.resp.name": "b.akamaiedge.net",
698 "dns.resp.type": "2",
699 "dns.resp.class": "0x00000001",
700 "dns.resp.ttl": "587",
702 "dns.ns": "n3b.akamaiedge.net"
704 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
705 "dns.resp.name": "b.akamaiedge.net",
706 "dns.resp.type": "2",
707 "dns.resp.class": "0x00000001",
708 "dns.resp.ttl": "587",
710 "dns.ns": "n6b.akamaiedge.net"
712 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
713 "dns.resp.name": "b.akamaiedge.net",
714 "dns.resp.type": "2",
715 "dns.resp.class": "0x00000001",
716 "dns.resp.ttl": "587",
718 "dns.ns": "n7b.akamaiedge.net"
720 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
721 "dns.resp.name": "b.akamaiedge.net",
722 "dns.resp.type": "2",
723 "dns.resp.class": "0x00000001",
724 "dns.resp.ttl": "587",
726 "dns.ns": "n5b.akamaiedge.net"
728 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
729 "dns.resp.name": "b.akamaiedge.net",
730 "dns.resp.type": "2",
731 "dns.resp.class": "0x00000001",
732 "dns.resp.ttl": "587",
734 "dns.ns": "n2b.akamaiedge.net"
736 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
737 "dns.resp.name": "b.akamaiedge.net",
738 "dns.resp.type": "2",
739 "dns.resp.class": "0x00000001",
740 "dns.resp.ttl": "587",
742 "dns.ns": "n4b.akamaiedge.net"
745 "Additional records": {
746 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
747 "dns.resp.name": "n0b.akamaiedge.net",
748 "dns.resp.type": "1",
749 "dns.resp.class": "0x00000001",
750 "dns.resp.ttl": "2895",
752 "dns.a": "88.221.81.192"
754 "n1b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
755 "dns.resp.name": "n1b.akamaiedge.net",
756 "dns.resp.type": "1",
757 "dns.resp.class": "0x00000001",
758 "dns.resp.ttl": "1615",
760 "dns.a": "173.197.192.229"
762 "n2b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
763 "dns.resp.name": "n2b.akamaiedge.net",
764 "dns.resp.type": "1",
765 "dns.resp.class": "0x00000001",
766 "dns.resp.ttl": "2116",
768 "dns.a": "173.197.192.229"
770 "n3b.akamaiedge.net: type A, class IN, addr 165.254.134.241": {
771 "dns.resp.name": "n3b.akamaiedge.net",
772 "dns.resp.type": "1",
773 "dns.resp.class": "0x00000001",
774 "dns.resp.ttl": "2300",
776 "dns.a": "165.254.134.241"
778 "n4b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
779 "dns.resp.name": "n4b.akamaiedge.net",
780 "dns.resp.type": "1",
781 "dns.resp.class": "0x00000001",
782 "dns.resp.ttl": "1206",
784 "dns.a": "204.1.137.41"
786 "n5b.akamaiedge.net: type A, class IN, addr 204.1.137.33": {
787 "dns.resp.name": "n5b.akamaiedge.net",
788 "dns.resp.type": "1",
789 "dns.resp.class": "0x00000001",
790 "dns.resp.ttl": "2957",
792 "dns.a": "204.1.137.33"
794 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.95": {
795 "dns.resp.name": "n6b.akamaiedge.net",
796 "dns.resp.type": "1",
797 "dns.resp.class": "0x00000001",
798 "dns.resp.ttl": "2754",
800 "dns.a": "165.254.16.95"
802 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.239": {
803 "dns.resp.name": "n7b.akamaiedge.net",
804 "dns.resp.type": "1",
805 "dns.resp.class": "0x00000001",
806 "dns.resp.ttl": "2818",
808 "dns.a": "165.254.134.239"
817 "_index": "packets-2017-10-26",
818 "_type": "pcap_file",
823 "frame.encap_type": "1",
824 "frame.time": "Oct 19, 2017 17:33:23.045476000 PDT",
825 "frame.offset_shift": "0.000000000",
826 "frame.time_epoch": "1508459603.045476000",
827 "frame.time_delta": "1.106645000",
828 "frame.time_delta_displayed": "631.366623000",
829 "frame.time_relative": "1890.640272000",
830 "frame.number": "1873",
832 "frame.cap_len": "79",
834 "frame.ignored": "0",
835 "frame.protocols": "eth:ethertype:ip:udp:dns",
836 "frame.coloring_rule.name": "UDP",
837 "frame.coloring_rule.string": "udp"
840 "eth.dst": "b0:b9:8a:73:69:8e",
842 "eth.dst_resolved": "Netgear_73:69:8e",
843 "eth.addr": "b0:b9:8a:73:69:8e",
844 "eth.addr_resolved": "Netgear_73:69:8e",
848 "eth.src": "00:17:88:69:ee:e4",
850 "eth.src_resolved": "PhilipsL_69:ee:e4",
851 "eth.addr": "00:17:88:69:ee:e4",
852 "eth.addr_resolved": "PhilipsL_69:ee:e4",
856 "eth.type": "0x00000800"
861 "ip.dsfield": "0x00000000",
863 "ip.dsfield.dscp": "0",
864 "ip.dsfield.ecn": "0"
867 "ip.id": "0x00001f1b",
868 "ip.flags": "0x00000002",
874 "ip.frag_offset": "0",
877 "ip.checksum": "0x0000999f",
878 "ip.checksum.status": "2",
879 "ip.src": "192.168.0.160",
880 "ip.addr": "192.168.0.160",
881 "ip.src_host": "192.168.0.160",
882 "ip.host": "192.168.0.160",
883 "ip.dst": "192.168.0.1",
884 "ip.addr": "192.168.0.1",
885 "ip.dst_host": "192.168.0.1",
886 "ip.host": "192.168.0.1",
887 "Source GeoIP: Unknown": "",
888 "Destination GeoIP: Unknown": ""
891 "udp.srcport": "44067",
896 "udp.checksum": "0x00001491",
897 "udp.checksum.status": "2",
901 "dns.response_in": "1874",
902 "dns.id": "0x00000489",
903 "dns.flags": "0x00000100",
905 "dns.flags.response": "0",
906 "dns.flags.opcode": "0",
907 "dns.flags.truncated": "0",
908 "dns.flags.recdesired": "1",
910 "dns.flags.checkdisable": "0"
912 "dns.count.queries": "1",
913 "dns.count.answers": "0",
914 "dns.count.auth_rr": "0",
915 "dns.count.add_rr": "0",
917 "dcp.cpp.philips.com: type AAAA, class IN": {
918 "dns.qry.name": "dcp.cpp.philips.com",
919 "dns.qry.name.len": "19",
920 "dns.count.labels": "4",
921 "dns.qry.type": "28",
922 "dns.qry.class": "0x00000001"
931 "_index": "packets-2017-10-26",
932 "_type": "pcap_file",
937 "frame.encap_type": "1",
938 "frame.time": "Oct 19, 2017 17:33:23.047090000 PDT",
939 "frame.offset_shift": "0.000000000",
940 "frame.time_epoch": "1508459603.047090000",
941 "frame.time_delta": "0.001614000",
942 "frame.time_delta_displayed": "0.001614000",
943 "frame.time_relative": "1890.641886000",
944 "frame.number": "1874",
946 "frame.cap_len": "137",
948 "frame.ignored": "0",
949 "frame.protocols": "eth:ethertype:ip:udp:dns",
950 "frame.coloring_rule.name": "UDP",
951 "frame.coloring_rule.string": "udp"
954 "eth.dst": "00:17:88:69:ee:e4",
956 "eth.dst_resolved": "PhilipsL_69:ee:e4",
957 "eth.addr": "00:17:88:69:ee:e4",
958 "eth.addr_resolved": "PhilipsL_69:ee:e4",
962 "eth.src": "b0:b9:8a:73:69:8e",
964 "eth.src_resolved": "Netgear_73:69:8e",
965 "eth.addr": "b0:b9:8a:73:69:8e",
966 "eth.addr_resolved": "Netgear_73:69:8e",
970 "eth.type": "0x00000800"
975 "ip.dsfield": "0x00000000",
977 "ip.dsfield.dscp": "0",
978 "ip.dsfield.ecn": "0"
981 "ip.id": "0x00002b52",
982 "ip.flags": "0x00000002",
988 "ip.frag_offset": "0",
991 "ip.checksum": "0x00008d2e",
992 "ip.checksum.status": "2",
993 "ip.src": "192.168.0.1",
994 "ip.addr": "192.168.0.1",
995 "ip.src_host": "192.168.0.1",
996 "ip.host": "192.168.0.1",
997 "ip.dst": "192.168.0.160",
998 "ip.addr": "192.168.0.160",
999 "ip.dst_host": "192.168.0.160",
1000 "ip.host": "192.168.0.160",
1001 "Source GeoIP: Unknown": "",
1002 "Destination GeoIP: Unknown": ""
1005 "udp.srcport": "53",
1006 "udp.dstport": "44067",
1008 "udp.port": "44067",
1009 "udp.length": "103",
1010 "udp.checksum": "0x0000826a",
1011 "udp.checksum.status": "2",
1015 "dns.response_to": "1873",
1016 "dns.time": "0.001614000",
1017 "dns.id": "0x00000489",
1018 "dns.flags": "0x00008180",
1020 "dns.flags.response": "1",
1021 "dns.flags.opcode": "0",
1022 "dns.flags.authoritative": "0",
1023 "dns.flags.truncated": "0",
1024 "dns.flags.recdesired": "1",
1025 "dns.flags.recavail": "1",
1027 "dns.flags.authenticated": "0",
1028 "dns.flags.checkdisable": "0",
1029 "dns.flags.rcode": "0"
1031 "dns.count.queries": "1",
1032 "dns.count.answers": "0",
1033 "dns.count.auth_rr": "1",
1034 "dns.count.add_rr": "0",
1036 "dcp.cpp.philips.com: type AAAA, class IN": {
1037 "dns.qry.name": "dcp.cpp.philips.com",
1038 "dns.qry.name.len": "19",
1039 "dns.count.labels": "4",
1040 "dns.qry.type": "28",
1041 "dns.qry.class": "0x00000001"
1044 "Authoritative nameservers": {
1045 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
1046 "dns.resp.name": "cpp.philips.com",
1047 "dns.resp.type": "6",
1048 "dns.resp.class": "0x00000001",
1049 "dns.resp.ttl": "643",
1050 "dns.resp.len": "46",
1051 "dns.soa.mname": "ns1.ext.philips.com",
1052 "dns.soa.rname": "ddi-authority.philips.com",
1053 "dns.soa.serial_number": "387",
1054 "dns.soa.refresh_interval": "1200",
1055 "dns.soa.retry_interval": "300",
1056 "dns.soa.expire_limit": "1209600",
1057 "dns.soa.mininum_ttl": "3600"
1066 "_index": "packets-2017-10-26",
1067 "_type": "pcap_file",
1072 "frame.encap_type": "1",
1073 "frame.time": "Oct 19, 2017 17:33:23.048272000 PDT",
1074 "frame.offset_shift": "0.000000000",
1075 "frame.time_epoch": "1508459603.048272000",
1076 "frame.time_delta": "0.001182000",
1077 "frame.time_delta_displayed": "0.001182000",
1078 "frame.time_relative": "1890.643068000",
1079 "frame.number": "1875",
1081 "frame.cap_len": "79",
1082 "frame.marked": "0",
1083 "frame.ignored": "0",
1084 "frame.protocols": "eth:ethertype:ip:udp:dns",
1085 "frame.coloring_rule.name": "UDP",
1086 "frame.coloring_rule.string": "udp"
1089 "eth.dst": "b0:b9:8a:73:69:8e",
1091 "eth.dst_resolved": "Netgear_73:69:8e",
1092 "eth.addr": "b0:b9:8a:73:69:8e",
1093 "eth.addr_resolved": "Netgear_73:69:8e",
1097 "eth.src": "00:17:88:69:ee:e4",
1099 "eth.src_resolved": "PhilipsL_69:ee:e4",
1100 "eth.addr": "00:17:88:69:ee:e4",
1101 "eth.addr_resolved": "PhilipsL_69:ee:e4",
1105 "eth.type": "0x00000800"
1110 "ip.dsfield": "0x00000000",
1111 "ip.dsfield_tree": {
1112 "ip.dsfield.dscp": "0",
1113 "ip.dsfield.ecn": "0"
1116 "ip.id": "0x00001f1c",
1117 "ip.flags": "0x00000002",
1123 "ip.frag_offset": "0",
1126 "ip.checksum": "0x0000999e",
1127 "ip.checksum.status": "2",
1128 "ip.src": "192.168.0.160",
1129 "ip.addr": "192.168.0.160",
1130 "ip.src_host": "192.168.0.160",
1131 "ip.host": "192.168.0.160",
1132 "ip.dst": "192.168.0.1",
1133 "ip.addr": "192.168.0.1",
1134 "ip.dst_host": "192.168.0.1",
1135 "ip.host": "192.168.0.1",
1136 "Source GeoIP: Unknown": "",
1137 "Destination GeoIP: Unknown": ""
1140 "udp.srcport": "51510",
1141 "udp.dstport": "53",
1142 "udp.port": "51510",
1145 "udp.checksum": "0x0000127d",
1146 "udp.checksum.status": "2",
1150 "dns.response_in": "1876",
1151 "dns.id": "0x0000048a",
1152 "dns.flags": "0x00000100",
1154 "dns.flags.response": "0",
1155 "dns.flags.opcode": "0",
1156 "dns.flags.truncated": "0",
1157 "dns.flags.recdesired": "1",
1159 "dns.flags.checkdisable": "0"
1161 "dns.count.queries": "1",
1162 "dns.count.answers": "0",
1163 "dns.count.auth_rr": "0",
1164 "dns.count.add_rr": "0",
1166 "dcp.cpp.philips.com: type A, class IN": {
1167 "dns.qry.name": "dcp.cpp.philips.com",
1168 "dns.qry.name.len": "19",
1169 "dns.count.labels": "4",
1170 "dns.qry.type": "1",
1171 "dns.qry.class": "0x00000001"
1180 "_index": "packets-2017-10-26",
1181 "_type": "pcap_file",
1186 "frame.encap_type": "1",
1187 "frame.time": "Oct 19, 2017 17:33:23.049516000 PDT",
1188 "frame.offset_shift": "0.000000000",
1189 "frame.time_epoch": "1508459603.049516000",
1190 "frame.time_delta": "0.001244000",
1191 "frame.time_delta_displayed": "0.001244000",
1192 "frame.time_relative": "1890.644312000",
1193 "frame.number": "1876",
1195 "frame.cap_len": "285",
1196 "frame.marked": "0",
1197 "frame.ignored": "0",
1198 "frame.protocols": "eth:ethertype:ip:udp:dns",
1199 "frame.coloring_rule.name": "UDP",
1200 "frame.coloring_rule.string": "udp"
1203 "eth.dst": "00:17:88:69:ee:e4",
1205 "eth.dst_resolved": "PhilipsL_69:ee:e4",
1206 "eth.addr": "00:17:88:69:ee:e4",
1207 "eth.addr_resolved": "PhilipsL_69:ee:e4",
1211 "eth.src": "b0:b9:8a:73:69:8e",
1213 "eth.src_resolved": "Netgear_73:69:8e",
1214 "eth.addr": "b0:b9:8a:73:69:8e",
1215 "eth.addr_resolved": "Netgear_73:69:8e",
1219 "eth.type": "0x00000800"
1224 "ip.dsfield": "0x00000000",
1225 "ip.dsfield_tree": {
1226 "ip.dsfield.dscp": "0",
1227 "ip.dsfield.ecn": "0"
1230 "ip.id": "0x00002b53",
1231 "ip.flags": "0x00000002",
1237 "ip.frag_offset": "0",
1240 "ip.checksum": "0x00008c99",
1241 "ip.checksum.status": "2",
1242 "ip.src": "192.168.0.1",
1243 "ip.addr": "192.168.0.1",
1244 "ip.src_host": "192.168.0.1",
1245 "ip.host": "192.168.0.1",
1246 "ip.dst": "192.168.0.160",
1247 "ip.addr": "192.168.0.160",
1248 "ip.dst_host": "192.168.0.160",
1249 "ip.host": "192.168.0.160",
1250 "Source GeoIP: Unknown": "",
1251 "Destination GeoIP: Unknown": ""
1254 "udp.srcport": "53",
1255 "udp.dstport": "51510",
1257 "udp.port": "51510",
1258 "udp.length": "251",
1259 "udp.checksum": "0x000082fe",
1260 "udp.checksum.status": "2",
1264 "dns.response_to": "1875",
1265 "dns.time": "0.001244000",
1266 "dns.id": "0x0000048a",
1267 "dns.flags": "0x00008180",
1269 "dns.flags.response": "1",
1270 "dns.flags.opcode": "0",
1271 "dns.flags.authoritative": "0",
1272 "dns.flags.truncated": "0",
1273 "dns.flags.recdesired": "1",
1274 "dns.flags.recavail": "1",
1276 "dns.flags.authenticated": "0",
1277 "dns.flags.checkdisable": "0",
1278 "dns.flags.rcode": "0"
1280 "dns.count.queries": "1",
1281 "dns.count.answers": "1",
1282 "dns.count.auth_rr": "3",
1283 "dns.count.add_rr": "6",
1285 "dcp.cpp.philips.com: type A, class IN": {
1286 "dns.qry.name": "dcp.cpp.philips.com",
1287 "dns.qry.name.len": "19",
1288 "dns.count.labels": "4",
1289 "dns.qry.type": "1",
1290 "dns.qry.class": "0x00000001"
1294 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
1295 "dns.resp.name": "dcp.cpp.philips.com",
1296 "dns.resp.type": "1",
1297 "dns.resp.class": "0x00000001",
1298 "dns.resp.ttl": "644",
1299 "dns.resp.len": "4",
1300 "dns.a": "5.79.62.93"
1303 "Authoritative nameservers": {
1304 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
1305 "dns.resp.name": "cpp.philips.com",
1306 "dns.resp.type": "2",
1307 "dns.resp.class": "0x00000001",
1308 "dns.resp.ttl": "644",
1309 "dns.resp.len": "10",
1310 "dns.ns": "ns1.ext.philips.com"
1312 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
1313 "dns.resp.name": "cpp.philips.com",
1314 "dns.resp.type": "2",
1315 "dns.resp.class": "0x00000001",
1316 "dns.resp.ttl": "644",
1317 "dns.resp.len": "6",
1318 "dns.ns": "ns2.ext.philips.com"
1320 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
1321 "dns.resp.name": "cpp.philips.com",
1322 "dns.resp.type": "2",
1323 "dns.resp.class": "0x00000001",
1324 "dns.resp.ttl": "644",
1325 "dns.resp.len": "6",
1326 "dns.ns": "ns3.ext.philips.com"
1329 "Additional records": {
1330 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
1331 "dns.resp.name": "ns1.ext.philips.com",
1332 "dns.resp.type": "1",
1333 "dns.resp.class": "0x00000001",
1334 "dns.resp.ttl": "155007",
1335 "dns.resp.len": "4",
1336 "dns.a": "57.67.40.20"
1338 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
1339 "dns.resp.name": "ns2.ext.philips.com",
1340 "dns.resp.type": "1",
1341 "dns.resp.class": "0x00000001",
1342 "dns.resp.ttl": "3438",
1343 "dns.resp.len": "4",
1344 "dns.a": "57.77.21.76"
1346 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
1347 "dns.resp.name": "ns3.ext.philips.com",
1348 "dns.resp.type": "1",
1349 "dns.resp.class": "0x00000001",
1350 "dns.resp.ttl": "3438",
1351 "dns.resp.len": "4",
1352 "dns.a": "57.73.36.68"
1354 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
1355 "dns.resp.name": "ns1.ext.philips.com",
1356 "dns.resp.type": "28",
1357 "dns.resp.class": "0x00000001",
1358 "dns.resp.ttl": "158626",
1359 "dns.resp.len": "16",
1360 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
1362 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
1363 "dns.resp.name": "ns2.ext.philips.com",
1364 "dns.resp.type": "28",
1365 "dns.resp.class": "0x00000001",
1366 "dns.resp.ttl": "151199",
1367 "dns.resp.len": "16",
1368 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
1370 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
1371 "dns.resp.name": "ns3.ext.philips.com",
1372 "dns.resp.type": "28",
1373 "dns.resp.class": "0x00000001",
1374 "dns.resp.ttl": "151199",
1375 "dns.resp.len": "16",
1376 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
1385 "_index": "packets-2017-10-26",
1386 "_type": "pcap_file",
1391 "frame.encap_type": "1",
1392 "frame.time": "Oct 19, 2017 17:33:23.470381000 PDT",
1393 "frame.offset_shift": "0.000000000",
1394 "frame.time_epoch": "1508459603.470381000",
1395 "frame.time_delta": "0.000880000",
1396 "frame.time_delta_displayed": "0.420865000",
1397 "frame.time_relative": "1891.065177000",
1398 "frame.number": "1892",
1400 "frame.cap_len": "79",
1401 "frame.marked": "0",
1402 "frame.ignored": "0",
1403 "frame.protocols": "eth:ethertype:ip:udp:dns",
1404 "frame.coloring_rule.name": "UDP",
1405 "frame.coloring_rule.string": "udp"
1408 "eth.dst": "b0:b9:8a:73:69:8e",
1410 "eth.dst_resolved": "Netgear_73:69:8e",
1411 "eth.addr": "b0:b9:8a:73:69:8e",
1412 "eth.addr_resolved": "Netgear_73:69:8e",
1416 "eth.src": "00:17:88:69:ee:e4",
1418 "eth.src_resolved": "PhilipsL_69:ee:e4",
1419 "eth.addr": "00:17:88:69:ee:e4",
1420 "eth.addr_resolved": "PhilipsL_69:ee:e4",
1424 "eth.type": "0x00000800"
1429 "ip.dsfield": "0x00000000",
1430 "ip.dsfield_tree": {
1431 "ip.dsfield.dscp": "0",
1432 "ip.dsfield.ecn": "0"
1435 "ip.id": "0x00001f22",
1436 "ip.flags": "0x00000002",
1442 "ip.frag_offset": "0",
1445 "ip.checksum": "0x00009998",
1446 "ip.checksum.status": "2",
1447 "ip.src": "192.168.0.160",
1448 "ip.addr": "192.168.0.160",
1449 "ip.src_host": "192.168.0.160",
1450 "ip.host": "192.168.0.160",
1451 "ip.dst": "192.168.0.1",
1452 "ip.addr": "192.168.0.1",
1453 "ip.dst_host": "192.168.0.1",
1454 "ip.host": "192.168.0.1",
1455 "Source GeoIP: Unknown": "",
1456 "Destination GeoIP: Unknown": ""
1459 "udp.srcport": "44843",
1460 "udp.dstport": "53",
1461 "udp.port": "44843",
1464 "udp.checksum": "0x00001187",
1465 "udp.checksum.status": "2",
1469 "dns.response_in": "1893",
1470 "dns.id": "0x0000048b",
1471 "dns.flags": "0x00000100",
1473 "dns.flags.response": "0",
1474 "dns.flags.opcode": "0",
1475 "dns.flags.truncated": "0",
1476 "dns.flags.recdesired": "1",
1478 "dns.flags.checkdisable": "0"
1480 "dns.count.queries": "1",
1481 "dns.count.answers": "0",
1482 "dns.count.auth_rr": "0",
1483 "dns.count.add_rr": "0",
1485 "dcp.cpp.philips.com: type AAAA, class IN": {
1486 "dns.qry.name": "dcp.cpp.philips.com",
1487 "dns.qry.name.len": "19",
1488 "dns.count.labels": "4",
1489 "dns.qry.type": "28",
1490 "dns.qry.class": "0x00000001"
1499 "_index": "packets-2017-10-26",
1500 "_type": "pcap_file",
1505 "frame.encap_type": "1",
1506 "frame.time": "Oct 19, 2017 17:33:23.470880000 PDT",
1507 "frame.offset_shift": "0.000000000",
1508 "frame.time_epoch": "1508459603.470880000",
1509 "frame.time_delta": "0.000499000",
1510 "frame.time_delta_displayed": "0.000499000",
1511 "frame.time_relative": "1891.065676000",
1512 "frame.number": "1893",
1514 "frame.cap_len": "79",
1515 "frame.marked": "0",
1516 "frame.ignored": "0",
1517 "frame.protocols": "eth:ethertype:ip:udp:dns",
1518 "frame.coloring_rule.name": "UDP",
1519 "frame.coloring_rule.string": "udp"
1522 "eth.dst": "00:17:88:69:ee:e4",
1524 "eth.dst_resolved": "PhilipsL_69:ee:e4",
1525 "eth.addr": "00:17:88:69:ee:e4",
1526 "eth.addr_resolved": "PhilipsL_69:ee:e4",
1530 "eth.src": "b0:b9:8a:73:69:8e",
1532 "eth.src_resolved": "Netgear_73:69:8e",
1533 "eth.addr": "b0:b9:8a:73:69:8e",
1534 "eth.addr_resolved": "Netgear_73:69:8e",
1538 "eth.type": "0x00000800"
1543 "ip.dsfield": "0x00000000",
1544 "ip.dsfield_tree": {
1545 "ip.dsfield.dscp": "0",
1546 "ip.dsfield.ecn": "0"
1549 "ip.id": "0x00002b76",
1550 "ip.flags": "0x00000002",
1556 "ip.frag_offset": "0",
1559 "ip.checksum": "0x00008d44",
1560 "ip.checksum.status": "2",
1561 "ip.src": "192.168.0.1",
1562 "ip.addr": "192.168.0.1",
1563 "ip.src_host": "192.168.0.1",
1564 "ip.host": "192.168.0.1",
1565 "ip.dst": "192.168.0.160",
1566 "ip.addr": "192.168.0.160",
1567 "ip.dst_host": "192.168.0.160",
1568 "ip.host": "192.168.0.160",
1569 "Source GeoIP: Unknown": "",
1570 "Destination GeoIP: Unknown": ""
1573 "udp.srcport": "53",
1574 "udp.dstport": "44843",
1576 "udp.port": "44843",
1578 "udp.checksum": "0x00008230",
1579 "udp.checksum.status": "2",
1583 "dns.response_to": "1892",
1584 "dns.time": "0.000499000",
1585 "dns.id": "0x0000048b",
1586 "dns.flags": "0x00008180",
1588 "dns.flags.response": "1",
1589 "dns.flags.opcode": "0",
1590 "dns.flags.authoritative": "0",
1591 "dns.flags.truncated": "0",
1592 "dns.flags.recdesired": "1",
1593 "dns.flags.recavail": "1",
1595 "dns.flags.authenticated": "0",
1596 "dns.flags.checkdisable": "0",
1597 "dns.flags.rcode": "0"
1599 "dns.count.queries": "1",
1600 "dns.count.answers": "0",
1601 "dns.count.auth_rr": "0",
1602 "dns.count.add_rr": "0",
1604 "dcp.cpp.philips.com: type AAAA, class IN": {
1605 "dns.qry.name": "dcp.cpp.philips.com",
1606 "dns.qry.name.len": "19",
1607 "dns.count.labels": "4",
1608 "dns.qry.type": "28",
1609 "dns.qry.class": "0x00000001"
1618 "_index": "packets-2017-10-26",
1619 "_type": "pcap_file",
1624 "frame.encap_type": "1",
1625 "frame.time": "Oct 19, 2017 17:33:23.471684000 PDT",
1626 "frame.offset_shift": "0.000000000",
1627 "frame.time_epoch": "1508459603.471684000",
1628 "frame.time_delta": "0.000804000",
1629 "frame.time_delta_displayed": "0.000804000",
1630 "frame.time_relative": "1891.066480000",
1631 "frame.number": "1894",
1633 "frame.cap_len": "79",
1634 "frame.marked": "0",
1635 "frame.ignored": "0",
1636 "frame.protocols": "eth:ethertype:ip:udp:dns",
1637 "frame.coloring_rule.name": "UDP",
1638 "frame.coloring_rule.string": "udp"
1641 "eth.dst": "b0:b9:8a:73:69:8e",
1643 "eth.dst_resolved": "Netgear_73:69:8e",
1644 "eth.addr": "b0:b9:8a:73:69:8e",
1645 "eth.addr_resolved": "Netgear_73:69:8e",
1649 "eth.src": "00:17:88:69:ee:e4",
1651 "eth.src_resolved": "PhilipsL_69:ee:e4",
1652 "eth.addr": "00:17:88:69:ee:e4",
1653 "eth.addr_resolved": "PhilipsL_69:ee:e4",
1657 "eth.type": "0x00000800"
1662 "ip.dsfield": "0x00000000",
1663 "ip.dsfield_tree": {
1664 "ip.dsfield.dscp": "0",
1665 "ip.dsfield.ecn": "0"
1668 "ip.id": "0x00001f23",
1669 "ip.flags": "0x00000002",
1675 "ip.frag_offset": "0",
1678 "ip.checksum": "0x00009997",
1679 "ip.checksum.status": "2",
1680 "ip.src": "192.168.0.160",
1681 "ip.addr": "192.168.0.160",
1682 "ip.src_host": "192.168.0.160",
1683 "ip.host": "192.168.0.160",
1684 "ip.dst": "192.168.0.1",
1685 "ip.addr": "192.168.0.1",
1686 "ip.dst_host": "192.168.0.1",
1687 "ip.host": "192.168.0.1",
1688 "Source GeoIP: Unknown": "",
1689 "Destination GeoIP: Unknown": ""
1692 "udp.srcport": "40021",
1693 "udp.dstport": "53",
1694 "udp.port": "40021",
1697 "udp.checksum": "0x00003f5c",
1698 "udp.checksum.status": "2",
1702 "dns.response_in": "1895",
1703 "dns.id": "0x0000048c",
1704 "dns.flags": "0x00000100",
1706 "dns.flags.response": "0",
1707 "dns.flags.opcode": "0",
1708 "dns.flags.truncated": "0",
1709 "dns.flags.recdesired": "1",
1711 "dns.flags.checkdisable": "0"
1713 "dns.count.queries": "1",
1714 "dns.count.answers": "0",
1715 "dns.count.auth_rr": "0",
1716 "dns.count.add_rr": "0",
1718 "dcp.cpp.philips.com: type A, class IN": {
1719 "dns.qry.name": "dcp.cpp.philips.com",
1720 "dns.qry.name.len": "19",
1721 "dns.count.labels": "4",
1722 "dns.qry.type": "1",
1723 "dns.qry.class": "0x00000001"
1732 "_index": "packets-2017-10-26",
1733 "_type": "pcap_file",
1738 "frame.encap_type": "1",
1739 "frame.time": "Oct 19, 2017 17:33:23.472192000 PDT",
1740 "frame.offset_shift": "0.000000000",
1741 "frame.time_epoch": "1508459603.472192000",
1742 "frame.time_delta": "0.000508000",
1743 "frame.time_delta_displayed": "0.000508000",
1744 "frame.time_relative": "1891.066988000",
1745 "frame.number": "1895",
1747 "frame.cap_len": "95",
1748 "frame.marked": "0",
1749 "frame.ignored": "0",
1750 "frame.protocols": "eth:ethertype:ip:udp:dns",
1751 "frame.coloring_rule.name": "UDP",
1752 "frame.coloring_rule.string": "udp"
1755 "eth.dst": "00:17:88:69:ee:e4",
1757 "eth.dst_resolved": "PhilipsL_69:ee:e4",
1758 "eth.addr": "00:17:88:69:ee:e4",
1759 "eth.addr_resolved": "PhilipsL_69:ee:e4",
1763 "eth.src": "b0:b9:8a:73:69:8e",
1765 "eth.src_resolved": "Netgear_73:69:8e",
1766 "eth.addr": "b0:b9:8a:73:69:8e",
1767 "eth.addr_resolved": "Netgear_73:69:8e",
1771 "eth.type": "0x00000800"
1776 "ip.dsfield": "0x00000000",
1777 "ip.dsfield_tree": {
1778 "ip.dsfield.dscp": "0",
1779 "ip.dsfield.ecn": "0"
1782 "ip.id": "0x00002b77",
1783 "ip.flags": "0x00000002",
1789 "ip.frag_offset": "0",
1792 "ip.checksum": "0x00008d33",
1793 "ip.checksum.status": "2",
1794 "ip.src": "192.168.0.1",
1795 "ip.addr": "192.168.0.1",
1796 "ip.src_host": "192.168.0.1",
1797 "ip.host": "192.168.0.1",
1798 "ip.dst": "192.168.0.160",
1799 "ip.addr": "192.168.0.160",
1800 "ip.dst_host": "192.168.0.160",
1801 "ip.host": "192.168.0.160",
1802 "Source GeoIP: Unknown": "",
1803 "Destination GeoIP: Unknown": ""
1806 "udp.srcport": "53",
1807 "udp.dstport": "40021",
1809 "udp.port": "40021",
1811 "udp.checksum": "0x00008240",
1812 "udp.checksum.status": "2",
1816 "dns.response_to": "1894",
1817 "dns.time": "0.000508000",
1818 "dns.id": "0x0000048c",
1819 "dns.flags": "0x00008180",
1821 "dns.flags.response": "1",
1822 "dns.flags.opcode": "0",
1823 "dns.flags.authoritative": "0",
1824 "dns.flags.truncated": "0",
1825 "dns.flags.recdesired": "1",
1826 "dns.flags.recavail": "1",
1828 "dns.flags.authenticated": "0",
1829 "dns.flags.checkdisable": "0",
1830 "dns.flags.rcode": "0"
1832 "dns.count.queries": "1",
1833 "dns.count.answers": "1",
1834 "dns.count.auth_rr": "0",
1835 "dns.count.add_rr": "0",
1837 "dcp.cpp.philips.com: type A, class IN": {
1838 "dns.qry.name": "dcp.cpp.philips.com",
1839 "dns.qry.name.len": "19",
1840 "dns.count.labels": "4",
1841 "dns.qry.type": "1",
1842 "dns.qry.class": "0x00000001"
1846 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
1847 "dns.resp.name": "dcp.cpp.philips.com",
1848 "dns.resp.type": "1",
1849 "dns.resp.class": "0x00000001",
1850 "dns.resp.ttl": "644",
1851 "dns.resp.len": "4",
1852 "dns.a": "5.79.62.93"
1861 "_index": "packets-2017-10-26",
1862 "_type": "pcap_file",
1867 "frame.encap_type": "1",
1868 "frame.time": "Oct 19, 2017 17:37:51.689099000 PDT",
1869 "frame.offset_shift": "0.000000000",
1870 "frame.time_epoch": "1508459871.689099000",
1871 "frame.time_delta": "0.145237000",
1872 "frame.time_delta_displayed": "268.216907000",
1873 "frame.time_relative": "2159.283895000",
1874 "frame.number": "2153",
1876 "frame.cap_len": "76",
1877 "frame.marked": "0",
1878 "frame.ignored": "0",
1879 "frame.protocols": "eth:ethertype:ip:udp:dns",
1880 "frame.coloring_rule.name": "UDP",
1881 "frame.coloring_rule.string": "udp"
1884 "eth.dst": "b0:b9:8a:73:69:8e",
1886 "eth.dst_resolved": "Netgear_73:69:8e",
1887 "eth.addr": "b0:b9:8a:73:69:8e",
1888 "eth.addr_resolved": "Netgear_73:69:8e",
1892 "eth.src": "00:17:88:69:ee:e4",
1894 "eth.src_resolved": "PhilipsL_69:ee:e4",
1895 "eth.addr": "00:17:88:69:ee:e4",
1896 "eth.addr_resolved": "PhilipsL_69:ee:e4",
1900 "eth.type": "0x00000800"
1905 "ip.dsfield": "0x00000000",
1906 "ip.dsfield_tree": {
1907 "ip.dsfield.dscp": "0",
1908 "ip.dsfield.ecn": "0"
1911 "ip.id": "0x000053f4",
1912 "ip.flags": "0x00000002",
1918 "ip.frag_offset": "0",
1921 "ip.checksum": "0x000064c9",
1922 "ip.checksum.status": "2",
1923 "ip.src": "192.168.0.160",
1924 "ip.addr": "192.168.0.160",
1925 "ip.src_host": "192.168.0.160",
1926 "ip.host": "192.168.0.160",
1927 "ip.dst": "192.168.0.1",
1928 "ip.addr": "192.168.0.1",
1929 "ip.dst_host": "192.168.0.1",
1930 "ip.host": "192.168.0.1",
1931 "Source GeoIP: Unknown": "",
1932 "Destination GeoIP: Unknown": ""
1935 "udp.srcport": "49510",
1936 "udp.dstport": "53",
1937 "udp.port": "49510",
1940 "udp.checksum": "0x000097c4",
1941 "udp.checksum.status": "2",
1945 "dns.response_in": "2154",
1946 "dns.id": "0x0000048d",
1947 "dns.flags": "0x00000100",
1949 "dns.flags.response": "0",
1950 "dns.flags.opcode": "0",
1951 "dns.flags.truncated": "0",
1952 "dns.flags.recdesired": "1",
1954 "dns.flags.checkdisable": "0"
1956 "dns.count.queries": "1",
1957 "dns.count.answers": "0",
1958 "dns.count.auth_rr": "0",
1959 "dns.count.add_rr": "0",
1961 "www2.meethue.com: type A, class IN": {
1962 "dns.qry.name": "www2.meethue.com",
1963 "dns.qry.name.len": "16",
1964 "dns.count.labels": "3",
1965 "dns.qry.type": "1",
1966 "dns.qry.class": "0x00000001"
1975 "_index": "packets-2017-10-26",
1976 "_type": "pcap_file",
1981 "frame.encap_type": "1",
1982 "frame.time": "Oct 19, 2017 17:37:51.695550000 PDT",
1983 "frame.offset_shift": "0.000000000",
1984 "frame.time_epoch": "1508459871.695550000",
1985 "frame.time_delta": "0.006451000",
1986 "frame.time_delta_displayed": "0.006451000",
1987 "frame.time_relative": "2159.290346000",
1988 "frame.number": "2154",
1990 "frame.cap_len": "513",
1991 "frame.marked": "0",
1992 "frame.ignored": "0",
1993 "frame.protocols": "eth:ethertype:ip:udp:dns",
1994 "frame.coloring_rule.name": "UDP",
1995 "frame.coloring_rule.string": "udp"
1998 "eth.dst": "00:17:88:69:ee:e4",
2000 "eth.dst_resolved": "PhilipsL_69:ee:e4",
2001 "eth.addr": "00:17:88:69:ee:e4",
2002 "eth.addr_resolved": "PhilipsL_69:ee:e4",
2006 "eth.src": "b0:b9:8a:73:69:8e",
2008 "eth.src_resolved": "Netgear_73:69:8e",
2009 "eth.addr": "b0:b9:8a:73:69:8e",
2010 "eth.addr_resolved": "Netgear_73:69:8e",
2014 "eth.type": "0x00000800"
2019 "ip.dsfield": "0x00000000",
2020 "ip.dsfield_tree": {
2021 "ip.dsfield.dscp": "0",
2022 "ip.dsfield.ecn": "0"
2025 "ip.id": "0x0000851c",
2026 "ip.flags": "0x00000002",
2032 "ip.frag_offset": "0",
2035 "ip.checksum": "0x000031ec",
2036 "ip.checksum.status": "2",
2037 "ip.src": "192.168.0.1",
2038 "ip.addr": "192.168.0.1",
2039 "ip.src_host": "192.168.0.1",
2040 "ip.host": "192.168.0.1",
2041 "ip.dst": "192.168.0.160",
2042 "ip.addr": "192.168.0.160",
2043 "ip.dst_host": "192.168.0.160",
2044 "ip.host": "192.168.0.160",
2045 "Source GeoIP: Unknown": "",
2046 "Destination GeoIP: Unknown": ""
2049 "udp.srcport": "53",
2050 "udp.dstport": "49510",
2052 "udp.port": "49510",
2053 "udp.length": "479",
2054 "udp.checksum": "0x000083e2",
2055 "udp.checksum.status": "2",
2059 "dns.response_to": "2153",
2060 "dns.time": "0.006451000",
2061 "dns.id": "0x0000048d",
2062 "dns.flags": "0x00008180",
2064 "dns.flags.response": "1",
2065 "dns.flags.opcode": "0",
2066 "dns.flags.authoritative": "0",
2067 "dns.flags.truncated": "0",
2068 "dns.flags.recdesired": "1",
2069 "dns.flags.recavail": "1",
2071 "dns.flags.authenticated": "0",
2072 "dns.flags.checkdisable": "0",
2073 "dns.flags.rcode": "0"
2075 "dns.count.queries": "1",
2076 "dns.count.answers": "4",
2077 "dns.count.auth_rr": "9",
2078 "dns.count.add_rr": "9",
2080 "www2.meethue.com: type A, class IN": {
2081 "dns.qry.name": "www2.meethue.com",
2082 "dns.qry.name.len": "16",
2083 "dns.count.labels": "3",
2084 "dns.qry.type": "1",
2085 "dns.qry.class": "0x00000001"
2089 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
2090 "dns.resp.name": "www2.meethue.com",
2091 "dns.resp.type": "5",
2092 "dns.resp.class": "0x00000001",
2093 "dns.resp.ttl": "141",
2094 "dns.resp.len": "41",
2095 "dns.cname": "brands.lighting.philips.com.edgekey.net"
2097 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
2098 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
2099 "dns.resp.type": "5",
2100 "dns.resp.class": "0x00000001",
2101 "dns.resp.ttl": "13111",
2102 "dns.resp.len": "22",
2103 "dns.cname": "e15361.b.akamaiedge.net"
2105 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
2106 "dns.resp.name": "e15361.b.akamaiedge.net",
2107 "dns.resp.type": "1",
2108 "dns.resp.class": "0x00000001",
2109 "dns.resp.ttl": "20",
2110 "dns.resp.len": "4",
2111 "dns.a": "173.223.52.125"
2113 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.113": {
2114 "dns.resp.name": "e15361.b.akamaiedge.net",
2115 "dns.resp.type": "1",
2116 "dns.resp.class": "0x00000001",
2117 "dns.resp.ttl": "20",
2118 "dns.resp.len": "4",
2119 "dns.a": "173.223.52.113"
2122 "Authoritative nameservers": {
2123 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
2124 "dns.resp.name": "b.akamaiedge.net",
2125 "dns.resp.type": "2",
2126 "dns.resp.class": "0x00000001",
2127 "dns.resp.ttl": "2774",
2128 "dns.resp.len": "6",
2129 "dns.ns": "n0b.akamaiedge.net"
2131 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
2132 "dns.resp.name": "b.akamaiedge.net",
2133 "dns.resp.type": "2",
2134 "dns.resp.class": "0x00000001",
2135 "dns.resp.ttl": "2774",
2136 "dns.resp.len": "6",
2137 "dns.ns": "n1b.akamaiedge.net"
2139 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
2140 "dns.resp.name": "b.akamaiedge.net",
2141 "dns.resp.type": "2",
2142 "dns.resp.class": "0x00000001",
2143 "dns.resp.ttl": "2774",
2144 "dns.resp.len": "6",
2145 "dns.ns": "n4b.akamaiedge.net"
2147 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
2148 "dns.resp.name": "b.akamaiedge.net",
2149 "dns.resp.type": "2",
2150 "dns.resp.class": "0x00000001",
2151 "dns.resp.ttl": "2774",
2152 "dns.resp.len": "6",
2153 "dns.ns": "n5b.akamaiedge.net"
2155 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
2156 "dns.resp.name": "b.akamaiedge.net",
2157 "dns.resp.type": "2",
2158 "dns.resp.class": "0x00000001",
2159 "dns.resp.ttl": "2774",
2160 "dns.resp.len": "6",
2161 "dns.ns": "a0b.akamaiedge.net"
2163 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
2164 "dns.resp.name": "b.akamaiedge.net",
2165 "dns.resp.type": "2",
2166 "dns.resp.class": "0x00000001",
2167 "dns.resp.ttl": "2774",
2168 "dns.resp.len": "6",
2169 "dns.ns": "n3b.akamaiedge.net"
2171 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
2172 "dns.resp.name": "b.akamaiedge.net",
2173 "dns.resp.type": "2",
2174 "dns.resp.class": "0x00000001",
2175 "dns.resp.ttl": "2774",
2176 "dns.resp.len": "6",
2177 "dns.ns": "n2b.akamaiedge.net"
2179 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
2180 "dns.resp.name": "b.akamaiedge.net",
2181 "dns.resp.type": "2",
2182 "dns.resp.class": "0x00000001",
2183 "dns.resp.ttl": "2774",
2184 "dns.resp.len": "6",
2185 "dns.ns": "n6b.akamaiedge.net"
2187 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
2188 "dns.resp.name": "b.akamaiedge.net",
2189 "dns.resp.type": "2",
2190 "dns.resp.class": "0x00000001",
2191 "dns.resp.ttl": "2774",
2192 "dns.resp.len": "6",
2193 "dns.ns": "n7b.akamaiedge.net"
2196 "Additional records": {
2197 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
2198 "dns.resp.name": "n0b.akamaiedge.net",
2199 "dns.resp.type": "1",
2200 "dns.resp.class": "0x00000001",
2201 "dns.resp.ttl": "294",
2202 "dns.resp.len": "4",
2203 "dns.a": "88.221.81.192"
2205 "n1b.akamaiedge.net: type A, class IN, addr 165.254.134.240": {
2206 "dns.resp.name": "n1b.akamaiedge.net",
2207 "dns.resp.type": "1",
2208 "dns.resp.class": "0x00000001",
2209 "dns.resp.ttl": "4838",
2210 "dns.resp.len": "4",
2211 "dns.a": "165.254.134.240"
2213 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
2214 "dns.resp.name": "n2b.akamaiedge.net",
2215 "dns.resp.type": "1",
2216 "dns.resp.class": "0x00000001",
2217 "dns.resp.ttl": "7614",
2218 "dns.resp.len": "4",
2219 "dns.a": "165.254.16.89"
2221 "n3b.akamaiedge.net: type A, class IN, addr 165.254.16.90": {
2222 "dns.resp.name": "n3b.akamaiedge.net",
2223 "dns.resp.type": "1",
2224 "dns.resp.class": "0x00000001",
2225 "dns.resp.ttl": "3676",
2226 "dns.resp.len": "4",
2227 "dns.a": "165.254.16.90"
2229 "n4b.akamaiedge.net: type A, class IN, addr 165.254.16.94": {
2230 "dns.resp.name": "n4b.akamaiedge.net",
2231 "dns.resp.type": "1",
2232 "dns.resp.class": "0x00000001",
2233 "dns.resp.ttl": "4084",
2234 "dns.resp.len": "4",
2235 "dns.a": "165.254.16.94"
2237 "n5b.akamaiedge.net: type A, class IN, addr 165.254.134.244": {
2238 "dns.resp.name": "n5b.akamaiedge.net",
2239 "dns.resp.type": "1",
2240 "dns.resp.class": "0x00000001",
2241 "dns.resp.ttl": "4641",
2242 "dns.resp.len": "4",
2243 "dns.a": "165.254.134.244"
2245 "n6b.akamaiedge.net: type A, class IN, addr 165.254.134.246": {
2246 "dns.resp.name": "n6b.akamaiedge.net",
2247 "dns.resp.type": "1",
2248 "dns.resp.class": "0x00000001",
2249 "dns.resp.ttl": "218",
2250 "dns.resp.len": "4",
2251 "dns.a": "165.254.134.246"
2253 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.232": {
2254 "dns.resp.name": "n7b.akamaiedge.net",
2255 "dns.resp.type": "1",
2256 "dns.resp.class": "0x00000001",
2257 "dns.resp.ttl": "2322",
2258 "dns.resp.len": "4",
2259 "dns.a": "165.254.134.232"
2261 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
2262 "dns.resp.name": "a0b.akamaiedge.net",
2263 "dns.resp.type": "28",
2264 "dns.resp.class": "0x00000001",
2265 "dns.resp.ttl": "4774",
2266 "dns.resp.len": "16",
2267 "dns.aaaa": "2600:1480:e800::c0"
2276 "_index": "packets-2017-10-26",
2277 "_type": "pcap_file",
2282 "frame.encap_type": "1",
2283 "frame.time": "Oct 19, 2017 17:52:51.705423000 PDT",
2284 "frame.offset_shift": "0.000000000",
2285 "frame.time_epoch": "1508460771.705423000",
2286 "frame.time_delta": "3.937809000",
2287 "frame.time_delta_displayed": "900.009873000",
2288 "frame.time_relative": "3059.300219000",
2289 "frame.number": "2958",
2291 "frame.cap_len": "76",
2292 "frame.marked": "0",
2293 "frame.ignored": "0",
2294 "frame.protocols": "eth:ethertype:ip:udp:dns",
2295 "frame.coloring_rule.name": "UDP",
2296 "frame.coloring_rule.string": "udp"
2299 "eth.dst": "b0:b9:8a:73:69:8e",
2301 "eth.dst_resolved": "Netgear_73:69:8e",
2302 "eth.addr": "b0:b9:8a:73:69:8e",
2303 "eth.addr_resolved": "Netgear_73:69:8e",
2307 "eth.src": "00:17:88:69:ee:e4",
2309 "eth.src_resolved": "PhilipsL_69:ee:e4",
2310 "eth.addr": "00:17:88:69:ee:e4",
2311 "eth.addr_resolved": "PhilipsL_69:ee:e4",
2315 "eth.type": "0x00000800"
2320 "ip.dsfield": "0x00000000",
2321 "ip.dsfield_tree": {
2322 "ip.dsfield.dscp": "0",
2323 "ip.dsfield.ecn": "0"
2326 "ip.id": "0x0000b28e",
2327 "ip.flags": "0x00000002",
2333 "ip.frag_offset": "0",
2336 "ip.checksum": "0x0000062f",
2337 "ip.checksum.status": "2",
2338 "ip.src": "192.168.0.160",
2339 "ip.addr": "192.168.0.160",
2340 "ip.src_host": "192.168.0.160",
2341 "ip.host": "192.168.0.160",
2342 "ip.dst": "192.168.0.1",
2343 "ip.addr": "192.168.0.1",
2344 "ip.dst_host": "192.168.0.1",
2345 "ip.host": "192.168.0.1",
2346 "Source GeoIP: Unknown": "",
2347 "Destination GeoIP: Unknown": ""
2350 "udp.srcport": "59344",
2351 "udp.dstport": "53",
2352 "udp.port": "59344",
2355 "udp.checksum": "0x00007159",
2356 "udp.checksum.status": "2",
2360 "dns.response_in": "2959",
2361 "dns.id": "0x0000048e",
2362 "dns.flags": "0x00000100",
2364 "dns.flags.response": "0",
2365 "dns.flags.opcode": "0",
2366 "dns.flags.truncated": "0",
2367 "dns.flags.recdesired": "1",
2369 "dns.flags.checkdisable": "0"
2371 "dns.count.queries": "1",
2372 "dns.count.answers": "0",
2373 "dns.count.auth_rr": "0",
2374 "dns.count.add_rr": "0",
2376 "www2.meethue.com: type A, class IN": {
2377 "dns.qry.name": "www2.meethue.com",
2378 "dns.qry.name.len": "16",
2379 "dns.count.labels": "3",
2380 "dns.qry.type": "1",
2381 "dns.qry.class": "0x00000001"
2390 "_index": "packets-2017-10-26",
2391 "_type": "pcap_file",
2396 "frame.encap_type": "1",
2397 "frame.time": "Oct 19, 2017 17:52:51.715857000 PDT",
2398 "frame.offset_shift": "0.000000000",
2399 "frame.time_epoch": "1508460771.715857000",
2400 "frame.time_delta": "0.010434000",
2401 "frame.time_delta_displayed": "0.010434000",
2402 "frame.time_relative": "3059.310653000",
2403 "frame.number": "2959",
2405 "frame.cap_len": "513",
2406 "frame.marked": "0",
2407 "frame.ignored": "0",
2408 "frame.protocols": "eth:ethertype:ip:udp:dns",
2409 "frame.coloring_rule.name": "UDP",
2410 "frame.coloring_rule.string": "udp"
2413 "eth.dst": "00:17:88:69:ee:e4",
2415 "eth.dst_resolved": "PhilipsL_69:ee:e4",
2416 "eth.addr": "00:17:88:69:ee:e4",
2417 "eth.addr_resolved": "PhilipsL_69:ee:e4",
2421 "eth.src": "b0:b9:8a:73:69:8e",
2423 "eth.src_resolved": "Netgear_73:69:8e",
2424 "eth.addr": "b0:b9:8a:73:69:8e",
2425 "eth.addr_resolved": "Netgear_73:69:8e",
2429 "eth.type": "0x00000800"
2434 "ip.dsfield": "0x00000000",
2435 "ip.dsfield_tree": {
2436 "ip.dsfield.dscp": "0",
2437 "ip.dsfield.ecn": "0"
2440 "ip.id": "0x0000ca5c",
2441 "ip.flags": "0x00000002",
2447 "ip.frag_offset": "0",
2450 "ip.checksum": "0x0000ecab",
2451 "ip.checksum.status": "2",
2452 "ip.src": "192.168.0.1",
2453 "ip.addr": "192.168.0.1",
2454 "ip.src_host": "192.168.0.1",
2455 "ip.host": "192.168.0.1",
2456 "ip.dst": "192.168.0.160",
2457 "ip.addr": "192.168.0.160",
2458 "ip.dst_host": "192.168.0.160",
2459 "ip.host": "192.168.0.160",
2460 "Source GeoIP: Unknown": "",
2461 "Destination GeoIP: Unknown": ""
2464 "udp.srcport": "53",
2465 "udp.dstport": "59344",
2467 "udp.port": "59344",
2468 "udp.length": "479",
2469 "udp.checksum": "0x000083e2",
2470 "udp.checksum.status": "2",
2474 "dns.response_to": "2958",
2475 "dns.time": "0.010434000",
2476 "dns.id": "0x0000048e",
2477 "dns.flags": "0x00008180",
2479 "dns.flags.response": "1",
2480 "dns.flags.opcode": "0",
2481 "dns.flags.authoritative": "0",
2482 "dns.flags.truncated": "0",
2483 "dns.flags.recdesired": "1",
2484 "dns.flags.recavail": "1",
2486 "dns.flags.authenticated": "0",
2487 "dns.flags.checkdisable": "0",
2488 "dns.flags.rcode": "0"
2490 "dns.count.queries": "1",
2491 "dns.count.answers": "4",
2492 "dns.count.auth_rr": "9",
2493 "dns.count.add_rr": "9",
2495 "www2.meethue.com: type A, class IN": {
2496 "dns.qry.name": "www2.meethue.com",
2497 "dns.qry.name.len": "16",
2498 "dns.count.labels": "3",
2499 "dns.qry.type": "1",
2500 "dns.qry.class": "0x00000001"
2504 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
2505 "dns.resp.name": "www2.meethue.com",
2506 "dns.resp.type": "5",
2507 "dns.resp.class": "0x00000001",
2508 "dns.resp.ttl": "116",
2509 "dns.resp.len": "41",
2510 "dns.cname": "brands.lighting.philips.com.edgekey.net"
2512 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
2513 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
2514 "dns.resp.type": "5",
2515 "dns.resp.class": "0x00000001",
2516 "dns.resp.ttl": "10613",
2517 "dns.resp.len": "22",
2518 "dns.cname": "e15361.b.akamaiedge.net"
2520 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.113": {
2521 "dns.resp.name": "e15361.b.akamaiedge.net",
2522 "dns.resp.type": "1",
2523 "dns.resp.class": "0x00000001",
2524 "dns.resp.ttl": "20",
2525 "dns.resp.len": "4",
2526 "dns.a": "173.223.52.113"
2528 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
2529 "dns.resp.name": "e15361.b.akamaiedge.net",
2530 "dns.resp.type": "1",
2531 "dns.resp.class": "0x00000001",
2532 "dns.resp.ttl": "20",
2533 "dns.resp.len": "4",
2534 "dns.a": "173.223.52.125"
2537 "Authoritative nameservers": {
2538 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
2539 "dns.resp.name": "b.akamaiedge.net",
2540 "dns.resp.type": "2",
2541 "dns.resp.class": "0x00000001",
2542 "dns.resp.ttl": "2787",
2543 "dns.resp.len": "6",
2544 "dns.ns": "n5b.akamaiedge.net"
2546 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
2547 "dns.resp.name": "b.akamaiedge.net",
2548 "dns.resp.type": "2",
2549 "dns.resp.class": "0x00000001",
2550 "dns.resp.ttl": "2787",
2551 "dns.resp.len": "6",
2552 "dns.ns": "a0b.akamaiedge.net"
2554 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
2555 "dns.resp.name": "b.akamaiedge.net",
2556 "dns.resp.type": "2",
2557 "dns.resp.class": "0x00000001",
2558 "dns.resp.ttl": "2787",
2559 "dns.resp.len": "6",
2560 "dns.ns": "n4b.akamaiedge.net"
2562 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
2563 "dns.resp.name": "b.akamaiedge.net",
2564 "dns.resp.type": "2",
2565 "dns.resp.class": "0x00000001",
2566 "dns.resp.ttl": "2787",
2567 "dns.resp.len": "6",
2568 "dns.ns": "n1b.akamaiedge.net"
2570 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
2571 "dns.resp.name": "b.akamaiedge.net",
2572 "dns.resp.type": "2",
2573 "dns.resp.class": "0x00000001",
2574 "dns.resp.ttl": "2787",
2575 "dns.resp.len": "6",
2576 "dns.ns": "n2b.akamaiedge.net"
2578 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
2579 "dns.resp.name": "b.akamaiedge.net",
2580 "dns.resp.type": "2",
2581 "dns.resp.class": "0x00000001",
2582 "dns.resp.ttl": "2787",
2583 "dns.resp.len": "6",
2584 "dns.ns": "n0b.akamaiedge.net"
2586 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
2587 "dns.resp.name": "b.akamaiedge.net",
2588 "dns.resp.type": "2",
2589 "dns.resp.class": "0x00000001",
2590 "dns.resp.ttl": "2787",
2591 "dns.resp.len": "6",
2592 "dns.ns": "n3b.akamaiedge.net"
2594 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
2595 "dns.resp.name": "b.akamaiedge.net",
2596 "dns.resp.type": "2",
2597 "dns.resp.class": "0x00000001",
2598 "dns.resp.ttl": "2787",
2599 "dns.resp.len": "6",
2600 "dns.ns": "n7b.akamaiedge.net"
2602 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
2603 "dns.resp.name": "b.akamaiedge.net",
2604 "dns.resp.type": "2",
2605 "dns.resp.class": "0x00000001",
2606 "dns.resp.ttl": "2787",
2607 "dns.resp.len": "6",
2608 "dns.ns": "n6b.akamaiedge.net"
2611 "Additional records": {
2612 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
2613 "dns.resp.name": "n0b.akamaiedge.net",
2614 "dns.resp.type": "1",
2615 "dns.resp.class": "0x00000001",
2616 "dns.resp.ttl": "1095",
2617 "dns.resp.len": "4",
2618 "dns.a": "88.221.81.192"
2620 "n1b.akamaiedge.net: type A, class IN, addr 184.51.200.159": {
2621 "dns.resp.name": "n1b.akamaiedge.net",
2622 "dns.resp.type": "1",
2623 "dns.resp.class": "0x00000001",
2624 "dns.resp.ttl": "7816",
2625 "dns.resp.len": "4",
2626 "dns.a": "184.51.200.159"
2628 "n2b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
2629 "dns.resp.name": "n2b.akamaiedge.net",
2630 "dns.resp.type": "1",
2631 "dns.resp.class": "0x00000001",
2632 "dns.resp.ttl": "316",
2633 "dns.resp.len": "4",
2634 "dns.a": "173.197.192.229"
2636 "n3b.akamaiedge.net: type A, class IN, addr 165.254.134.241": {
2637 "dns.resp.name": "n3b.akamaiedge.net",
2638 "dns.resp.type": "1",
2639 "dns.resp.class": "0x00000001",
2640 "dns.resp.ttl": "500",
2641 "dns.resp.len": "4",
2642 "dns.a": "165.254.134.241"
2644 "n4b.akamaiedge.net: type A, class IN, addr 165.254.134.244": {
2645 "dns.resp.name": "n4b.akamaiedge.net",
2646 "dns.resp.type": "1",
2647 "dns.resp.class": "0x00000001",
2648 "dns.resp.ttl": "5409",
2649 "dns.resp.len": "4",
2650 "dns.a": "165.254.134.244"
2652 "n5b.akamaiedge.net: type A, class IN, addr 204.1.137.33": {
2653 "dns.resp.name": "n5b.akamaiedge.net",
2654 "dns.resp.type": "1",
2655 "dns.resp.class": "0x00000001",
2656 "dns.resp.ttl": "1157",
2657 "dns.resp.len": "4",
2658 "dns.a": "204.1.137.33"
2660 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.95": {
2661 "dns.resp.name": "n6b.akamaiedge.net",
2662 "dns.resp.type": "1",
2663 "dns.resp.class": "0x00000001",
2664 "dns.resp.ttl": "954",
2665 "dns.resp.len": "4",
2666 "dns.a": "165.254.16.95"
2668 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.239": {
2669 "dns.resp.name": "n7b.akamaiedge.net",
2670 "dns.resp.type": "1",
2671 "dns.resp.class": "0x00000001",
2672 "dns.resp.ttl": "1018",
2673 "dns.resp.len": "4",
2674 "dns.a": "165.254.134.239"
2676 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
2677 "dns.resp.name": "a0b.akamaiedge.net",
2678 "dns.resp.type": "28",
2679 "dns.resp.class": "0x00000001",
2680 "dns.resp.ttl": "5792",
2681 "dns.resp.len": "16",
2682 "dns.aaaa": "2600:1480:e800::c0"
2691 "_index": "packets-2017-10-26",
2692 "_type": "pcap_file",
2697 "frame.encap_type": "1",
2698 "frame.time": "Oct 19, 2017 18:07:51.725149000 PDT",
2699 "frame.offset_shift": "0.000000000",
2700 "frame.time_epoch": "1508461671.725149000",
2701 "frame.time_delta": "2.951813000",
2702 "frame.time_delta_displayed": "900.009292000",
2703 "frame.time_relative": "3959.319945000",
2704 "frame.number": "3816",
2706 "frame.cap_len": "76",
2707 "frame.marked": "0",
2708 "frame.ignored": "0",
2709 "frame.protocols": "eth:ethertype:ip:udp:dns",
2710 "frame.coloring_rule.name": "UDP",
2711 "frame.coloring_rule.string": "udp"
2714 "eth.dst": "b0:b9:8a:73:69:8e",
2716 "eth.dst_resolved": "Netgear_73:69:8e",
2717 "eth.addr": "b0:b9:8a:73:69:8e",
2718 "eth.addr_resolved": "Netgear_73:69:8e",
2722 "eth.src": "00:17:88:69:ee:e4",
2724 "eth.src_resolved": "PhilipsL_69:ee:e4",
2725 "eth.addr": "00:17:88:69:ee:e4",
2726 "eth.addr_resolved": "PhilipsL_69:ee:e4",
2730 "eth.type": "0x00000800"
2735 "ip.dsfield": "0x00000000",
2736 "ip.dsfield_tree": {
2737 "ip.dsfield.dscp": "0",
2738 "ip.dsfield.ecn": "0"
2741 "ip.id": "0x0000ba5a",
2742 "ip.flags": "0x00000002",
2748 "ip.frag_offset": "0",
2751 "ip.checksum": "0x0000fe62",
2752 "ip.checksum.status": "2",
2753 "ip.src": "192.168.0.160",
2754 "ip.addr": "192.168.0.160",
2755 "ip.src_host": "192.168.0.160",
2756 "ip.host": "192.168.0.160",
2757 "ip.dst": "192.168.0.1",
2758 "ip.addr": "192.168.0.1",
2759 "ip.dst_host": "192.168.0.1",
2760 "ip.host": "192.168.0.1",
2761 "Source GeoIP: Unknown": "",
2762 "Destination GeoIP: Unknown": ""
2765 "udp.srcport": "34709",
2766 "udp.dstport": "53",
2767 "udp.port": "34709",
2770 "udp.checksum": "0x0000d193",
2771 "udp.checksum.status": "2",
2775 "dns.response_in": "3817",
2776 "dns.id": "0x0000048f",
2777 "dns.flags": "0x00000100",
2779 "dns.flags.response": "0",
2780 "dns.flags.opcode": "0",
2781 "dns.flags.truncated": "0",
2782 "dns.flags.recdesired": "1",
2784 "dns.flags.checkdisable": "0"
2786 "dns.count.queries": "1",
2787 "dns.count.answers": "0",
2788 "dns.count.auth_rr": "0",
2789 "dns.count.add_rr": "0",
2791 "www2.meethue.com: type A, class IN": {
2792 "dns.qry.name": "www2.meethue.com",
2793 "dns.qry.name.len": "16",
2794 "dns.count.labels": "3",
2795 "dns.qry.type": "1",
2796 "dns.qry.class": "0x00000001"
2805 "_index": "packets-2017-10-26",
2806 "_type": "pcap_file",
2811 "frame.encap_type": "1",
2812 "frame.time": "Oct 19, 2017 18:07:51.735281000 PDT",
2813 "frame.offset_shift": "0.000000000",
2814 "frame.time_epoch": "1508461671.735281000",
2815 "frame.time_delta": "0.010132000",
2816 "frame.time_delta_displayed": "0.010132000",
2817 "frame.time_relative": "3959.330077000",
2818 "frame.number": "3817",
2820 "frame.cap_len": "513",
2821 "frame.marked": "0",
2822 "frame.ignored": "0",
2823 "frame.protocols": "eth:ethertype:ip:udp:dns",
2824 "frame.coloring_rule.name": "UDP",
2825 "frame.coloring_rule.string": "udp"
2828 "eth.dst": "00:17:88:69:ee:e4",
2830 "eth.dst_resolved": "PhilipsL_69:ee:e4",
2831 "eth.addr": "00:17:88:69:ee:e4",
2832 "eth.addr_resolved": "PhilipsL_69:ee:e4",
2836 "eth.src": "b0:b9:8a:73:69:8e",
2838 "eth.src_resolved": "Netgear_73:69:8e",
2839 "eth.addr": "b0:b9:8a:73:69:8e",
2840 "eth.addr_resolved": "Netgear_73:69:8e",
2844 "eth.type": "0x00000800"
2849 "ip.dsfield": "0x00000000",
2850 "ip.dsfield_tree": {
2851 "ip.dsfield.dscp": "0",
2852 "ip.dsfield.ecn": "0"
2855 "ip.id": "0x00004a90",
2856 "ip.flags": "0x00000002",
2862 "ip.frag_offset": "0",
2865 "ip.checksum": "0x00006c78",
2866 "ip.checksum.status": "2",
2867 "ip.src": "192.168.0.1",
2868 "ip.addr": "192.168.0.1",
2869 "ip.src_host": "192.168.0.1",
2870 "ip.host": "192.168.0.1",
2871 "ip.dst": "192.168.0.160",
2872 "ip.addr": "192.168.0.160",
2873 "ip.dst_host": "192.168.0.160",
2874 "ip.host": "192.168.0.160",
2875 "Source GeoIP: Unknown": "",
2876 "Destination GeoIP: Unknown": ""
2879 "udp.srcport": "53",
2880 "udp.dstport": "34709",
2882 "udp.port": "34709",
2883 "udp.length": "479",
2884 "udp.checksum": "0x000083e2",
2885 "udp.checksum.status": "2",
2889 "dns.response_to": "3816",
2890 "dns.time": "0.010132000",
2891 "dns.id": "0x0000048f",
2892 "dns.flags": "0x00008180",
2894 "dns.flags.response": "1",
2895 "dns.flags.opcode": "0",
2896 "dns.flags.authoritative": "0",
2897 "dns.flags.truncated": "0",
2898 "dns.flags.recdesired": "1",
2899 "dns.flags.recavail": "1",
2901 "dns.flags.authenticated": "0",
2902 "dns.flags.checkdisable": "0",
2903 "dns.flags.rcode": "0"
2905 "dns.count.queries": "1",
2906 "dns.count.answers": "4",
2907 "dns.count.auth_rr": "9",
2908 "dns.count.add_rr": "9",
2910 "www2.meethue.com: type A, class IN": {
2911 "dns.qry.name": "www2.meethue.com",
2912 "dns.qry.name.len": "16",
2913 "dns.count.labels": "3",
2914 "dns.qry.type": "1",
2915 "dns.qry.class": "0x00000001"
2919 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
2920 "dns.resp.name": "www2.meethue.com",
2921 "dns.resp.type": "5",
2922 "dns.resp.class": "0x00000001",
2923 "dns.resp.ttl": "142",
2924 "dns.resp.len": "41",
2925 "dns.cname": "brands.lighting.philips.com.edgekey.net"
2927 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
2928 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
2929 "dns.resp.type": "5",
2930 "dns.resp.class": "0x00000001",
2931 "dns.resp.ttl": "11311",
2932 "dns.resp.len": "22",
2933 "dns.cname": "e15361.b.akamaiedge.net"
2935 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
2936 "dns.resp.name": "e15361.b.akamaiedge.net",
2937 "dns.resp.type": "1",
2938 "dns.resp.class": "0x00000001",
2939 "dns.resp.ttl": "20",
2940 "dns.resp.len": "4",
2941 "dns.a": "173.223.52.125"
2943 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.113": {
2944 "dns.resp.name": "e15361.b.akamaiedge.net",
2945 "dns.resp.type": "1",
2946 "dns.resp.class": "0x00000001",
2947 "dns.resp.ttl": "20",
2948 "dns.resp.len": "4",
2949 "dns.a": "173.223.52.113"
2952 "Authoritative nameservers": {
2953 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
2954 "dns.resp.name": "b.akamaiedge.net",
2955 "dns.resp.type": "2",
2956 "dns.resp.class": "0x00000001",
2957 "dns.resp.ttl": "974",
2958 "dns.resp.len": "6",
2959 "dns.ns": "a0b.akamaiedge.net"
2961 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
2962 "dns.resp.name": "b.akamaiedge.net",
2963 "dns.resp.type": "2",
2964 "dns.resp.class": "0x00000001",
2965 "dns.resp.ttl": "974",
2966 "dns.resp.len": "6",
2967 "dns.ns": "n7b.akamaiedge.net"
2969 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
2970 "dns.resp.name": "b.akamaiedge.net",
2971 "dns.resp.type": "2",
2972 "dns.resp.class": "0x00000001",
2973 "dns.resp.ttl": "974",
2974 "dns.resp.len": "6",
2975 "dns.ns": "n4b.akamaiedge.net"
2977 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
2978 "dns.resp.name": "b.akamaiedge.net",
2979 "dns.resp.type": "2",
2980 "dns.resp.class": "0x00000001",
2981 "dns.resp.ttl": "974",
2982 "dns.resp.len": "6",
2983 "dns.ns": "n2b.akamaiedge.net"
2985 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
2986 "dns.resp.name": "b.akamaiedge.net",
2987 "dns.resp.type": "2",
2988 "dns.resp.class": "0x00000001",
2989 "dns.resp.ttl": "974",
2990 "dns.resp.len": "6",
2991 "dns.ns": "n0b.akamaiedge.net"
2993 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
2994 "dns.resp.name": "b.akamaiedge.net",
2995 "dns.resp.type": "2",
2996 "dns.resp.class": "0x00000001",
2997 "dns.resp.ttl": "974",
2998 "dns.resp.len": "6",
2999 "dns.ns": "n1b.akamaiedge.net"
3001 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
3002 "dns.resp.name": "b.akamaiedge.net",
3003 "dns.resp.type": "2",
3004 "dns.resp.class": "0x00000001",
3005 "dns.resp.ttl": "974",
3006 "dns.resp.len": "6",
3007 "dns.ns": "n6b.akamaiedge.net"
3009 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
3010 "dns.resp.name": "b.akamaiedge.net",
3011 "dns.resp.type": "2",
3012 "dns.resp.class": "0x00000001",
3013 "dns.resp.ttl": "974",
3014 "dns.resp.len": "6",
3015 "dns.ns": "n3b.akamaiedge.net"
3017 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
3018 "dns.resp.name": "b.akamaiedge.net",
3019 "dns.resp.type": "2",
3020 "dns.resp.class": "0x00000001",
3021 "dns.resp.ttl": "974",
3022 "dns.resp.len": "6",
3023 "dns.ns": "n5b.akamaiedge.net"
3026 "Additional records": {
3027 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
3028 "dns.resp.name": "n0b.akamaiedge.net",
3029 "dns.resp.type": "1",
3030 "dns.resp.class": "0x00000001",
3031 "dns.resp.ttl": "2496",
3032 "dns.resp.len": "4",
3033 "dns.a": "88.221.81.192"
3035 "n1b.akamaiedge.net: type A, class IN, addr 165.254.134.240": {
3036 "dns.resp.name": "n1b.akamaiedge.net",
3037 "dns.resp.type": "1",
3038 "dns.resp.class": "0x00000001",
3039 "dns.resp.ttl": "3038",
3040 "dns.resp.len": "4",
3041 "dns.a": "165.254.134.240"
3043 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
3044 "dns.resp.name": "n2b.akamaiedge.net",
3045 "dns.resp.type": "1",
3046 "dns.resp.class": "0x00000001",
3047 "dns.resp.ttl": "5814",
3048 "dns.resp.len": "4",
3049 "dns.a": "165.254.16.89"
3051 "n3b.akamaiedge.net: type A, class IN, addr 165.254.16.90": {
3052 "dns.resp.name": "n3b.akamaiedge.net",
3053 "dns.resp.type": "1",
3054 "dns.resp.class": "0x00000001",
3055 "dns.resp.ttl": "1876",
3056 "dns.resp.len": "4",
3057 "dns.a": "165.254.16.90"
3059 "n4b.akamaiedge.net: type A, class IN, addr 165.254.16.94": {
3060 "dns.resp.name": "n4b.akamaiedge.net",
3061 "dns.resp.type": "1",
3062 "dns.resp.class": "0x00000001",
3063 "dns.resp.ttl": "2284",
3064 "dns.resp.len": "4",
3065 "dns.a": "165.254.16.94"
3067 "n5b.akamaiedge.net: type A, class IN, addr 165.254.134.244": {
3068 "dns.resp.name": "n5b.akamaiedge.net",
3069 "dns.resp.type": "1",
3070 "dns.resp.class": "0x00000001",
3071 "dns.resp.ttl": "2841",
3072 "dns.resp.len": "4",
3073 "dns.a": "165.254.134.244"
3075 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.93": {
3076 "dns.resp.name": "n6b.akamaiedge.net",
3077 "dns.resp.type": "1",
3078 "dns.resp.class": "0x00000001",
3079 "dns.resp.ttl": "2419",
3080 "dns.resp.len": "4",
3081 "dns.a": "165.254.16.93"
3083 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.232": {
3084 "dns.resp.name": "n7b.akamaiedge.net",
3085 "dns.resp.type": "1",
3086 "dns.resp.class": "0x00000001",
3087 "dns.resp.ttl": "522",
3088 "dns.resp.len": "4",
3089 "dns.a": "165.254.134.232"
3091 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
3092 "dns.resp.name": "a0b.akamaiedge.net",
3093 "dns.resp.type": "28",
3094 "dns.resp.class": "0x00000001",
3095 "dns.resp.ttl": "2974",
3096 "dns.resp.len": "16",
3097 "dns.aaaa": "2600:1480:e800::c0"
3106 "_index": "packets-2017-10-26",
3107 "_type": "pcap_file",
3112 "frame.encap_type": "1",
3113 "frame.time": "Oct 19, 2017 18:12:56.852097000 PDT",
3114 "frame.offset_shift": "0.000000000",
3115 "frame.time_epoch": "1508461976.852097000",
3116 "frame.time_delta": "3.045152000",
3117 "frame.time_delta_displayed": "305.116816000",
3118 "frame.time_relative": "4264.446893000",
3119 "frame.number": "5571",
3121 "frame.cap_len": "83",
3122 "frame.marked": "0",
3123 "frame.ignored": "0",
3124 "frame.protocols": "eth:ethertype:ip:udp:dns",
3125 "frame.coloring_rule.name": "UDP",
3126 "frame.coloring_rule.string": "udp"
3129 "eth.dst": "b0:b9:8a:73:69:8e",
3131 "eth.dst_resolved": "Netgear_73:69:8e",
3132 "eth.addr": "b0:b9:8a:73:69:8e",
3133 "eth.addr_resolved": "Netgear_73:69:8e",
3137 "eth.src": "00:17:88:69:ee:e4",
3139 "eth.src_resolved": "PhilipsL_69:ee:e4",
3140 "eth.addr": "00:17:88:69:ee:e4",
3141 "eth.addr_resolved": "PhilipsL_69:ee:e4",
3145 "eth.type": "0x00000800"
3150 "ip.dsfield": "0x00000000",
3151 "ip.dsfield_tree": {
3152 "ip.dsfield.dscp": "0",
3153 "ip.dsfield.ecn": "0"
3156 "ip.id": "0x0000f879",
3157 "ip.flags": "0x00000002",
3163 "ip.frag_offset": "0",
3166 "ip.checksum": "0x0000c03c",
3167 "ip.checksum.status": "2",
3168 "ip.src": "192.168.0.160",
3169 "ip.addr": "192.168.0.160",
3170 "ip.src_host": "192.168.0.160",
3171 "ip.host": "192.168.0.160",
3172 "ip.dst": "192.168.0.1",
3173 "ip.addr": "192.168.0.1",
3174 "ip.dst_host": "192.168.0.1",
3175 "ip.host": "192.168.0.1",
3176 "Source GeoIP: Unknown": "",
3177 "Destination GeoIP: Unknown": ""
3180 "udp.srcport": "46881",
3181 "udp.dstport": "53",
3182 "udp.port": "46881",
3185 "udp.checksum": "0x0000d1bd",
3186 "udp.checksum.status": "2",
3190 "dns.response_in": "5572",
3191 "dns.id": "0x00000490",
3192 "dns.flags": "0x00000100",
3194 "dns.flags.response": "0",
3195 "dns.flags.opcode": "0",
3196 "dns.flags.truncated": "0",
3197 "dns.flags.recdesired": "1",
3199 "dns.flags.checkdisable": "0"
3201 "dns.count.queries": "1",
3202 "dns.count.answers": "0",
3203 "dns.count.auth_rr": "0",
3204 "dns.count.add_rr": "0",
3206 "diagnostics.meethue.com: type A, class IN": {
3207 "dns.qry.name": "diagnostics.meethue.com",
3208 "dns.qry.name.len": "23",
3209 "dns.count.labels": "3",
3210 "dns.qry.type": "1",
3211 "dns.qry.class": "0x00000001"
3220 "_index": "packets-2017-10-26",
3221 "_type": "pcap_file",
3226 "frame.encap_type": "1",
3227 "frame.time": "Oct 19, 2017 18:12:56.936468000 PDT",
3228 "frame.offset_shift": "0.000000000",
3229 "frame.time_epoch": "1508461976.936468000",
3230 "frame.time_delta": "0.084371000",
3231 "frame.time_delta_displayed": "0.084371000",
3232 "frame.time_relative": "4264.531264000",
3233 "frame.number": "5572",
3235 "frame.cap_len": "297",
3236 "frame.marked": "0",
3237 "frame.ignored": "0",
3238 "frame.protocols": "eth:ethertype:ip:udp:dns",
3239 "frame.coloring_rule.name": "UDP",
3240 "frame.coloring_rule.string": "udp"
3243 "eth.dst": "00:17:88:69:ee:e4",
3245 "eth.dst_resolved": "PhilipsL_69:ee:e4",
3246 "eth.addr": "00:17:88:69:ee:e4",
3247 "eth.addr_resolved": "PhilipsL_69:ee:e4",
3251 "eth.src": "b0:b9:8a:73:69:8e",
3253 "eth.src_resolved": "Netgear_73:69:8e",
3254 "eth.addr": "b0:b9:8a:73:69:8e",
3255 "eth.addr_resolved": "Netgear_73:69:8e",
3259 "eth.type": "0x00000800"
3264 "ip.dsfield": "0x00000000",
3265 "ip.dsfield_tree": {
3266 "ip.dsfield.dscp": "0",
3267 "ip.dsfield.ecn": "0"
3270 "ip.id": "0x00008c6e",
3271 "ip.flags": "0x00000002",
3277 "ip.frag_offset": "0",
3280 "ip.checksum": "0x00002b72",
3281 "ip.checksum.status": "2",
3282 "ip.src": "192.168.0.1",
3283 "ip.addr": "192.168.0.1",
3284 "ip.src_host": "192.168.0.1",
3285 "ip.host": "192.168.0.1",
3286 "ip.dst": "192.168.0.160",
3287 "ip.addr": "192.168.0.160",
3288 "ip.dst_host": "192.168.0.160",
3289 "ip.host": "192.168.0.160",
3290 "Source GeoIP: Unknown": "",
3291 "Destination GeoIP: Unknown": ""
3294 "udp.srcport": "53",
3295 "udp.dstport": "46881",
3297 "udp.port": "46881",
3298 "udp.length": "263",
3299 "udp.checksum": "0x0000830a",
3300 "udp.checksum.status": "2",
3304 "dns.response_to": "5571",
3305 "dns.time": "0.084371000",
3306 "dns.id": "0x00000490",
3307 "dns.flags": "0x00008180",
3309 "dns.flags.response": "1",
3310 "dns.flags.opcode": "0",
3311 "dns.flags.authoritative": "0",
3312 "dns.flags.truncated": "0",
3313 "dns.flags.recdesired": "1",
3314 "dns.flags.recavail": "1",
3316 "dns.flags.authenticated": "0",
3317 "dns.flags.checkdisable": "0",
3318 "dns.flags.rcode": "0"
3320 "dns.count.queries": "1",
3321 "dns.count.answers": "1",
3322 "dns.count.auth_rr": "3",
3323 "dns.count.add_rr": "6",
3325 "diagnostics.meethue.com: type A, class IN": {
3326 "dns.qry.name": "diagnostics.meethue.com",
3327 "dns.qry.name.len": "23",
3328 "dns.count.labels": "3",
3329 "dns.qry.type": "1",
3330 "dns.qry.class": "0x00000001"
3334 "diagnostics.meethue.com: type A, class IN, addr 130.211.67.12": {
3335 "dns.resp.name": "diagnostics.meethue.com",
3336 "dns.resp.type": "1",
3337 "dns.resp.class": "0x00000001",
3338 "dns.resp.ttl": "300",
3339 "dns.resp.len": "4",
3340 "dns.a": "130.211.67.12"
3343 "Authoritative nameservers": {
3344 "meethue.com: type NS, class IN, ns ns2.ext.philips.com": {
3345 "dns.resp.name": "meethue.com",
3346 "dns.resp.type": "2",
3347 "dns.resp.class": "0x00000001",
3348 "dns.resp.ttl": "3600",
3349 "dns.resp.len": "18",
3350 "dns.ns": "ns2.ext.philips.com"
3352 "meethue.com: type NS, class IN, ns ns3.ext.philips.com": {
3353 "dns.resp.name": "meethue.com",
3354 "dns.resp.type": "2",
3355 "dns.resp.class": "0x00000001",
3356 "dns.resp.ttl": "3600",
3357 "dns.resp.len": "6",
3358 "dns.ns": "ns3.ext.philips.com"
3360 "meethue.com: type NS, class IN, ns ns1.ext.philips.com": {
3361 "dns.resp.name": "meethue.com",
3362 "dns.resp.type": "2",
3363 "dns.resp.class": "0x00000001",
3364 "dns.resp.ttl": "3600",
3365 "dns.resp.len": "6",
3366 "dns.ns": "ns1.ext.philips.com"
3369 "Additional records": {
3370 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
3371 "dns.resp.name": "ns1.ext.philips.com",
3372 "dns.resp.type": "1",
3373 "dns.resp.class": "0x00000001",
3374 "dns.resp.ttl": "172800",
3375 "dns.resp.len": "4",
3376 "dns.a": "57.67.40.20"
3378 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
3379 "dns.resp.name": "ns2.ext.philips.com",
3380 "dns.resp.type": "1",
3381 "dns.resp.class": "0x00000001",
3382 "dns.resp.ttl": "172800",
3383 "dns.resp.len": "4",
3384 "dns.a": "57.77.21.76"
3386 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
3387 "dns.resp.name": "ns3.ext.philips.com",
3388 "dns.resp.type": "1",
3389 "dns.resp.class": "0x00000001",
3390 "dns.resp.ttl": "172800",
3391 "dns.resp.len": "4",
3392 "dns.a": "57.73.36.68"
3394 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
3395 "dns.resp.name": "ns1.ext.philips.com",
3396 "dns.resp.type": "28",
3397 "dns.resp.class": "0x00000001",
3398 "dns.resp.ttl": "2611",
3399 "dns.resp.len": "16",
3400 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
3402 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
3403 "dns.resp.name": "ns2.ext.philips.com",
3404 "dns.resp.type": "28",
3405 "dns.resp.class": "0x00000001",
3406 "dns.resp.ttl": "62777",
3407 "dns.resp.len": "16",
3408 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
3410 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
3411 "dns.resp.name": "ns3.ext.philips.com",
3412 "dns.resp.type": "28",
3413 "dns.resp.class": "0x00000001",
3414 "dns.resp.ttl": "62777",
3415 "dns.resp.len": "16",
3416 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
3425 "_index": "packets-2017-10-26",
3426 "_type": "pcap_file",
3431 "frame.encap_type": "1",
3432 "frame.time": "Oct 19, 2017 18:22:51.746902000 PDT",
3433 "frame.offset_shift": "0.000000000",
3434 "frame.time_epoch": "1508462571.746902000",
3435 "frame.time_delta": "2.037142000",
3436 "frame.time_delta_displayed": "594.810434000",
3437 "frame.time_relative": "4859.341698000",
3438 "frame.number": "6175",
3440 "frame.cap_len": "76",
3441 "frame.marked": "0",
3442 "frame.ignored": "0",
3443 "frame.protocols": "eth:ethertype:ip:udp:dns",
3444 "frame.coloring_rule.name": "UDP",
3445 "frame.coloring_rule.string": "udp"
3448 "eth.dst": "b0:b9:8a:73:69:8e",
3450 "eth.dst_resolved": "Netgear_73:69:8e",
3451 "eth.addr": "b0:b9:8a:73:69:8e",
3452 "eth.addr_resolved": "Netgear_73:69:8e",
3456 "eth.src": "00:17:88:69:ee:e4",
3458 "eth.src_resolved": "PhilipsL_69:ee:e4",
3459 "eth.addr": "00:17:88:69:ee:e4",
3460 "eth.addr_resolved": "PhilipsL_69:ee:e4",
3464 "eth.type": "0x00000800"
3469 "ip.dsfield": "0x00000000",
3470 "ip.dsfield_tree": {
3471 "ip.dsfield.dscp": "0",
3472 "ip.dsfield.ecn": "0"
3475 "ip.id": "0x0000f884",
3476 "ip.flags": "0x00000002",
3482 "ip.frag_offset": "0",
3485 "ip.checksum": "0x0000c038",
3486 "ip.checksum.status": "2",
3487 "ip.src": "192.168.0.160",
3488 "ip.addr": "192.168.0.160",
3489 "ip.src_host": "192.168.0.160",
3490 "ip.host": "192.168.0.160",
3491 "ip.dst": "192.168.0.1",
3492 "ip.addr": "192.168.0.1",
3493 "ip.dst_host": "192.168.0.1",
3494 "ip.host": "192.168.0.1",
3495 "Source GeoIP: Unknown": "",
3496 "Destination GeoIP: Unknown": ""
3499 "udp.srcport": "54444",
3500 "udp.dstport": "53",
3501 "udp.port": "54444",
3504 "udp.checksum": "0x0000847a",
3505 "udp.checksum.status": "2",
3509 "dns.response_in": "6176",
3510 "dns.id": "0x00000491",
3511 "dns.flags": "0x00000100",
3513 "dns.flags.response": "0",
3514 "dns.flags.opcode": "0",
3515 "dns.flags.truncated": "0",
3516 "dns.flags.recdesired": "1",
3518 "dns.flags.checkdisable": "0"
3520 "dns.count.queries": "1",
3521 "dns.count.answers": "0",
3522 "dns.count.auth_rr": "0",
3523 "dns.count.add_rr": "0",
3525 "www2.meethue.com: type A, class IN": {
3526 "dns.qry.name": "www2.meethue.com",
3527 "dns.qry.name.len": "16",
3528 "dns.count.labels": "3",
3529 "dns.qry.type": "1",
3530 "dns.qry.class": "0x00000001"
3539 "_index": "packets-2017-10-26",
3540 "_type": "pcap_file",
3545 "frame.encap_type": "1",
3546 "frame.time": "Oct 19, 2017 18:22:51.772932000 PDT",
3547 "frame.offset_shift": "0.000000000",
3548 "frame.time_epoch": "1508462571.772932000",
3549 "frame.time_delta": "0.026030000",
3550 "frame.time_delta_displayed": "0.026030000",
3551 "frame.time_relative": "4859.367728000",
3552 "frame.number": "6176",
3554 "frame.cap_len": "513",
3555 "frame.marked": "0",
3556 "frame.ignored": "0",
3557 "frame.protocols": "eth:ethertype:ip:udp:dns",
3558 "frame.coloring_rule.name": "UDP",
3559 "frame.coloring_rule.string": "udp"
3562 "eth.dst": "00:17:88:69:ee:e4",
3564 "eth.dst_resolved": "PhilipsL_69:ee:e4",
3565 "eth.addr": "00:17:88:69:ee:e4",
3566 "eth.addr_resolved": "PhilipsL_69:ee:e4",
3570 "eth.src": "b0:b9:8a:73:69:8e",
3572 "eth.src_resolved": "Netgear_73:69:8e",
3573 "eth.addr": "b0:b9:8a:73:69:8e",
3574 "eth.addr_resolved": "Netgear_73:69:8e",
3578 "eth.type": "0x00000800"
3583 "ip.dsfield": "0x00000000",
3584 "ip.dsfield_tree": {
3585 "ip.dsfield.dscp": "0",
3586 "ip.dsfield.ecn": "0"
3589 "ip.id": "0x00004cfa",
3590 "ip.flags": "0x00000002",
3596 "ip.frag_offset": "0",
3599 "ip.checksum": "0x00006a0e",
3600 "ip.checksum.status": "2",
3601 "ip.src": "192.168.0.1",
3602 "ip.addr": "192.168.0.1",
3603 "ip.src_host": "192.168.0.1",
3604 "ip.host": "192.168.0.1",
3605 "ip.dst": "192.168.0.160",
3606 "ip.addr": "192.168.0.160",
3607 "ip.dst_host": "192.168.0.160",
3608 "ip.host": "192.168.0.160",
3609 "Source GeoIP: Unknown": "",
3610 "Destination GeoIP: Unknown": ""
3613 "udp.srcport": "53",
3614 "udp.dstport": "54444",
3616 "udp.port": "54444",
3617 "udp.length": "479",
3618 "udp.checksum": "0x000083e2",
3619 "udp.checksum.status": "2",
3623 "dns.response_to": "6175",
3624 "dns.time": "0.026030000",
3625 "dns.id": "0x00000491",
3626 "dns.flags": "0x00008180",
3628 "dns.flags.response": "1",
3629 "dns.flags.opcode": "0",
3630 "dns.flags.authoritative": "0",
3631 "dns.flags.truncated": "0",
3632 "dns.flags.recdesired": "1",
3633 "dns.flags.recavail": "1",
3635 "dns.flags.authenticated": "0",
3636 "dns.flags.checkdisable": "0",
3637 "dns.flags.rcode": "0"
3639 "dns.count.queries": "1",
3640 "dns.count.answers": "4",
3641 "dns.count.auth_rr": "9",
3642 "dns.count.add_rr": "9",
3644 "www2.meethue.com: type A, class IN": {
3645 "dns.qry.name": "www2.meethue.com",
3646 "dns.qry.name.len": "16",
3647 "dns.count.labels": "3",
3648 "dns.qry.type": "1",
3649 "dns.qry.class": "0x00000001"
3653 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
3654 "dns.resp.name": "www2.meethue.com",
3655 "dns.resp.type": "5",
3656 "dns.resp.class": "0x00000001",
3657 "dns.resp.ttl": "116",
3658 "dns.resp.len": "41",
3659 "dns.cname": "brands.lighting.philips.com.edgekey.net"
3661 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
3662 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
3663 "dns.resp.type": "5",
3664 "dns.resp.class": "0x00000001",
3665 "dns.resp.ttl": "8813",
3666 "dns.resp.len": "22",
3667 "dns.cname": "e15361.b.akamaiedge.net"
3669 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.113": {
3670 "dns.resp.name": "e15361.b.akamaiedge.net",
3671 "dns.resp.type": "1",
3672 "dns.resp.class": "0x00000001",
3673 "dns.resp.ttl": "20",
3674 "dns.resp.len": "4",
3675 "dns.a": "173.223.52.113"
3677 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
3678 "dns.resp.name": "e15361.b.akamaiedge.net",
3679 "dns.resp.type": "1",
3680 "dns.resp.class": "0x00000001",
3681 "dns.resp.ttl": "20",
3682 "dns.resp.len": "4",
3683 "dns.a": "173.223.52.125"
3686 "Authoritative nameservers": {
3687 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
3688 "dns.resp.name": "b.akamaiedge.net",
3689 "dns.resp.type": "2",
3690 "dns.resp.class": "0x00000001",
3691 "dns.resp.ttl": "987",
3692 "dns.resp.len": "6",
3693 "dns.ns": "n3b.akamaiedge.net"
3695 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
3696 "dns.resp.name": "b.akamaiedge.net",
3697 "dns.resp.type": "2",
3698 "dns.resp.class": "0x00000001",
3699 "dns.resp.ttl": "987",
3700 "dns.resp.len": "6",
3701 "dns.ns": "n0b.akamaiedge.net"
3703 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
3704 "dns.resp.name": "b.akamaiedge.net",
3705 "dns.resp.type": "2",
3706 "dns.resp.class": "0x00000001",
3707 "dns.resp.ttl": "987",
3708 "dns.resp.len": "6",
3709 "dns.ns": "n4b.akamaiedge.net"
3711 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
3712 "dns.resp.name": "b.akamaiedge.net",
3713 "dns.resp.type": "2",
3714 "dns.resp.class": "0x00000001",
3715 "dns.resp.ttl": "987",
3716 "dns.resp.len": "6",
3717 "dns.ns": "n1b.akamaiedge.net"
3719 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
3720 "dns.resp.name": "b.akamaiedge.net",
3721 "dns.resp.type": "2",
3722 "dns.resp.class": "0x00000001",
3723 "dns.resp.ttl": "987",
3724 "dns.resp.len": "6",
3725 "dns.ns": "n2b.akamaiedge.net"
3727 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
3728 "dns.resp.name": "b.akamaiedge.net",
3729 "dns.resp.type": "2",
3730 "dns.resp.class": "0x00000001",
3731 "dns.resp.ttl": "987",
3732 "dns.resp.len": "6",
3733 "dns.ns": "n7b.akamaiedge.net"
3735 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
3736 "dns.resp.name": "b.akamaiedge.net",
3737 "dns.resp.type": "2",
3738 "dns.resp.class": "0x00000001",
3739 "dns.resp.ttl": "987",
3740 "dns.resp.len": "6",
3741 "dns.ns": "n5b.akamaiedge.net"
3743 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
3744 "dns.resp.name": "b.akamaiedge.net",
3745 "dns.resp.type": "2",
3746 "dns.resp.class": "0x00000001",
3747 "dns.resp.ttl": "987",
3748 "dns.resp.len": "6",
3749 "dns.ns": "a0b.akamaiedge.net"
3751 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
3752 "dns.resp.name": "b.akamaiedge.net",
3753 "dns.resp.type": "2",
3754 "dns.resp.class": "0x00000001",
3755 "dns.resp.ttl": "987",
3756 "dns.resp.len": "6",
3757 "dns.ns": "n6b.akamaiedge.net"
3760 "Additional records": {
3761 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
3762 "dns.resp.name": "n0b.akamaiedge.net",
3763 "dns.resp.type": "1",
3764 "dns.resp.class": "0x00000001",
3765 "dns.resp.ttl": "3296",
3766 "dns.resp.len": "4",
3767 "dns.a": "88.221.81.192"
3769 "n1b.akamaiedge.net: type A, class IN, addr 184.51.200.159": {
3770 "dns.resp.name": "n1b.akamaiedge.net",
3771 "dns.resp.type": "1",
3772 "dns.resp.class": "0x00000001",
3773 "dns.resp.ttl": "6016",
3774 "dns.resp.len": "4",
3775 "dns.a": "184.51.200.159"
3777 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
3778 "dns.resp.name": "n2b.akamaiedge.net",
3779 "dns.resp.type": "1",
3780 "dns.resp.class": "0x00000001",
3781 "dns.resp.ttl": "6518",
3782 "dns.resp.len": "4",
3783 "dns.a": "96.17.70.188"
3785 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.190": {
3786 "dns.resp.name": "n3b.akamaiedge.net",
3787 "dns.resp.type": "1",
3788 "dns.resp.class": "0x00000001",
3789 "dns.resp.ttl": "2701",
3790 "dns.resp.len": "4",
3791 "dns.a": "96.17.70.190"
3793 "n4b.akamaiedge.net: type A, class IN, addr 165.254.134.244": {
3794 "dns.resp.name": "n4b.akamaiedge.net",
3795 "dns.resp.type": "1",
3796 "dns.resp.class": "0x00000001",
3797 "dns.resp.ttl": "3609",
3798 "dns.resp.len": "4",
3799 "dns.a": "165.254.134.244"
3801 "n5b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
3802 "dns.resp.name": "n5b.akamaiedge.net",
3803 "dns.resp.type": "1",
3804 "dns.resp.class": "0x00000001",
3805 "dns.resp.ttl": "7358",
3806 "dns.resp.len": "4",
3807 "dns.a": "165.254.16.89"
3809 "n6b.akamaiedge.net: type A, class IN, addr 184.51.200.166": {
3810 "dns.resp.name": "n6b.akamaiedge.net",
3811 "dns.resp.type": "1",
3812 "dns.resp.class": "0x00000001",
3813 "dns.resp.ttl": "3156",
3814 "dns.resp.len": "4",
3815 "dns.a": "184.51.200.166"
3817 "n7b.akamaiedge.net: type A, class IN, addr 165.254.16.92": {
3818 "dns.resp.name": "n7b.akamaiedge.net",
3819 "dns.resp.type": "1",
3820 "dns.resp.class": "0x00000001",
3821 "dns.resp.ttl": "5219",
3822 "dns.resp.len": "4",
3823 "dns.a": "165.254.16.92"
3825 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
3826 "dns.resp.name": "a0b.akamaiedge.net",
3827 "dns.resp.type": "28",
3828 "dns.resp.class": "0x00000001",
3829 "dns.resp.ttl": "3992",
3830 "dns.resp.len": "16",
3831 "dns.aaaa": "2600:1480:e800::c0"
3840 "_index": "packets-2017-10-26",
3841 "_type": "pcap_file",
3846 "frame.encap_type": "1",
3847 "frame.time": "Oct 19, 2017 18:33:21.624384000 PDT",
3848 "frame.offset_shift": "0.000000000",
3849 "frame.time_epoch": "1508463201.624384000",
3850 "frame.time_delta": "0.266457000",
3851 "frame.time_delta_displayed": "629.851452000",
3852 "frame.time_relative": "5489.219180000",
3853 "frame.number": "6744",
3855 "frame.cap_len": "79",
3856 "frame.marked": "0",
3857 "frame.ignored": "0",
3858 "frame.protocols": "eth:ethertype:ip:udp:dns",
3859 "frame.coloring_rule.name": "UDP",
3860 "frame.coloring_rule.string": "udp"
3863 "eth.dst": "b0:b9:8a:73:69:8e",
3865 "eth.dst_resolved": "Netgear_73:69:8e",
3866 "eth.addr": "b0:b9:8a:73:69:8e",
3867 "eth.addr_resolved": "Netgear_73:69:8e",
3871 "eth.src": "00:17:88:69:ee:e4",
3873 "eth.src_resolved": "PhilipsL_69:ee:e4",
3874 "eth.addr": "00:17:88:69:ee:e4",
3875 "eth.addr_resolved": "PhilipsL_69:ee:e4",
3879 "eth.type": "0x00000800"
3884 "ip.dsfield": "0x00000000",
3885 "ip.dsfield_tree": {
3886 "ip.dsfield.dscp": "0",
3887 "ip.dsfield.ecn": "0"
3890 "ip.id": "0x0000bf31",
3891 "ip.flags": "0x00000002",
3897 "ip.frag_offset": "0",
3900 "ip.checksum": "0x0000f988",
3901 "ip.checksum.status": "2",
3902 "ip.src": "192.168.0.160",
3903 "ip.addr": "192.168.0.160",
3904 "ip.src_host": "192.168.0.160",
3905 "ip.host": "192.168.0.160",
3906 "ip.dst": "192.168.0.1",
3907 "ip.addr": "192.168.0.1",
3908 "ip.dst_host": "192.168.0.1",
3909 "ip.host": "192.168.0.1",
3910 "Source GeoIP: Unknown": "",
3911 "Destination GeoIP: Unknown": ""
3914 "udp.srcport": "37292",
3915 "udp.dstport": "53",
3916 "udp.port": "37292",
3919 "udp.checksum": "0x00002eff",
3920 "udp.checksum.status": "2",
3924 "dns.response_in": "6745",
3925 "dns.id": "0x00000492",
3926 "dns.flags": "0x00000100",
3928 "dns.flags.response": "0",
3929 "dns.flags.opcode": "0",
3930 "dns.flags.truncated": "0",
3931 "dns.flags.recdesired": "1",
3933 "dns.flags.checkdisable": "0"
3935 "dns.count.queries": "1",
3936 "dns.count.answers": "0",
3937 "dns.count.auth_rr": "0",
3938 "dns.count.add_rr": "0",
3940 "dcp.cpp.philips.com: type AAAA, class IN": {
3941 "dns.qry.name": "dcp.cpp.philips.com",
3942 "dns.qry.name.len": "19",
3943 "dns.count.labels": "4",
3944 "dns.qry.type": "28",
3945 "dns.qry.class": "0x00000001"
3954 "_index": "packets-2017-10-26",
3955 "_type": "pcap_file",
3960 "frame.encap_type": "1",
3961 "frame.time": "Oct 19, 2017 18:33:21.626468000 PDT",
3962 "frame.offset_shift": "0.000000000",
3963 "frame.time_epoch": "1508463201.626468000",
3964 "frame.time_delta": "0.002084000",
3965 "frame.time_delta_displayed": "0.002084000",
3966 "frame.time_relative": "5489.221264000",
3967 "frame.number": "6745",
3969 "frame.cap_len": "137",
3970 "frame.marked": "0",
3971 "frame.ignored": "0",
3972 "frame.protocols": "eth:ethertype:ip:udp:dns",
3973 "frame.coloring_rule.name": "UDP",
3974 "frame.coloring_rule.string": "udp"
3977 "eth.dst": "00:17:88:69:ee:e4",
3979 "eth.dst_resolved": "PhilipsL_69:ee:e4",
3980 "eth.addr": "00:17:88:69:ee:e4",
3981 "eth.addr_resolved": "PhilipsL_69:ee:e4",
3985 "eth.src": "b0:b9:8a:73:69:8e",
3987 "eth.src_resolved": "Netgear_73:69:8e",
3988 "eth.addr": "b0:b9:8a:73:69:8e",
3989 "eth.addr_resolved": "Netgear_73:69:8e",
3993 "eth.type": "0x00000800"
3998 "ip.dsfield": "0x00000000",
3999 "ip.dsfield_tree": {
4000 "ip.dsfield.dscp": "0",
4001 "ip.dsfield.ecn": "0"
4004 "ip.id": "0x00003f71",
4005 "ip.flags": "0x00000002",
4011 "ip.frag_offset": "0",
4014 "ip.checksum": "0x0000790f",
4015 "ip.checksum.status": "2",
4016 "ip.src": "192.168.0.1",
4017 "ip.addr": "192.168.0.1",
4018 "ip.src_host": "192.168.0.1",
4019 "ip.host": "192.168.0.1",
4020 "ip.dst": "192.168.0.160",
4021 "ip.addr": "192.168.0.160",
4022 "ip.dst_host": "192.168.0.160",
4023 "ip.host": "192.168.0.160",
4024 "Source GeoIP: Unknown": "",
4025 "Destination GeoIP: Unknown": ""
4028 "udp.srcport": "53",
4029 "udp.dstport": "37292",
4031 "udp.port": "37292",
4032 "udp.length": "103",
4033 "udp.checksum": "0x0000826a",
4034 "udp.checksum.status": "2",
4038 "dns.response_to": "6744",
4039 "dns.time": "0.002084000",
4040 "dns.id": "0x00000492",
4041 "dns.flags": "0x00008180",
4043 "dns.flags.response": "1",
4044 "dns.flags.opcode": "0",
4045 "dns.flags.authoritative": "0",
4046 "dns.flags.truncated": "0",
4047 "dns.flags.recdesired": "1",
4048 "dns.flags.recavail": "1",
4050 "dns.flags.authenticated": "0",
4051 "dns.flags.checkdisable": "0",
4052 "dns.flags.rcode": "0"
4054 "dns.count.queries": "1",
4055 "dns.count.answers": "0",
4056 "dns.count.auth_rr": "1",
4057 "dns.count.add_rr": "0",
4059 "dcp.cpp.philips.com: type AAAA, class IN": {
4060 "dns.qry.name": "dcp.cpp.philips.com",
4061 "dns.qry.name.len": "19",
4062 "dns.count.labels": "4",
4063 "dns.qry.type": "28",
4064 "dns.qry.class": "0x00000001"
4067 "Authoritative nameservers": {
4068 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
4069 "dns.resp.name": "cpp.philips.com",
4070 "dns.resp.type": "6",
4071 "dns.resp.class": "0x00000001",
4072 "dns.resp.ttl": "3220",
4073 "dns.resp.len": "46",
4074 "dns.soa.mname": "ns1.ext.philips.com",
4075 "dns.soa.rname": "ddi-authority.philips.com",
4076 "dns.soa.serial_number": "387",
4077 "dns.soa.refresh_interval": "1200",
4078 "dns.soa.retry_interval": "300",
4079 "dns.soa.expire_limit": "1209600",
4080 "dns.soa.mininum_ttl": "3600"
4089 "_index": "packets-2017-10-26",
4090 "_type": "pcap_file",
4095 "frame.encap_type": "1",
4096 "frame.time": "Oct 19, 2017 18:33:21.627301000 PDT",
4097 "frame.offset_shift": "0.000000000",
4098 "frame.time_epoch": "1508463201.627301000",
4099 "frame.time_delta": "0.000833000",
4100 "frame.time_delta_displayed": "0.000833000",
4101 "frame.time_relative": "5489.222097000",
4102 "frame.number": "6746",
4104 "frame.cap_len": "79",
4105 "frame.marked": "0",
4106 "frame.ignored": "0",
4107 "frame.protocols": "eth:ethertype:ip:udp:dns",
4108 "frame.coloring_rule.name": "UDP",
4109 "frame.coloring_rule.string": "udp"
4112 "eth.dst": "b0:b9:8a:73:69:8e",
4114 "eth.dst_resolved": "Netgear_73:69:8e",
4115 "eth.addr": "b0:b9:8a:73:69:8e",
4116 "eth.addr_resolved": "Netgear_73:69:8e",
4120 "eth.src": "00:17:88:69:ee:e4",
4122 "eth.src_resolved": "PhilipsL_69:ee:e4",
4123 "eth.addr": "00:17:88:69:ee:e4",
4124 "eth.addr_resolved": "PhilipsL_69:ee:e4",
4128 "eth.type": "0x00000800"
4133 "ip.dsfield": "0x00000000",
4134 "ip.dsfield_tree": {
4135 "ip.dsfield.dscp": "0",
4136 "ip.dsfield.ecn": "0"
4139 "ip.id": "0x0000bf32",
4140 "ip.flags": "0x00000002",
4146 "ip.frag_offset": "0",
4149 "ip.checksum": "0x0000f987",
4150 "ip.checksum.status": "2",
4151 "ip.src": "192.168.0.160",
4152 "ip.addr": "192.168.0.160",
4153 "ip.src_host": "192.168.0.160",
4154 "ip.host": "192.168.0.160",
4155 "ip.dst": "192.168.0.1",
4156 "ip.addr": "192.168.0.1",
4157 "ip.dst_host": "192.168.0.1",
4158 "ip.host": "192.168.0.1",
4159 "Source GeoIP: Unknown": "",
4160 "Destination GeoIP: Unknown": ""
4163 "udp.srcport": "54874",
4164 "udp.dstport": "53",
4165 "udp.port": "54874",
4168 "udp.checksum": "0x00000550",
4169 "udp.checksum.status": "2",
4173 "dns.response_in": "6747",
4174 "dns.id": "0x00000493",
4175 "dns.flags": "0x00000100",
4177 "dns.flags.response": "0",
4178 "dns.flags.opcode": "0",
4179 "dns.flags.truncated": "0",
4180 "dns.flags.recdesired": "1",
4182 "dns.flags.checkdisable": "0"
4184 "dns.count.queries": "1",
4185 "dns.count.answers": "0",
4186 "dns.count.auth_rr": "0",
4187 "dns.count.add_rr": "0",
4189 "dcp.cpp.philips.com: type A, class IN": {
4190 "dns.qry.name": "dcp.cpp.philips.com",
4191 "dns.qry.name.len": "19",
4192 "dns.count.labels": "4",
4193 "dns.qry.type": "1",
4194 "dns.qry.class": "0x00000001"
4203 "_index": "packets-2017-10-26",
4204 "_type": "pcap_file",
4209 "frame.encap_type": "1",
4210 "frame.time": "Oct 19, 2017 18:33:21.628812000 PDT",
4211 "frame.offset_shift": "0.000000000",
4212 "frame.time_epoch": "1508463201.628812000",
4213 "frame.time_delta": "0.001511000",
4214 "frame.time_delta_displayed": "0.001511000",
4215 "frame.time_relative": "5489.223608000",
4216 "frame.number": "6747",
4218 "frame.cap_len": "285",
4219 "frame.marked": "0",
4220 "frame.ignored": "0",
4221 "frame.protocols": "eth:ethertype:ip:udp:dns",
4222 "frame.coloring_rule.name": "UDP",
4223 "frame.coloring_rule.string": "udp"
4226 "eth.dst": "00:17:88:69:ee:e4",
4228 "eth.dst_resolved": "PhilipsL_69:ee:e4",
4229 "eth.addr": "00:17:88:69:ee:e4",
4230 "eth.addr_resolved": "PhilipsL_69:ee:e4",
4234 "eth.src": "b0:b9:8a:73:69:8e",
4236 "eth.src_resolved": "Netgear_73:69:8e",
4237 "eth.addr": "b0:b9:8a:73:69:8e",
4238 "eth.addr_resolved": "Netgear_73:69:8e",
4242 "eth.type": "0x00000800"
4247 "ip.dsfield": "0x00000000",
4248 "ip.dsfield_tree": {
4249 "ip.dsfield.dscp": "0",
4250 "ip.dsfield.ecn": "0"
4253 "ip.id": "0x00003f72",
4254 "ip.flags": "0x00000002",
4260 "ip.frag_offset": "0",
4263 "ip.checksum": "0x0000787a",
4264 "ip.checksum.status": "2",
4265 "ip.src": "192.168.0.1",
4266 "ip.addr": "192.168.0.1",
4267 "ip.src_host": "192.168.0.1",
4268 "ip.host": "192.168.0.1",
4269 "ip.dst": "192.168.0.160",
4270 "ip.addr": "192.168.0.160",
4271 "ip.dst_host": "192.168.0.160",
4272 "ip.host": "192.168.0.160",
4273 "Source GeoIP: Unknown": "",
4274 "Destination GeoIP: Unknown": ""
4277 "udp.srcport": "53",
4278 "udp.dstport": "54874",
4280 "udp.port": "54874",
4281 "udp.length": "251",
4282 "udp.checksum": "0x000082fe",
4283 "udp.checksum.status": "2",
4287 "dns.response_to": "6746",
4288 "dns.time": "0.001511000",
4289 "dns.id": "0x00000493",
4290 "dns.flags": "0x00008180",
4292 "dns.flags.response": "1",
4293 "dns.flags.opcode": "0",
4294 "dns.flags.authoritative": "0",
4295 "dns.flags.truncated": "0",
4296 "dns.flags.recdesired": "1",
4297 "dns.flags.recavail": "1",
4299 "dns.flags.authenticated": "0",
4300 "dns.flags.checkdisable": "0",
4301 "dns.flags.rcode": "0"
4303 "dns.count.queries": "1",
4304 "dns.count.answers": "1",
4305 "dns.count.auth_rr": "3",
4306 "dns.count.add_rr": "6",
4308 "dcp.cpp.philips.com: type A, class IN": {
4309 "dns.qry.name": "dcp.cpp.philips.com",
4310 "dns.qry.name.len": "19",
4311 "dns.count.labels": "4",
4312 "dns.qry.type": "1",
4313 "dns.qry.class": "0x00000001"
4317 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
4318 "dns.resp.name": "dcp.cpp.philips.com",
4319 "dns.resp.type": "1",
4320 "dns.resp.class": "0x00000001",
4321 "dns.resp.ttl": "2985",
4322 "dns.resp.len": "4",
4323 "dns.a": "5.79.62.93"
4326 "Authoritative nameservers": {
4327 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
4328 "dns.resp.name": "cpp.philips.com",
4329 "dns.resp.type": "2",
4330 "dns.resp.class": "0x00000001",
4331 "dns.resp.ttl": "413",
4332 "dns.resp.len": "10",
4333 "dns.ns": "ns1.ext.philips.com"
4335 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
4336 "dns.resp.name": "cpp.philips.com",
4337 "dns.resp.type": "2",
4338 "dns.resp.class": "0x00000001",
4339 "dns.resp.ttl": "413",
4340 "dns.resp.len": "6",
4341 "dns.ns": "ns2.ext.philips.com"
4343 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
4344 "dns.resp.name": "cpp.philips.com",
4345 "dns.resp.type": "2",
4346 "dns.resp.class": "0x00000001",
4347 "dns.resp.ttl": "413",
4348 "dns.resp.len": "6",
4349 "dns.ns": "ns3.ext.philips.com"
4352 "Additional records": {
4353 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
4354 "dns.resp.name": "ns1.ext.philips.com",
4355 "dns.resp.type": "1",
4356 "dns.resp.class": "0x00000001",
4357 "dns.resp.ttl": "171575",
4358 "dns.resp.len": "4",
4359 "dns.a": "57.67.40.20"
4361 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
4362 "dns.resp.name": "ns2.ext.philips.com",
4363 "dns.resp.type": "1",
4364 "dns.resp.class": "0x00000001",
4365 "dns.resp.ttl": "171575",
4366 "dns.resp.len": "4",
4367 "dns.a": "57.77.21.76"
4369 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
4370 "dns.resp.name": "ns3.ext.philips.com",
4371 "dns.resp.type": "1",
4372 "dns.resp.class": "0x00000001",
4373 "dns.resp.ttl": "171575",
4374 "dns.resp.len": "4",
4375 "dns.a": "57.73.36.68"
4377 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
4378 "dns.resp.name": "ns1.ext.philips.com",
4379 "dns.resp.type": "28",
4380 "dns.resp.class": "0x00000001",
4381 "dns.resp.ttl": "1386",
4382 "dns.resp.len": "16",
4383 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
4385 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
4386 "dns.resp.name": "ns2.ext.philips.com",
4387 "dns.resp.type": "28",
4388 "dns.resp.class": "0x00000001",
4389 "dns.resp.ttl": "61552",
4390 "dns.resp.len": "16",
4391 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
4393 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
4394 "dns.resp.name": "ns3.ext.philips.com",
4395 "dns.resp.type": "28",
4396 "dns.resp.class": "0x00000001",
4397 "dns.resp.ttl": "61552",
4398 "dns.resp.len": "16",
4399 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
4408 "_index": "packets-2017-10-26",
4409 "_type": "pcap_file",
4414 "frame.encap_type": "1",
4415 "frame.time": "Oct 19, 2017 18:33:22.044352000 PDT",
4416 "frame.offset_shift": "0.000000000",
4417 "frame.time_epoch": "1508463202.044352000",
4418 "frame.time_delta": "0.001668000",
4419 "frame.time_delta_displayed": "0.415540000",
4420 "frame.time_relative": "5489.639148000",
4421 "frame.number": "6763",
4423 "frame.cap_len": "79",
4424 "frame.marked": "0",
4425 "frame.ignored": "0",
4426 "frame.protocols": "eth:ethertype:ip:udp:dns",
4427 "frame.coloring_rule.name": "UDP",
4428 "frame.coloring_rule.string": "udp"
4431 "eth.dst": "b0:b9:8a:73:69:8e",
4433 "eth.dst_resolved": "Netgear_73:69:8e",
4434 "eth.addr": "b0:b9:8a:73:69:8e",
4435 "eth.addr_resolved": "Netgear_73:69:8e",
4439 "eth.src": "00:17:88:69:ee:e4",
4441 "eth.src_resolved": "PhilipsL_69:ee:e4",
4442 "eth.addr": "00:17:88:69:ee:e4",
4443 "eth.addr_resolved": "PhilipsL_69:ee:e4",
4447 "eth.type": "0x00000800"
4452 "ip.dsfield": "0x00000000",
4453 "ip.dsfield_tree": {
4454 "ip.dsfield.dscp": "0",
4455 "ip.dsfield.ecn": "0"
4458 "ip.id": "0x0000bf41",
4459 "ip.flags": "0x00000002",
4465 "ip.frag_offset": "0",
4468 "ip.checksum": "0x0000f978",
4469 "ip.checksum.status": "2",
4470 "ip.src": "192.168.0.160",
4471 "ip.addr": "192.168.0.160",
4472 "ip.src_host": "192.168.0.160",
4473 "ip.host": "192.168.0.160",
4474 "ip.dst": "192.168.0.1",
4475 "ip.addr": "192.168.0.1",
4476 "ip.dst_host": "192.168.0.1",
4477 "ip.host": "192.168.0.1",
4478 "Source GeoIP: Unknown": "",
4479 "Destination GeoIP: Unknown": ""
4482 "udp.srcport": "55176",
4483 "udp.dstport": "53",
4484 "udp.port": "55176",
4487 "udp.checksum": "0x0000e920",
4488 "udp.checksum.status": "2",
4492 "dns.response_in": "6764",
4493 "dns.id": "0x00000494",
4494 "dns.flags": "0x00000100",
4496 "dns.flags.response": "0",
4497 "dns.flags.opcode": "0",
4498 "dns.flags.truncated": "0",
4499 "dns.flags.recdesired": "1",
4501 "dns.flags.checkdisable": "0"
4503 "dns.count.queries": "1",
4504 "dns.count.answers": "0",
4505 "dns.count.auth_rr": "0",
4506 "dns.count.add_rr": "0",
4508 "dcp.cpp.philips.com: type AAAA, class IN": {
4509 "dns.qry.name": "dcp.cpp.philips.com",
4510 "dns.qry.name.len": "19",
4511 "dns.count.labels": "4",
4512 "dns.qry.type": "28",
4513 "dns.qry.class": "0x00000001"
4522 "_index": "packets-2017-10-26",
4523 "_type": "pcap_file",
4528 "frame.encap_type": "1",
4529 "frame.time": "Oct 19, 2017 18:33:22.044953000 PDT",
4530 "frame.offset_shift": "0.000000000",
4531 "frame.time_epoch": "1508463202.044953000",
4532 "frame.time_delta": "0.000601000",
4533 "frame.time_delta_displayed": "0.000601000",
4534 "frame.time_relative": "5489.639749000",
4535 "frame.number": "6764",
4537 "frame.cap_len": "79",
4538 "frame.marked": "0",
4539 "frame.ignored": "0",
4540 "frame.protocols": "eth:ethertype:ip:udp:dns",
4541 "frame.coloring_rule.name": "UDP",
4542 "frame.coloring_rule.string": "udp"
4545 "eth.dst": "00:17:88:69:ee:e4",
4547 "eth.dst_resolved": "PhilipsL_69:ee:e4",
4548 "eth.addr": "00:17:88:69:ee:e4",
4549 "eth.addr_resolved": "PhilipsL_69:ee:e4",
4553 "eth.src": "b0:b9:8a:73:69:8e",
4555 "eth.src_resolved": "Netgear_73:69:8e",
4556 "eth.addr": "b0:b9:8a:73:69:8e",
4557 "eth.addr_resolved": "Netgear_73:69:8e",
4561 "eth.type": "0x00000800"
4566 "ip.dsfield": "0x00000000",
4567 "ip.dsfield_tree": {
4568 "ip.dsfield.dscp": "0",
4569 "ip.dsfield.ecn": "0"
4572 "ip.id": "0x00003f96",
4573 "ip.flags": "0x00000002",
4579 "ip.frag_offset": "0",
4582 "ip.checksum": "0x00007924",
4583 "ip.checksum.status": "2",
4584 "ip.src": "192.168.0.1",
4585 "ip.addr": "192.168.0.1",
4586 "ip.src_host": "192.168.0.1",
4587 "ip.host": "192.168.0.1",
4588 "ip.dst": "192.168.0.160",
4589 "ip.addr": "192.168.0.160",
4590 "ip.dst_host": "192.168.0.160",
4591 "ip.host": "192.168.0.160",
4592 "Source GeoIP: Unknown": "",
4593 "Destination GeoIP: Unknown": ""
4596 "udp.srcport": "53",
4597 "udp.dstport": "55176",
4599 "udp.port": "55176",
4601 "udp.checksum": "0x00008230",
4602 "udp.checksum.status": "2",
4606 "dns.response_to": "6763",
4607 "dns.time": "0.000601000",
4608 "dns.id": "0x00000494",
4609 "dns.flags": "0x00008180",
4611 "dns.flags.response": "1",
4612 "dns.flags.opcode": "0",
4613 "dns.flags.authoritative": "0",
4614 "dns.flags.truncated": "0",
4615 "dns.flags.recdesired": "1",
4616 "dns.flags.recavail": "1",
4618 "dns.flags.authenticated": "0",
4619 "dns.flags.checkdisable": "0",
4620 "dns.flags.rcode": "0"
4622 "dns.count.queries": "1",
4623 "dns.count.answers": "0",
4624 "dns.count.auth_rr": "0",
4625 "dns.count.add_rr": "0",
4627 "dcp.cpp.philips.com: type AAAA, class IN": {
4628 "dns.qry.name": "dcp.cpp.philips.com",
4629 "dns.qry.name.len": "19",
4630 "dns.count.labels": "4",
4631 "dns.qry.type": "28",
4632 "dns.qry.class": "0x00000001"
4641 "_index": "packets-2017-10-26",
4642 "_type": "pcap_file",
4647 "frame.encap_type": "1",
4648 "frame.time": "Oct 19, 2017 18:33:22.045769000 PDT",
4649 "frame.offset_shift": "0.000000000",
4650 "frame.time_epoch": "1508463202.045769000",
4651 "frame.time_delta": "0.000816000",
4652 "frame.time_delta_displayed": "0.000816000",
4653 "frame.time_relative": "5489.640565000",
4654 "frame.number": "6765",
4656 "frame.cap_len": "79",
4657 "frame.marked": "0",
4658 "frame.ignored": "0",
4659 "frame.protocols": "eth:ethertype:ip:udp:dns",
4660 "frame.coloring_rule.name": "UDP",
4661 "frame.coloring_rule.string": "udp"
4664 "eth.dst": "b0:b9:8a:73:69:8e",
4666 "eth.dst_resolved": "Netgear_73:69:8e",
4667 "eth.addr": "b0:b9:8a:73:69:8e",
4668 "eth.addr_resolved": "Netgear_73:69:8e",
4672 "eth.src": "00:17:88:69:ee:e4",
4674 "eth.src_resolved": "PhilipsL_69:ee:e4",
4675 "eth.addr": "00:17:88:69:ee:e4",
4676 "eth.addr_resolved": "PhilipsL_69:ee:e4",
4680 "eth.type": "0x00000800"
4685 "ip.dsfield": "0x00000000",
4686 "ip.dsfield_tree": {
4687 "ip.dsfield.dscp": "0",
4688 "ip.dsfield.ecn": "0"
4691 "ip.id": "0x0000bf42",
4692 "ip.flags": "0x00000002",
4698 "ip.frag_offset": "0",
4701 "ip.checksum": "0x0000f977",
4702 "ip.checksum.status": "2",
4703 "ip.src": "192.168.0.160",
4704 "ip.addr": "192.168.0.160",
4705 "ip.src_host": "192.168.0.160",
4706 "ip.host": "192.168.0.160",
4707 "ip.dst": "192.168.0.1",
4708 "ip.addr": "192.168.0.1",
4709 "ip.dst_host": "192.168.0.1",
4710 "ip.host": "192.168.0.1",
4711 "Source GeoIP: Unknown": "",
4712 "Destination GeoIP: Unknown": ""
4715 "udp.srcport": "60660",
4716 "udp.dstport": "53",
4717 "udp.port": "60660",
4720 "udp.checksum": "0x0000eeb3",
4721 "udp.checksum.status": "2",
4725 "dns.response_in": "6766",
4726 "dns.id": "0x00000495",
4727 "dns.flags": "0x00000100",
4729 "dns.flags.response": "0",
4730 "dns.flags.opcode": "0",
4731 "dns.flags.truncated": "0",
4732 "dns.flags.recdesired": "1",
4734 "dns.flags.checkdisable": "0"
4736 "dns.count.queries": "1",
4737 "dns.count.answers": "0",
4738 "dns.count.auth_rr": "0",
4739 "dns.count.add_rr": "0",
4741 "dcp.cpp.philips.com: type A, class IN": {
4742 "dns.qry.name": "dcp.cpp.philips.com",
4743 "dns.qry.name.len": "19",
4744 "dns.count.labels": "4",
4745 "dns.qry.type": "1",
4746 "dns.qry.class": "0x00000001"
4755 "_index": "packets-2017-10-26",
4756 "_type": "pcap_file",
4761 "frame.encap_type": "1",
4762 "frame.time": "Oct 19, 2017 18:33:22.046379000 PDT",
4763 "frame.offset_shift": "0.000000000",
4764 "frame.time_epoch": "1508463202.046379000",
4765 "frame.time_delta": "0.000610000",
4766 "frame.time_delta_displayed": "0.000610000",
4767 "frame.time_relative": "5489.641175000",
4768 "frame.number": "6766",
4770 "frame.cap_len": "95",
4771 "frame.marked": "0",
4772 "frame.ignored": "0",
4773 "frame.protocols": "eth:ethertype:ip:udp:dns",
4774 "frame.coloring_rule.name": "UDP",
4775 "frame.coloring_rule.string": "udp"
4778 "eth.dst": "00:17:88:69:ee:e4",
4780 "eth.dst_resolved": "PhilipsL_69:ee:e4",
4781 "eth.addr": "00:17:88:69:ee:e4",
4782 "eth.addr_resolved": "PhilipsL_69:ee:e4",
4786 "eth.src": "b0:b9:8a:73:69:8e",
4788 "eth.src_resolved": "Netgear_73:69:8e",
4789 "eth.addr": "b0:b9:8a:73:69:8e",
4790 "eth.addr_resolved": "Netgear_73:69:8e",
4794 "eth.type": "0x00000800"
4799 "ip.dsfield": "0x00000000",
4800 "ip.dsfield_tree": {
4801 "ip.dsfield.dscp": "0",
4802 "ip.dsfield.ecn": "0"
4805 "ip.id": "0x00003f97",
4806 "ip.flags": "0x00000002",
4812 "ip.frag_offset": "0",
4815 "ip.checksum": "0x00007913",
4816 "ip.checksum.status": "2",
4817 "ip.src": "192.168.0.1",
4818 "ip.addr": "192.168.0.1",
4819 "ip.src_host": "192.168.0.1",
4820 "ip.host": "192.168.0.1",
4821 "ip.dst": "192.168.0.160",
4822 "ip.addr": "192.168.0.160",
4823 "ip.dst_host": "192.168.0.160",
4824 "ip.host": "192.168.0.160",
4825 "Source GeoIP: Unknown": "",
4826 "Destination GeoIP: Unknown": ""
4829 "udp.srcport": "53",
4830 "udp.dstport": "60660",
4832 "udp.port": "60660",
4834 "udp.checksum": "0x00008240",
4835 "udp.checksum.status": "2",
4839 "dns.response_to": "6765",
4840 "dns.time": "0.000610000",
4841 "dns.id": "0x00000495",
4842 "dns.flags": "0x00008180",
4844 "dns.flags.response": "1",
4845 "dns.flags.opcode": "0",
4846 "dns.flags.authoritative": "0",
4847 "dns.flags.truncated": "0",
4848 "dns.flags.recdesired": "1",
4849 "dns.flags.recavail": "1",
4851 "dns.flags.authenticated": "0",
4852 "dns.flags.checkdisable": "0",
4853 "dns.flags.rcode": "0"
4855 "dns.count.queries": "1",
4856 "dns.count.answers": "1",
4857 "dns.count.auth_rr": "0",
4858 "dns.count.add_rr": "0",
4860 "dcp.cpp.philips.com: type A, class IN": {
4861 "dns.qry.name": "dcp.cpp.philips.com",
4862 "dns.qry.name.len": "19",
4863 "dns.count.labels": "4",
4864 "dns.qry.type": "1",
4865 "dns.qry.class": "0x00000001"
4869 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
4870 "dns.resp.name": "dcp.cpp.philips.com",
4871 "dns.resp.type": "1",
4872 "dns.resp.class": "0x00000001",
4873 "dns.resp.ttl": "2984",
4874 "dns.resp.len": "4",
4875 "dns.a": "5.79.62.93"
4884 "_index": "packets-2017-10-26",
4885 "_type": "pcap_file",
4890 "frame.encap_type": "1",
4891 "frame.time": "Oct 19, 2017 18:37:51.778249000 PDT",
4892 "frame.offset_shift": "0.000000000",
4893 "frame.time_epoch": "1508463471.778249000",
4894 "frame.time_delta": "3.324074000",
4895 "frame.time_delta_displayed": "269.731870000",
4896 "frame.time_relative": "5759.373045000",
4897 "frame.number": "7048",
4899 "frame.cap_len": "76",
4900 "frame.marked": "0",
4901 "frame.ignored": "0",
4902 "frame.protocols": "eth:ethertype:ip:udp:dns",
4903 "frame.coloring_rule.name": "UDP",
4904 "frame.coloring_rule.string": "udp"
4907 "eth.dst": "b0:b9:8a:73:69:8e",
4909 "eth.dst_resolved": "Netgear_73:69:8e",
4910 "eth.addr": "b0:b9:8a:73:69:8e",
4911 "eth.addr_resolved": "Netgear_73:69:8e",
4915 "eth.src": "00:17:88:69:ee:e4",
4917 "eth.src_resolved": "PhilipsL_69:ee:e4",
4918 "eth.addr": "00:17:88:69:ee:e4",
4919 "eth.addr_resolved": "PhilipsL_69:ee:e4",
4923 "eth.type": "0x00000800"
4928 "ip.dsfield": "0x00000000",
4929 "ip.dsfield_tree": {
4930 "ip.dsfield.dscp": "0",
4931 "ip.dsfield.ecn": "0"
4934 "ip.id": "0x00001dd7",
4935 "ip.flags": "0x00000002",
4941 "ip.frag_offset": "0",
4944 "ip.checksum": "0x00009ae6",
4945 "ip.checksum.status": "2",
4946 "ip.src": "192.168.0.160",
4947 "ip.addr": "192.168.0.160",
4948 "ip.src_host": "192.168.0.160",
4949 "ip.host": "192.168.0.160",
4950 "ip.dst": "192.168.0.1",
4951 "ip.addr": "192.168.0.1",
4952 "ip.dst_host": "192.168.0.1",
4953 "ip.host": "192.168.0.1",
4954 "Source GeoIP: Unknown": "",
4955 "Destination GeoIP: Unknown": ""
4958 "udp.srcport": "36809",
4959 "udp.dstport": "53",
4960 "udp.port": "36809",
4963 "udp.checksum": "0x0000c958",
4964 "udp.checksum.status": "2",
4968 "dns.response_in": "7049",
4969 "dns.id": "0x00000496",
4970 "dns.flags": "0x00000100",
4972 "dns.flags.response": "0",
4973 "dns.flags.opcode": "0",
4974 "dns.flags.truncated": "0",
4975 "dns.flags.recdesired": "1",
4977 "dns.flags.checkdisable": "0"
4979 "dns.count.queries": "1",
4980 "dns.count.answers": "0",
4981 "dns.count.auth_rr": "0",
4982 "dns.count.add_rr": "0",
4984 "www2.meethue.com: type A, class IN": {
4985 "dns.qry.name": "www2.meethue.com",
4986 "dns.qry.name.len": "16",
4987 "dns.count.labels": "3",
4988 "dns.qry.type": "1",
4989 "dns.qry.class": "0x00000001"
4998 "_index": "packets-2017-10-26",
4999 "_type": "pcap_file",
5004 "frame.encap_type": "1",
5005 "frame.time": "Oct 19, 2017 18:37:51.799436000 PDT",
5006 "frame.offset_shift": "0.000000000",
5007 "frame.time_epoch": "1508463471.799436000",
5008 "frame.time_delta": "0.021187000",
5009 "frame.time_delta_displayed": "0.021187000",
5010 "frame.time_relative": "5759.394232000",
5011 "frame.number": "7049",
5013 "frame.cap_len": "513",
5014 "frame.marked": "0",
5015 "frame.ignored": "0",
5016 "frame.protocols": "eth:ethertype:ip:udp:dns",
5017 "frame.coloring_rule.name": "UDP",
5018 "frame.coloring_rule.string": "udp"
5021 "eth.dst": "00:17:88:69:ee:e4",
5023 "eth.dst_resolved": "PhilipsL_69:ee:e4",
5024 "eth.addr": "00:17:88:69:ee:e4",
5025 "eth.addr_resolved": "PhilipsL_69:ee:e4",
5029 "eth.src": "b0:b9:8a:73:69:8e",
5031 "eth.src_resolved": "Netgear_73:69:8e",
5032 "eth.addr": "b0:b9:8a:73:69:8e",
5033 "eth.addr_resolved": "Netgear_73:69:8e",
5037 "eth.type": "0x00000800"
5042 "ip.dsfield": "0x00000000",
5043 "ip.dsfield_tree": {
5044 "ip.dsfield.dscp": "0",
5045 "ip.dsfield.ecn": "0"
5048 "ip.id": "0x0000431d",
5049 "ip.flags": "0x00000002",
5055 "ip.frag_offset": "0",
5058 "ip.checksum": "0x000073eb",
5059 "ip.checksum.status": "2",
5060 "ip.src": "192.168.0.1",
5061 "ip.addr": "192.168.0.1",
5062 "ip.src_host": "192.168.0.1",
5063 "ip.host": "192.168.0.1",
5064 "ip.dst": "192.168.0.160",
5065 "ip.addr": "192.168.0.160",
5066 "ip.dst_host": "192.168.0.160",
5067 "ip.host": "192.168.0.160",
5068 "Source GeoIP: Unknown": "",
5069 "Destination GeoIP: Unknown": ""
5072 "udp.srcport": "53",
5073 "udp.dstport": "36809",
5075 "udp.port": "36809",
5076 "udp.length": "479",
5077 "udp.checksum": "0x000083e2",
5078 "udp.checksum.status": "2",
5082 "dns.response_to": "7048",
5083 "dns.time": "0.021187000",
5084 "dns.id": "0x00000496",
5085 "dns.flags": "0x00008180",
5087 "dns.flags.response": "1",
5088 "dns.flags.opcode": "0",
5089 "dns.flags.authoritative": "0",
5090 "dns.flags.truncated": "0",
5091 "dns.flags.recdesired": "1",
5092 "dns.flags.recavail": "1",
5094 "dns.flags.authenticated": "0",
5095 "dns.flags.checkdisable": "0",
5096 "dns.flags.rcode": "0"
5098 "dns.count.queries": "1",
5099 "dns.count.answers": "4",
5100 "dns.count.auth_rr": "9",
5101 "dns.count.add_rr": "9",
5103 "www2.meethue.com: type A, class IN": {
5104 "dns.qry.name": "www2.meethue.com",
5105 "dns.qry.name.len": "16",
5106 "dns.count.labels": "3",
5107 "dns.qry.type": "1",
5108 "dns.qry.class": "0x00000001"
5112 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
5113 "dns.resp.name": "www2.meethue.com",
5114 "dns.resp.type": "5",
5115 "dns.resp.class": "0x00000001",
5116 "dns.resp.ttl": "116",
5117 "dns.resp.len": "41",
5118 "dns.cname": "brands.lighting.philips.com.edgekey.net"
5120 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
5121 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
5122 "dns.resp.type": "5",
5123 "dns.resp.class": "0x00000001",
5124 "dns.resp.ttl": "7913",
5125 "dns.resp.len": "22",
5126 "dns.cname": "e15361.b.akamaiedge.net"
5128 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.113": {
5129 "dns.resp.name": "e15361.b.akamaiedge.net",
5130 "dns.resp.type": "1",
5131 "dns.resp.class": "0x00000001",
5132 "dns.resp.ttl": "20",
5133 "dns.resp.len": "4",
5134 "dns.a": "173.223.52.113"
5136 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
5137 "dns.resp.name": "e15361.b.akamaiedge.net",
5138 "dns.resp.type": "1",
5139 "dns.resp.class": "0x00000001",
5140 "dns.resp.ttl": "20",
5141 "dns.resp.len": "4",
5142 "dns.a": "173.223.52.125"
5145 "Authoritative nameservers": {
5146 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
5147 "dns.resp.name": "b.akamaiedge.net",
5148 "dns.resp.type": "2",
5149 "dns.resp.class": "0x00000001",
5150 "dns.resp.ttl": "87",
5151 "dns.resp.len": "6",
5152 "dns.ns": "n5b.akamaiedge.net"
5154 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
5155 "dns.resp.name": "b.akamaiedge.net",
5156 "dns.resp.type": "2",
5157 "dns.resp.class": "0x00000001",
5158 "dns.resp.ttl": "87",
5159 "dns.resp.len": "6",
5160 "dns.ns": "n3b.akamaiedge.net"
5162 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
5163 "dns.resp.name": "b.akamaiedge.net",
5164 "dns.resp.type": "2",
5165 "dns.resp.class": "0x00000001",
5166 "dns.resp.ttl": "87",
5167 "dns.resp.len": "6",
5168 "dns.ns": "n7b.akamaiedge.net"
5170 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
5171 "dns.resp.name": "b.akamaiedge.net",
5172 "dns.resp.type": "2",
5173 "dns.resp.class": "0x00000001",
5174 "dns.resp.ttl": "87",
5175 "dns.resp.len": "6",
5176 "dns.ns": "a0b.akamaiedge.net"
5178 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
5179 "dns.resp.name": "b.akamaiedge.net",
5180 "dns.resp.type": "2",
5181 "dns.resp.class": "0x00000001",
5182 "dns.resp.ttl": "87",
5183 "dns.resp.len": "6",
5184 "dns.ns": "n6b.akamaiedge.net"
5186 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
5187 "dns.resp.name": "b.akamaiedge.net",
5188 "dns.resp.type": "2",
5189 "dns.resp.class": "0x00000001",
5190 "dns.resp.ttl": "87",
5191 "dns.resp.len": "6",
5192 "dns.ns": "n0b.akamaiedge.net"
5194 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
5195 "dns.resp.name": "b.akamaiedge.net",
5196 "dns.resp.type": "2",
5197 "dns.resp.class": "0x00000001",
5198 "dns.resp.ttl": "87",
5199 "dns.resp.len": "6",
5200 "dns.ns": "n4b.akamaiedge.net"
5202 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
5203 "dns.resp.name": "b.akamaiedge.net",
5204 "dns.resp.type": "2",
5205 "dns.resp.class": "0x00000001",
5206 "dns.resp.ttl": "87",
5207 "dns.resp.len": "6",
5208 "dns.ns": "n2b.akamaiedge.net"
5210 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
5211 "dns.resp.name": "b.akamaiedge.net",
5212 "dns.resp.type": "2",
5213 "dns.resp.class": "0x00000001",
5214 "dns.resp.ttl": "87",
5215 "dns.resp.len": "6",
5216 "dns.ns": "n1b.akamaiedge.net"
5219 "Additional records": {
5220 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
5221 "dns.resp.name": "n0b.akamaiedge.net",
5222 "dns.resp.type": "1",
5223 "dns.resp.class": "0x00000001",
5224 "dns.resp.ttl": "2396",
5225 "dns.resp.len": "4",
5226 "dns.a": "88.221.81.192"
5228 "n1b.akamaiedge.net: type A, class IN, addr 184.51.200.159": {
5229 "dns.resp.name": "n1b.akamaiedge.net",
5230 "dns.resp.type": "1",
5231 "dns.resp.class": "0x00000001",
5232 "dns.resp.ttl": "5116",
5233 "dns.resp.len": "4",
5234 "dns.a": "184.51.200.159"
5236 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
5237 "dns.resp.name": "n2b.akamaiedge.net",
5238 "dns.resp.type": "1",
5239 "dns.resp.class": "0x00000001",
5240 "dns.resp.ttl": "5618",
5241 "dns.resp.len": "4",
5242 "dns.a": "96.17.70.188"
5244 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.190": {
5245 "dns.resp.name": "n3b.akamaiedge.net",
5246 "dns.resp.type": "1",
5247 "dns.resp.class": "0x00000001",
5248 "dns.resp.ttl": "1801",
5249 "dns.resp.len": "4",
5250 "dns.a": "96.17.70.190"
5252 "n4b.akamaiedge.net: type A, class IN, addr 165.254.134.244": {
5253 "dns.resp.name": "n4b.akamaiedge.net",
5254 "dns.resp.type": "1",
5255 "dns.resp.class": "0x00000001",
5256 "dns.resp.ttl": "2709",
5257 "dns.resp.len": "4",
5258 "dns.a": "165.254.134.244"
5260 "n5b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
5261 "dns.resp.name": "n5b.akamaiedge.net",
5262 "dns.resp.type": "1",
5263 "dns.resp.class": "0x00000001",
5264 "dns.resp.ttl": "6458",
5265 "dns.resp.len": "4",
5266 "dns.a": "165.254.16.89"
5268 "n6b.akamaiedge.net: type A, class IN, addr 184.51.200.166": {
5269 "dns.resp.name": "n6b.akamaiedge.net",
5270 "dns.resp.type": "1",
5271 "dns.resp.class": "0x00000001",
5272 "dns.resp.ttl": "2256",
5273 "dns.resp.len": "4",
5274 "dns.a": "184.51.200.166"
5276 "n7b.akamaiedge.net: type A, class IN, addr 165.254.16.92": {
5277 "dns.resp.name": "n7b.akamaiedge.net",
5278 "dns.resp.type": "1",
5279 "dns.resp.class": "0x00000001",
5280 "dns.resp.ttl": "4319",
5281 "dns.resp.len": "4",
5282 "dns.a": "165.254.16.92"
5284 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
5285 "dns.resp.name": "a0b.akamaiedge.net",
5286 "dns.resp.type": "28",
5287 "dns.resp.class": "0x00000001",
5288 "dns.resp.ttl": "3092",
5289 "dns.resp.len": "16",
5290 "dns.aaaa": "2600:1480:e800::c0"
5299 "_index": "packets-2017-10-26",
5300 "_type": "pcap_file",
5305 "frame.encap_type": "1",
5306 "frame.time": "Oct 19, 2017 18:52:51.807701000 PDT",
5307 "frame.offset_shift": "0.000000000",
5308 "frame.time_epoch": "1508464371.807701000",
5309 "frame.time_delta": "0.379478000",
5310 "frame.time_delta_displayed": "900.008265000",
5311 "frame.time_relative": "6659.402497000",
5312 "frame.number": "7913",
5314 "frame.cap_len": "76",
5315 "frame.marked": "0",
5316 "frame.ignored": "0",
5317 "frame.protocols": "eth:ethertype:ip:udp:dns",
5318 "frame.coloring_rule.name": "UDP",
5319 "frame.coloring_rule.string": "udp"
5322 "eth.dst": "b0:b9:8a:73:69:8e",
5324 "eth.dst_resolved": "Netgear_73:69:8e",
5325 "eth.addr": "b0:b9:8a:73:69:8e",
5326 "eth.addr_resolved": "Netgear_73:69:8e",
5330 "eth.src": "00:17:88:69:ee:e4",
5332 "eth.src_resolved": "PhilipsL_69:ee:e4",
5333 "eth.addr": "00:17:88:69:ee:e4",
5334 "eth.addr_resolved": "PhilipsL_69:ee:e4",
5338 "eth.type": "0x00000800"
5343 "ip.dsfield": "0x00000000",
5344 "ip.dsfield_tree": {
5345 "ip.dsfield.dscp": "0",
5346 "ip.dsfield.ecn": "0"
5349 "ip.id": "0x00009e02",
5350 "ip.flags": "0x00000002",
5356 "ip.frag_offset": "0",
5359 "ip.checksum": "0x00001abb",
5360 "ip.checksum.status": "2",
5361 "ip.src": "192.168.0.160",
5362 "ip.addr": "192.168.0.160",
5363 "ip.src_host": "192.168.0.160",
5364 "ip.host": "192.168.0.160",
5365 "ip.dst": "192.168.0.1",
5366 "ip.addr": "192.168.0.1",
5367 "ip.dst_host": "192.168.0.1",
5368 "ip.host": "192.168.0.1",
5369 "Source GeoIP: Unknown": "",
5370 "Destination GeoIP: Unknown": ""
5373 "udp.srcport": "47598",
5374 "udp.dstport": "53",
5375 "udp.port": "47598",
5378 "udp.checksum": "0x00009f32",
5379 "udp.checksum.status": "2",
5383 "dns.response_in": "7914",
5384 "dns.id": "0x00000497",
5385 "dns.flags": "0x00000100",
5387 "dns.flags.response": "0",
5388 "dns.flags.opcode": "0",
5389 "dns.flags.truncated": "0",
5390 "dns.flags.recdesired": "1",
5392 "dns.flags.checkdisable": "0"
5394 "dns.count.queries": "1",
5395 "dns.count.answers": "0",
5396 "dns.count.auth_rr": "0",
5397 "dns.count.add_rr": "0",
5399 "www2.meethue.com: type A, class IN": {
5400 "dns.qry.name": "www2.meethue.com",
5401 "dns.qry.name.len": "16",
5402 "dns.count.labels": "3",
5403 "dns.qry.type": "1",
5404 "dns.qry.class": "0x00000001"
5413 "_index": "packets-2017-10-26",
5414 "_type": "pcap_file",
5419 "frame.encap_type": "1",
5420 "frame.time": "Oct 19, 2017 18:52:51.814443000 PDT",
5421 "frame.offset_shift": "0.000000000",
5422 "frame.time_epoch": "1508464371.814443000",
5423 "frame.time_delta": "0.006742000",
5424 "frame.time_delta_displayed": "0.006742000",
5425 "frame.time_relative": "6659.409239000",
5426 "frame.number": "7914",
5428 "frame.cap_len": "467",
5429 "frame.marked": "0",
5430 "frame.ignored": "0",
5431 "frame.protocols": "eth:ethertype:ip:udp:dns",
5432 "frame.coloring_rule.name": "UDP",
5433 "frame.coloring_rule.string": "udp"
5436 "eth.dst": "00:17:88:69:ee:e4",
5438 "eth.dst_resolved": "PhilipsL_69:ee:e4",
5439 "eth.addr": "00:17:88:69:ee:e4",
5440 "eth.addr_resolved": "PhilipsL_69:ee:e4",
5444 "eth.src": "b0:b9:8a:73:69:8e",
5446 "eth.src_resolved": "Netgear_73:69:8e",
5447 "eth.addr": "b0:b9:8a:73:69:8e",
5448 "eth.addr_resolved": "Netgear_73:69:8e",
5452 "eth.type": "0x00000800"
5457 "ip.dsfield": "0x00000000",
5458 "ip.dsfield_tree": {
5459 "ip.dsfield.dscp": "0",
5460 "ip.dsfield.ecn": "0"
5463 "ip.id": "0x0000e205",
5464 "ip.flags": "0x00000002",
5470 "ip.frag_offset": "0",
5473 "ip.checksum": "0x0000d530",
5474 "ip.checksum.status": "2",
5475 "ip.src": "192.168.0.1",
5476 "ip.addr": "192.168.0.1",
5477 "ip.src_host": "192.168.0.1",
5478 "ip.host": "192.168.0.1",
5479 "ip.dst": "192.168.0.160",
5480 "ip.addr": "192.168.0.160",
5481 "ip.dst_host": "192.168.0.160",
5482 "ip.host": "192.168.0.160",
5483 "Source GeoIP: Unknown": "",
5484 "Destination GeoIP: Unknown": ""
5487 "udp.srcport": "53",
5488 "udp.dstport": "47598",
5490 "udp.port": "47598",
5491 "udp.length": "433",
5492 "udp.checksum": "0x000083b4",
5493 "udp.checksum.status": "2",
5497 "dns.response_to": "7913",
5498 "dns.time": "0.006742000",
5499 "dns.id": "0x00000497",
5500 "dns.flags": "0x00008180",
5502 "dns.flags.response": "1",
5503 "dns.flags.opcode": "0",
5504 "dns.flags.authoritative": "0",
5505 "dns.flags.truncated": "0",
5506 "dns.flags.recdesired": "1",
5507 "dns.flags.recavail": "1",
5509 "dns.flags.authenticated": "0",
5510 "dns.flags.checkdisable": "0",
5511 "dns.flags.rcode": "0"
5513 "dns.count.queries": "1",
5514 "dns.count.answers": "4",
5515 "dns.count.auth_rr": "8",
5516 "dns.count.add_rr": "8",
5518 "www2.meethue.com: type A, class IN": {
5519 "dns.qry.name": "www2.meethue.com",
5520 "dns.qry.name.len": "16",
5521 "dns.count.labels": "3",
5522 "dns.qry.type": "1",
5523 "dns.qry.class": "0x00000001"
5527 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
5528 "dns.resp.name": "www2.meethue.com",
5529 "dns.resp.type": "5",
5530 "dns.resp.class": "0x00000001",
5531 "dns.resp.ttl": "142",
5532 "dns.resp.len": "41",
5533 "dns.cname": "brands.lighting.philips.com.edgekey.net"
5535 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
5536 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
5537 "dns.resp.type": "5",
5538 "dns.resp.class": "0x00000001",
5539 "dns.resp.ttl": "8611",
5540 "dns.resp.len": "22",
5541 "dns.cname": "e15361.b.akamaiedge.net"
5543 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.113": {
5544 "dns.resp.name": "e15361.b.akamaiedge.net",
5545 "dns.resp.type": "1",
5546 "dns.resp.class": "0x00000001",
5547 "dns.resp.ttl": "20",
5548 "dns.resp.len": "4",
5549 "dns.a": "173.223.52.113"
5551 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
5552 "dns.resp.name": "e15361.b.akamaiedge.net",
5553 "dns.resp.type": "1",
5554 "dns.resp.class": "0x00000001",
5555 "dns.resp.ttl": "20",
5556 "dns.resp.len": "4",
5557 "dns.a": "173.223.52.125"
5560 "Authoritative nameservers": {
5561 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
5562 "dns.resp.name": "b.akamaiedge.net",
5563 "dns.resp.type": "2",
5564 "dns.resp.class": "0x00000001",
5565 "dns.resp.ttl": "275",
5566 "dns.resp.len": "6",
5567 "dns.ns": "n1b.akamaiedge.net"
5569 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
5570 "dns.resp.name": "b.akamaiedge.net",
5571 "dns.resp.type": "2",
5572 "dns.resp.class": "0x00000001",
5573 "dns.resp.ttl": "275",
5574 "dns.resp.len": "6",
5575 "dns.ns": "n5b.akamaiedge.net"
5577 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
5578 "dns.resp.name": "b.akamaiedge.net",
5579 "dns.resp.type": "2",
5580 "dns.resp.class": "0x00000001",
5581 "dns.resp.ttl": "275",
5582 "dns.resp.len": "6",
5583 "dns.ns": "n0b.akamaiedge.net"
5585 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
5586 "dns.resp.name": "b.akamaiedge.net",
5587 "dns.resp.type": "2",
5588 "dns.resp.class": "0x00000001",
5589 "dns.resp.ttl": "275",
5590 "dns.resp.len": "6",
5591 "dns.ns": "n2b.akamaiedge.net"
5593 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
5594 "dns.resp.name": "b.akamaiedge.net",
5595 "dns.resp.type": "2",
5596 "dns.resp.class": "0x00000001",
5597 "dns.resp.ttl": "275",
5598 "dns.resp.len": "6",
5599 "dns.ns": "n4b.akamaiedge.net"
5601 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
5602 "dns.resp.name": "b.akamaiedge.net",
5603 "dns.resp.type": "2",
5604 "dns.resp.class": "0x00000001",
5605 "dns.resp.ttl": "275",
5606 "dns.resp.len": "6",
5607 "dns.ns": "n3b.akamaiedge.net"
5609 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
5610 "dns.resp.name": "b.akamaiedge.net",
5611 "dns.resp.type": "2",
5612 "dns.resp.class": "0x00000001",
5613 "dns.resp.ttl": "275",
5614 "dns.resp.len": "6",
5615 "dns.ns": "n6b.akamaiedge.net"
5617 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
5618 "dns.resp.name": "b.akamaiedge.net",
5619 "dns.resp.type": "2",
5620 "dns.resp.class": "0x00000001",
5621 "dns.resp.ttl": "275",
5622 "dns.resp.len": "6",
5623 "dns.ns": "n7b.akamaiedge.net"
5626 "Additional records": {
5627 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
5628 "dns.resp.name": "n0b.akamaiedge.net",
5629 "dns.resp.type": "1",
5630 "dns.resp.class": "0x00000001",
5631 "dns.resp.ttl": "3797",
5632 "dns.resp.len": "4",
5633 "dns.a": "88.221.81.192"
5635 "n1b.akamaiedge.net: type A, class IN, addr 165.254.134.240": {
5636 "dns.resp.name": "n1b.akamaiedge.net",
5637 "dns.resp.type": "1",
5638 "dns.resp.class": "0x00000001",
5639 "dns.resp.ttl": "338",
5640 "dns.resp.len": "4",
5641 "dns.a": "165.254.134.240"
5643 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
5644 "dns.resp.name": "n2b.akamaiedge.net",
5645 "dns.resp.type": "1",
5646 "dns.resp.class": "0x00000001",
5647 "dns.resp.ttl": "3114",
5648 "dns.resp.len": "4",
5649 "dns.a": "165.254.16.89"
5651 "n3b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
5652 "dns.resp.name": "n3b.akamaiedge.net",
5653 "dns.resp.type": "1",
5654 "dns.resp.class": "0x00000001",
5655 "dns.resp.ttl": "3177",
5656 "dns.resp.len": "4",
5657 "dns.a": "173.197.192.229"
5659 "n4b.akamaiedge.net: type A, class IN, addr 173.197.192.230": {
5660 "dns.resp.name": "n4b.akamaiedge.net",
5661 "dns.resp.type": "1",
5662 "dns.resp.class": "0x00000001",
5663 "dns.resp.ttl": "5586",
5664 "dns.resp.len": "4",
5665 "dns.a": "173.197.192.230"
5667 "n5b.akamaiedge.net: type A, class IN, addr 165.254.134.244": {
5668 "dns.resp.name": "n5b.akamaiedge.net",
5669 "dns.resp.type": "1",
5670 "dns.resp.class": "0x00000001",
5671 "dns.resp.ttl": "141",
5672 "dns.resp.len": "4",
5673 "dns.a": "165.254.134.244"
5675 "n6b.akamaiedge.net: type A, class IN, addr 173.197.192.234": {
5676 "dns.resp.name": "n6b.akamaiedge.net",
5677 "dns.resp.type": "1",
5678 "dns.resp.class": "0x00000001",
5679 "dns.resp.ttl": "3720",
5680 "dns.resp.len": "4",
5681 "dns.a": "173.197.192.234"
5683 "n7b.akamaiedge.net: type A, class IN, addr 165.254.16.92": {
5684 "dns.resp.name": "n7b.akamaiedge.net",
5685 "dns.resp.type": "1",
5686 "dns.resp.class": "0x00000001",
5687 "dns.resp.ttl": "3824",
5688 "dns.resp.len": "4",
5689 "dns.a": "165.254.16.92"
5698 "_index": "packets-2017-10-26",
5699 "_type": "pcap_file",
5704 "frame.encap_type": "1",
5705 "frame.time": "Oct 19, 2017 19:07:51.823654000 PDT",
5706 "frame.offset_shift": "0.000000000",
5707 "frame.time_epoch": "1508465271.823654000",
5708 "frame.time_delta": "3.748666000",
5709 "frame.time_delta_displayed": "900.009211000",
5710 "frame.time_relative": "7559.418450000",
5711 "frame.number": "8671",
5713 "frame.cap_len": "76",
5714 "frame.marked": "0",
5715 "frame.ignored": "0",
5716 "frame.protocols": "eth:ethertype:ip:udp:dns",
5717 "frame.coloring_rule.name": "UDP",
5718 "frame.coloring_rule.string": "udp"
5721 "eth.dst": "b0:b9:8a:73:69:8e",
5723 "eth.dst_resolved": "Netgear_73:69:8e",
5724 "eth.addr": "b0:b9:8a:73:69:8e",
5725 "eth.addr_resolved": "Netgear_73:69:8e",
5729 "eth.src": "00:17:88:69:ee:e4",
5731 "eth.src_resolved": "PhilipsL_69:ee:e4",
5732 "eth.addr": "00:17:88:69:ee:e4",
5733 "eth.addr_resolved": "PhilipsL_69:ee:e4",
5737 "eth.type": "0x00000800"
5742 "ip.dsfield": "0x00000000",
5743 "ip.dsfield_tree": {
5744 "ip.dsfield.dscp": "0",
5745 "ip.dsfield.ecn": "0"
5748 "ip.id": "0x0000e910",
5749 "ip.flags": "0x00000002",
5755 "ip.frag_offset": "0",
5758 "ip.checksum": "0x0000cfac",
5759 "ip.checksum.status": "2",
5760 "ip.src": "192.168.0.160",
5761 "ip.addr": "192.168.0.160",
5762 "ip.src_host": "192.168.0.160",
5763 "ip.host": "192.168.0.160",
5764 "ip.dst": "192.168.0.1",
5765 "ip.addr": "192.168.0.1",
5766 "ip.dst_host": "192.168.0.1",
5767 "ip.host": "192.168.0.1",
5768 "Source GeoIP: Unknown": "",
5769 "Destination GeoIP: Unknown": ""
5772 "udp.srcport": "33804",
5773 "udp.dstport": "53",
5774 "udp.port": "33804",
5777 "udp.checksum": "0x0000d513",
5778 "udp.checksum.status": "2",
5782 "dns.response_in": "8672",
5783 "dns.id": "0x00000498",
5784 "dns.flags": "0x00000100",
5786 "dns.flags.response": "0",
5787 "dns.flags.opcode": "0",
5788 "dns.flags.truncated": "0",
5789 "dns.flags.recdesired": "1",
5791 "dns.flags.checkdisable": "0"
5793 "dns.count.queries": "1",
5794 "dns.count.answers": "0",
5795 "dns.count.auth_rr": "0",
5796 "dns.count.add_rr": "0",
5798 "www2.meethue.com: type A, class IN": {
5799 "dns.qry.name": "www2.meethue.com",
5800 "dns.qry.name.len": "16",
5801 "dns.count.labels": "3",
5802 "dns.qry.type": "1",
5803 "dns.qry.class": "0x00000001"
5812 "_index": "packets-2017-10-26",
5813 "_type": "pcap_file",
5818 "frame.encap_type": "1",
5819 "frame.time": "Oct 19, 2017 19:07:51.884431000 PDT",
5820 "frame.offset_shift": "0.000000000",
5821 "frame.time_epoch": "1508465271.884431000",
5822 "frame.time_delta": "0.060777000",
5823 "frame.time_delta_displayed": "0.060777000",
5824 "frame.time_relative": "7559.479227000",
5825 "frame.number": "8672",
5827 "frame.cap_len": "513",
5828 "frame.marked": "0",
5829 "frame.ignored": "0",
5830 "frame.protocols": "eth:ethertype:ip:udp:dns",
5831 "frame.coloring_rule.name": "UDP",
5832 "frame.coloring_rule.string": "udp"
5835 "eth.dst": "00:17:88:69:ee:e4",
5837 "eth.dst_resolved": "PhilipsL_69:ee:e4",
5838 "eth.addr": "00:17:88:69:ee:e4",
5839 "eth.addr_resolved": "PhilipsL_69:ee:e4",
5843 "eth.src": "b0:b9:8a:73:69:8e",
5845 "eth.src_resolved": "Netgear_73:69:8e",
5846 "eth.addr": "b0:b9:8a:73:69:8e",
5847 "eth.addr_resolved": "Netgear_73:69:8e",
5851 "eth.type": "0x00000800"
5856 "ip.dsfield": "0x00000000",
5857 "ip.dsfield_tree": {
5858 "ip.dsfield.dscp": "0",
5859 "ip.dsfield.ecn": "0"
5862 "ip.id": "0x00004cdb",
5863 "ip.flags": "0x00000002",
5869 "ip.frag_offset": "0",
5872 "ip.checksum": "0x00006a2d",
5873 "ip.checksum.status": "2",
5874 "ip.src": "192.168.0.1",
5875 "ip.addr": "192.168.0.1",
5876 "ip.src_host": "192.168.0.1",
5877 "ip.host": "192.168.0.1",
5878 "ip.dst": "192.168.0.160",
5879 "ip.addr": "192.168.0.160",
5880 "ip.dst_host": "192.168.0.160",
5881 "ip.host": "192.168.0.160",
5882 "Source GeoIP: Unknown": "",
5883 "Destination GeoIP: Unknown": ""
5886 "udp.srcport": "53",
5887 "udp.dstport": "33804",
5889 "udp.port": "33804",
5890 "udp.length": "479",
5891 "udp.checksum": "0x000083e2",
5892 "udp.checksum.status": "2",
5896 "dns.response_to": "8671",
5897 "dns.time": "0.060777000",
5898 "dns.id": "0x00000498",
5899 "dns.flags": "0x00008180",
5901 "dns.flags.response": "1",
5902 "dns.flags.opcode": "0",
5903 "dns.flags.authoritative": "0",
5904 "dns.flags.truncated": "0",
5905 "dns.flags.recdesired": "1",
5906 "dns.flags.recavail": "1",
5908 "dns.flags.authenticated": "0",
5909 "dns.flags.checkdisable": "0",
5910 "dns.flags.rcode": "0"
5912 "dns.count.queries": "1",
5913 "dns.count.answers": "4",
5914 "dns.count.auth_rr": "9",
5915 "dns.count.add_rr": "9",
5917 "www2.meethue.com: type A, class IN": {
5918 "dns.qry.name": "www2.meethue.com",
5919 "dns.qry.name.len": "16",
5920 "dns.count.labels": "3",
5921 "dns.qry.type": "1",
5922 "dns.qry.class": "0x00000001"
5926 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
5927 "dns.resp.name": "www2.meethue.com",
5928 "dns.resp.type": "5",
5929 "dns.resp.class": "0x00000001",
5930 "dns.resp.ttl": "116",
5931 "dns.resp.len": "41",
5932 "dns.cname": "brands.lighting.philips.com.edgekey.net"
5934 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
5935 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
5936 "dns.resp.type": "5",
5937 "dns.resp.class": "0x00000001",
5938 "dns.resp.ttl": "6113",
5939 "dns.resp.len": "22",
5940 "dns.cname": "e15361.b.akamaiedge.net"
5942 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.73": {
5943 "dns.resp.name": "e15361.b.akamaiedge.net",
5944 "dns.resp.type": "1",
5945 "dns.resp.class": "0x00000001",
5946 "dns.resp.ttl": "20",
5947 "dns.resp.len": "4",
5948 "dns.a": "173.223.52.73"
5950 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.2": {
5951 "dns.resp.name": "e15361.b.akamaiedge.net",
5952 "dns.resp.type": "1",
5953 "dns.resp.class": "0x00000001",
5954 "dns.resp.ttl": "20",
5955 "dns.resp.len": "4",
5956 "dns.a": "173.223.52.2"
5959 "Authoritative nameservers": {
5960 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
5961 "dns.resp.name": "b.akamaiedge.net",
5962 "dns.resp.type": "2",
5963 "dns.resp.class": "0x00000001",
5964 "dns.resp.ttl": "2288",
5965 "dns.resp.len": "6",
5966 "dns.ns": "n4b.akamaiedge.net"
5968 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
5969 "dns.resp.name": "b.akamaiedge.net",
5970 "dns.resp.type": "2",
5971 "dns.resp.class": "0x00000001",
5972 "dns.resp.ttl": "2288",
5973 "dns.resp.len": "6",
5974 "dns.ns": "a0b.akamaiedge.net"
5976 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
5977 "dns.resp.name": "b.akamaiedge.net",
5978 "dns.resp.type": "2",
5979 "dns.resp.class": "0x00000001",
5980 "dns.resp.ttl": "2288",
5981 "dns.resp.len": "6",
5982 "dns.ns": "n7b.akamaiedge.net"
5984 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
5985 "dns.resp.name": "b.akamaiedge.net",
5986 "dns.resp.type": "2",
5987 "dns.resp.class": "0x00000001",
5988 "dns.resp.ttl": "2288",
5989 "dns.resp.len": "6",
5990 "dns.ns": "n5b.akamaiedge.net"
5992 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
5993 "dns.resp.name": "b.akamaiedge.net",
5994 "dns.resp.type": "2",
5995 "dns.resp.class": "0x00000001",
5996 "dns.resp.ttl": "2288",
5997 "dns.resp.len": "6",
5998 "dns.ns": "n2b.akamaiedge.net"
6000 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
6001 "dns.resp.name": "b.akamaiedge.net",
6002 "dns.resp.type": "2",
6003 "dns.resp.class": "0x00000001",
6004 "dns.resp.ttl": "2288",
6005 "dns.resp.len": "6",
6006 "dns.ns": "n3b.akamaiedge.net"
6008 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
6009 "dns.resp.name": "b.akamaiedge.net",
6010 "dns.resp.type": "2",
6011 "dns.resp.class": "0x00000001",
6012 "dns.resp.ttl": "2288",
6013 "dns.resp.len": "6",
6014 "dns.ns": "n0b.akamaiedge.net"
6016 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
6017 "dns.resp.name": "b.akamaiedge.net",
6018 "dns.resp.type": "2",
6019 "dns.resp.class": "0x00000001",
6020 "dns.resp.ttl": "2288",
6021 "dns.resp.len": "6",
6022 "dns.ns": "n6b.akamaiedge.net"
6024 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
6025 "dns.resp.name": "b.akamaiedge.net",
6026 "dns.resp.type": "2",
6027 "dns.resp.class": "0x00000001",
6028 "dns.resp.ttl": "2288",
6029 "dns.resp.len": "6",
6030 "dns.ns": "n1b.akamaiedge.net"
6033 "Additional records": {
6034 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
6035 "dns.resp.name": "n0b.akamaiedge.net",
6036 "dns.resp.type": "1",
6037 "dns.resp.class": "0x00000001",
6038 "dns.resp.ttl": "596",
6039 "dns.resp.len": "4",
6040 "dns.a": "88.221.81.192"
6042 "n1b.akamaiedge.net: type A, class IN, addr 184.51.200.159": {
6043 "dns.resp.name": "n1b.akamaiedge.net",
6044 "dns.resp.type": "1",
6045 "dns.resp.class": "0x00000001",
6046 "dns.resp.ttl": "3316",
6047 "dns.resp.len": "4",
6048 "dns.a": "184.51.200.159"
6050 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
6051 "dns.resp.name": "n2b.akamaiedge.net",
6052 "dns.resp.type": "1",
6053 "dns.resp.class": "0x00000001",
6054 "dns.resp.ttl": "3818",
6055 "dns.resp.len": "4",
6056 "dns.a": "96.17.70.188"
6058 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.190": {
6059 "dns.resp.name": "n3b.akamaiedge.net",
6060 "dns.resp.type": "1",
6061 "dns.resp.class": "0x00000001",
6062 "dns.resp.ttl": "1",
6063 "dns.resp.len": "4",
6064 "dns.a": "96.17.70.190"
6066 "n4b.akamaiedge.net: type A, class IN, addr 165.254.134.244": {
6067 "dns.resp.name": "n4b.akamaiedge.net",
6068 "dns.resp.type": "1",
6069 "dns.resp.class": "0x00000001",
6070 "dns.resp.ttl": "909",
6071 "dns.resp.len": "4",
6072 "dns.a": "165.254.134.244"
6074 "n5b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
6075 "dns.resp.name": "n5b.akamaiedge.net",
6076 "dns.resp.type": "1",
6077 "dns.resp.class": "0x00000001",
6078 "dns.resp.ttl": "4658",
6079 "dns.resp.len": "4",
6080 "dns.a": "165.254.16.89"
6082 "n6b.akamaiedge.net: type A, class IN, addr 184.51.200.166": {
6083 "dns.resp.name": "n6b.akamaiedge.net",
6084 "dns.resp.type": "1",
6085 "dns.resp.class": "0x00000001",
6086 "dns.resp.ttl": "456",
6087 "dns.resp.len": "4",
6088 "dns.a": "184.51.200.166"
6090 "n7b.akamaiedge.net: type A, class IN, addr 165.254.16.92": {
6091 "dns.resp.name": "n7b.akamaiedge.net",
6092 "dns.resp.type": "1",
6093 "dns.resp.class": "0x00000001",
6094 "dns.resp.ttl": "2519",
6095 "dns.resp.len": "4",
6096 "dns.a": "165.254.16.92"
6098 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
6099 "dns.resp.name": "a0b.akamaiedge.net",
6100 "dns.resp.type": "28",
6101 "dns.resp.class": "0x00000001",
6102 "dns.resp.ttl": "1292",
6103 "dns.resp.len": "16",
6104 "dns.aaaa": "2600:1480:e800::c0"
6113 "_index": "packets-2017-10-26",
6114 "_type": "pcap_file",
6119 "frame.encap_type": "1",
6120 "frame.time": "Oct 19, 2017 19:22:51.895282000 PDT",
6121 "frame.offset_shift": "0.000000000",
6122 "frame.time_epoch": "1508466171.895282000",
6123 "frame.time_delta": "7.109343000",
6124 "frame.time_delta_displayed": "900.010851000",
6125 "frame.time_relative": "8459.490078000",
6126 "frame.number": "9475",
6128 "frame.cap_len": "76",
6129 "frame.marked": "0",
6130 "frame.ignored": "0",
6131 "frame.protocols": "eth:ethertype:ip:udp:dns",
6132 "frame.coloring_rule.name": "UDP",
6133 "frame.coloring_rule.string": "udp"
6136 "eth.dst": "b0:b9:8a:73:69:8e",
6138 "eth.dst_resolved": "Netgear_73:69:8e",
6139 "eth.addr": "b0:b9:8a:73:69:8e",
6140 "eth.addr_resolved": "Netgear_73:69:8e",
6144 "eth.src": "00:17:88:69:ee:e4",
6146 "eth.src_resolved": "PhilipsL_69:ee:e4",
6147 "eth.addr": "00:17:88:69:ee:e4",
6148 "eth.addr_resolved": "PhilipsL_69:ee:e4",
6152 "eth.type": "0x00000800"
6157 "ip.dsfield": "0x00000000",
6158 "ip.dsfield_tree": {
6159 "ip.dsfield.dscp": "0",
6160 "ip.dsfield.ecn": "0"
6163 "ip.id": "0x0000ffbc",
6164 "ip.flags": "0x00000002",
6170 "ip.frag_offset": "0",
6173 "ip.checksum": "0x0000b900",
6174 "ip.checksum.status": "2",
6175 "ip.src": "192.168.0.160",
6176 "ip.addr": "192.168.0.160",
6177 "ip.src_host": "192.168.0.160",
6178 "ip.host": "192.168.0.160",
6179 "ip.dst": "192.168.0.1",
6180 "ip.addr": "192.168.0.1",
6181 "ip.dst_host": "192.168.0.1",
6182 "ip.host": "192.168.0.1",
6183 "Source GeoIP: Unknown": "",
6184 "Destination GeoIP: Unknown": ""
6187 "udp.srcport": "33283",
6188 "udp.dstport": "53",
6189 "udp.port": "33283",
6192 "udp.checksum": "0x0000d71b",
6193 "udp.checksum.status": "2",
6197 "dns.response_in": "9476",
6198 "dns.id": "0x00000499",
6199 "dns.flags": "0x00000100",
6201 "dns.flags.response": "0",
6202 "dns.flags.opcode": "0",
6203 "dns.flags.truncated": "0",
6204 "dns.flags.recdesired": "1",
6206 "dns.flags.checkdisable": "0"
6208 "dns.count.queries": "1",
6209 "dns.count.answers": "0",
6210 "dns.count.auth_rr": "0",
6211 "dns.count.add_rr": "0",
6213 "www2.meethue.com: type A, class IN": {
6214 "dns.qry.name": "www2.meethue.com",
6215 "dns.qry.name.len": "16",
6216 "dns.count.labels": "3",
6217 "dns.qry.type": "1",
6218 "dns.qry.class": "0x00000001"
6227 "_index": "packets-2017-10-26",
6228 "_type": "pcap_file",
6233 "frame.encap_type": "1",
6234 "frame.time": "Oct 19, 2017 19:22:51.906565000 PDT",
6235 "frame.offset_shift": "0.000000000",
6236 "frame.time_epoch": "1508466171.906565000",
6237 "frame.time_delta": "0.011283000",
6238 "frame.time_delta_displayed": "0.011283000",
6239 "frame.time_relative": "8459.501361000",
6240 "frame.number": "9476",
6242 "frame.cap_len": "513",
6243 "frame.marked": "0",
6244 "frame.ignored": "0",
6245 "frame.protocols": "eth:ethertype:ip:udp:dns",
6246 "frame.coloring_rule.name": "UDP",
6247 "frame.coloring_rule.string": "udp"
6250 "eth.dst": "00:17:88:69:ee:e4",
6252 "eth.dst_resolved": "PhilipsL_69:ee:e4",
6253 "eth.addr": "00:17:88:69:ee:e4",
6254 "eth.addr_resolved": "PhilipsL_69:ee:e4",
6258 "eth.src": "b0:b9:8a:73:69:8e",
6260 "eth.src_resolved": "Netgear_73:69:8e",
6261 "eth.addr": "b0:b9:8a:73:69:8e",
6262 "eth.addr_resolved": "Netgear_73:69:8e",
6266 "eth.type": "0x00000800"
6271 "ip.dsfield": "0x00000000",
6272 "ip.dsfield_tree": {
6273 "ip.dsfield.dscp": "0",
6274 "ip.dsfield.ecn": "0"
6277 "ip.id": "0x0000a915",
6278 "ip.flags": "0x00000002",
6284 "ip.frag_offset": "0",
6287 "ip.checksum": "0x00000df3",
6288 "ip.checksum.status": "2",
6289 "ip.src": "192.168.0.1",
6290 "ip.addr": "192.168.0.1",
6291 "ip.src_host": "192.168.0.1",
6292 "ip.host": "192.168.0.1",
6293 "ip.dst": "192.168.0.160",
6294 "ip.addr": "192.168.0.160",
6295 "ip.dst_host": "192.168.0.160",
6296 "ip.host": "192.168.0.160",
6297 "Source GeoIP: Unknown": "",
6298 "Destination GeoIP: Unknown": ""
6301 "udp.srcport": "53",
6302 "udp.dstport": "33283",
6304 "udp.port": "33283",
6305 "udp.length": "479",
6306 "udp.checksum": "0x000083e2",
6307 "udp.checksum.status": "2",
6311 "dns.response_to": "9475",
6312 "dns.time": "0.011283000",
6313 "dns.id": "0x00000499",
6314 "dns.flags": "0x00008180",
6316 "dns.flags.response": "1",
6317 "dns.flags.opcode": "0",
6318 "dns.flags.authoritative": "0",
6319 "dns.flags.truncated": "0",
6320 "dns.flags.recdesired": "1",
6321 "dns.flags.recavail": "1",
6323 "dns.flags.authenticated": "0",
6324 "dns.flags.checkdisable": "0",
6325 "dns.flags.rcode": "0"
6327 "dns.count.queries": "1",
6328 "dns.count.answers": "4",
6329 "dns.count.auth_rr": "9",
6330 "dns.count.add_rr": "9",
6332 "www2.meethue.com: type A, class IN": {
6333 "dns.qry.name": "www2.meethue.com",
6334 "dns.qry.name.len": "16",
6335 "dns.count.labels": "3",
6336 "dns.qry.type": "1",
6337 "dns.qry.class": "0x00000001"
6341 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
6342 "dns.resp.name": "www2.meethue.com",
6343 "dns.resp.type": "5",
6344 "dns.resp.class": "0x00000001",
6345 "dns.resp.ttl": "142",
6346 "dns.resp.len": "41",
6347 "dns.cname": "brands.lighting.philips.com.edgekey.net"
6349 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
6350 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
6351 "dns.resp.type": "5",
6352 "dns.resp.class": "0x00000001",
6353 "dns.resp.ttl": "6811",
6354 "dns.resp.len": "22",
6355 "dns.cname": "e15361.b.akamaiedge.net"
6357 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
6358 "dns.resp.name": "e15361.b.akamaiedge.net",
6359 "dns.resp.type": "1",
6360 "dns.resp.class": "0x00000001",
6361 "dns.resp.ttl": "20",
6362 "dns.resp.len": "4",
6363 "dns.a": "173.223.52.112"
6365 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
6366 "dns.resp.name": "e15361.b.akamaiedge.net",
6367 "dns.resp.type": "1",
6368 "dns.resp.class": "0x00000001",
6369 "dns.resp.ttl": "20",
6370 "dns.resp.len": "4",
6371 "dns.a": "173.223.52.125"
6374 "Authoritative nameservers": {
6375 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
6376 "dns.resp.name": "b.akamaiedge.net",
6377 "dns.resp.type": "2",
6378 "dns.resp.class": "0x00000001",
6379 "dns.resp.ttl": "2475",
6380 "dns.resp.len": "6",
6381 "dns.ns": "n5b.akamaiedge.net"
6383 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
6384 "dns.resp.name": "b.akamaiedge.net",
6385 "dns.resp.type": "2",
6386 "dns.resp.class": "0x00000001",
6387 "dns.resp.ttl": "2475",
6388 "dns.resp.len": "6",
6389 "dns.ns": "a0b.akamaiedge.net"
6391 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
6392 "dns.resp.name": "b.akamaiedge.net",
6393 "dns.resp.type": "2",
6394 "dns.resp.class": "0x00000001",
6395 "dns.resp.ttl": "2475",
6396 "dns.resp.len": "6",
6397 "dns.ns": "n4b.akamaiedge.net"
6399 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
6400 "dns.resp.name": "b.akamaiedge.net",
6401 "dns.resp.type": "2",
6402 "dns.resp.class": "0x00000001",
6403 "dns.resp.ttl": "2475",
6404 "dns.resp.len": "6",
6405 "dns.ns": "n2b.akamaiedge.net"
6407 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
6408 "dns.resp.name": "b.akamaiedge.net",
6409 "dns.resp.type": "2",
6410 "dns.resp.class": "0x00000001",
6411 "dns.resp.ttl": "2475",
6412 "dns.resp.len": "6",
6413 "dns.ns": "n0b.akamaiedge.net"
6415 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
6416 "dns.resp.name": "b.akamaiedge.net",
6417 "dns.resp.type": "2",
6418 "dns.resp.class": "0x00000001",
6419 "dns.resp.ttl": "2475",
6420 "dns.resp.len": "6",
6421 "dns.ns": "n3b.akamaiedge.net"
6423 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
6424 "dns.resp.name": "b.akamaiedge.net",
6425 "dns.resp.type": "2",
6426 "dns.resp.class": "0x00000001",
6427 "dns.resp.ttl": "2475",
6428 "dns.resp.len": "6",
6429 "dns.ns": "n7b.akamaiedge.net"
6431 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
6432 "dns.resp.name": "b.akamaiedge.net",
6433 "dns.resp.type": "2",
6434 "dns.resp.class": "0x00000001",
6435 "dns.resp.ttl": "2475",
6436 "dns.resp.len": "6",
6437 "dns.ns": "n6b.akamaiedge.net"
6439 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
6440 "dns.resp.name": "b.akamaiedge.net",
6441 "dns.resp.type": "2",
6442 "dns.resp.class": "0x00000001",
6443 "dns.resp.ttl": "2475",
6444 "dns.resp.len": "6",
6445 "dns.ns": "n1b.akamaiedge.net"
6448 "Additional records": {
6449 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
6450 "dns.resp.name": "n0b.akamaiedge.net",
6451 "dns.resp.type": "1",
6452 "dns.resp.class": "0x00000001",
6453 "dns.resp.ttl": "1997",
6454 "dns.resp.len": "4",
6455 "dns.a": "88.221.81.192"
6457 "n1b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
6458 "dns.resp.name": "n1b.akamaiedge.net",
6459 "dns.resp.type": "1",
6460 "dns.resp.class": "0x00000001",
6461 "dns.resp.ttl": "6539",
6462 "dns.resp.len": "4",
6463 "dns.a": "204.1.137.41"
6465 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
6466 "dns.resp.name": "n2b.akamaiedge.net",
6467 "dns.resp.type": "1",
6468 "dns.resp.class": "0x00000001",
6469 "dns.resp.ttl": "1314",
6470 "dns.resp.len": "4",
6471 "dns.a": "165.254.16.89"
6473 "n3b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
6474 "dns.resp.name": "n3b.akamaiedge.net",
6475 "dns.resp.type": "1",
6476 "dns.resp.class": "0x00000001",
6477 "dns.resp.ttl": "1377",
6478 "dns.resp.len": "4",
6479 "dns.a": "173.197.192.229"
6481 "n4b.akamaiedge.net: type A, class IN, addr 173.197.192.230": {
6482 "dns.resp.name": "n4b.akamaiedge.net",
6483 "dns.resp.type": "1",
6484 "dns.resp.class": "0x00000001",
6485 "dns.resp.ttl": "3786",
6486 "dns.resp.len": "4",
6487 "dns.a": "173.197.192.230"
6489 "n5b.akamaiedge.net: type A, class IN, addr 204.1.137.37": {
6490 "dns.resp.name": "n5b.akamaiedge.net",
6491 "dns.resp.type": "1",
6492 "dns.resp.class": "0x00000001",
6493 "dns.resp.ttl": "6342",
6494 "dns.resp.len": "4",
6495 "dns.a": "204.1.137.37"
6497 "n6b.akamaiedge.net: type A, class IN, addr 173.197.192.234": {
6498 "dns.resp.name": "n6b.akamaiedge.net",
6499 "dns.resp.type": "1",
6500 "dns.resp.class": "0x00000001",
6501 "dns.resp.ttl": "1920",
6502 "dns.resp.len": "4",
6503 "dns.a": "173.197.192.234"
6505 "n7b.akamaiedge.net: type A, class IN, addr 165.254.16.92": {
6506 "dns.resp.name": "n7b.akamaiedge.net",
6507 "dns.resp.type": "1",
6508 "dns.resp.class": "0x00000001",
6509 "dns.resp.ttl": "2024",
6510 "dns.resp.len": "4",
6511 "dns.a": "165.254.16.92"
6513 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
6514 "dns.resp.name": "a0b.akamaiedge.net",
6515 "dns.resp.type": "28",
6516 "dns.resp.class": "0x00000001",
6517 "dns.resp.ttl": "4475",
6518 "dns.resp.len": "16",
6519 "dns.aaaa": "2600:1480:e800::c0"
6528 "_index": "packets-2017-10-26",
6529 "_type": "pcap_file",
6534 "frame.encap_type": "1",
6535 "frame.time": "Oct 19, 2017 19:33:22.239450000 PDT",
6536 "frame.offset_shift": "0.000000000",
6537 "frame.time_epoch": "1508466802.239450000",
6538 "frame.time_delta": "4.788057000",
6539 "frame.time_delta_displayed": "630.332885000",
6540 "frame.time_relative": "9089.834246000",
6541 "frame.number": "10050",
6543 "frame.cap_len": "79",
6544 "frame.marked": "0",
6545 "frame.ignored": "0",
6546 "frame.protocols": "eth:ethertype:ip:udp:dns",
6547 "frame.coloring_rule.name": "UDP",
6548 "frame.coloring_rule.string": "udp"
6551 "eth.dst": "b0:b9:8a:73:69:8e",
6553 "eth.dst_resolved": "Netgear_73:69:8e",
6554 "eth.addr": "b0:b9:8a:73:69:8e",
6555 "eth.addr_resolved": "Netgear_73:69:8e",
6559 "eth.src": "00:17:88:69:ee:e4",
6561 "eth.src_resolved": "PhilipsL_69:ee:e4",
6562 "eth.addr": "00:17:88:69:ee:e4",
6563 "eth.addr_resolved": "PhilipsL_69:ee:e4",
6567 "eth.type": "0x00000800"
6572 "ip.dsfield": "0x00000000",
6573 "ip.dsfield_tree": {
6574 "ip.dsfield.dscp": "0",
6575 "ip.dsfield.ecn": "0"
6578 "ip.id": "0x0000751c",
6579 "ip.flags": "0x00000002",
6585 "ip.frag_offset": "0",
6588 "ip.checksum": "0x0000439e",
6589 "ip.checksum.status": "2",
6590 "ip.src": "192.168.0.160",
6591 "ip.addr": "192.168.0.160",
6592 "ip.src_host": "192.168.0.160",
6593 "ip.host": "192.168.0.160",
6594 "ip.dst": "192.168.0.1",
6595 "ip.addr": "192.168.0.1",
6596 "ip.dst_host": "192.168.0.1",
6597 "ip.host": "192.168.0.1",
6598 "Source GeoIP: Unknown": "",
6599 "Destination GeoIP: Unknown": ""
6602 "udp.srcport": "51418",
6603 "udp.dstport": "53",
6604 "udp.port": "51418",
6607 "udp.checksum": "0x0000f7c8",
6608 "udp.checksum.status": "2",
6612 "dns.response_in": "10051",
6613 "dns.id": "0x0000049a",
6614 "dns.flags": "0x00000100",
6616 "dns.flags.response": "0",
6617 "dns.flags.opcode": "0",
6618 "dns.flags.truncated": "0",
6619 "dns.flags.recdesired": "1",
6621 "dns.flags.checkdisable": "0"
6623 "dns.count.queries": "1",
6624 "dns.count.answers": "0",
6625 "dns.count.auth_rr": "0",
6626 "dns.count.add_rr": "0",
6628 "dcp.cpp.philips.com: type AAAA, class IN": {
6629 "dns.qry.name": "dcp.cpp.philips.com",
6630 "dns.qry.name.len": "19",
6631 "dns.count.labels": "4",
6632 "dns.qry.type": "28",
6633 "dns.qry.class": "0x00000001"
6642 "_index": "packets-2017-10-26",
6643 "_type": "pcap_file",
6648 "frame.encap_type": "1",
6649 "frame.time": "Oct 19, 2017 19:33:22.241425000 PDT",
6650 "frame.offset_shift": "0.000000000",
6651 "frame.time_epoch": "1508466802.241425000",
6652 "frame.time_delta": "0.001975000",
6653 "frame.time_delta_displayed": "0.001975000",
6654 "frame.time_relative": "9089.836221000",
6655 "frame.number": "10051",
6657 "frame.cap_len": "137",
6658 "frame.marked": "0",
6659 "frame.ignored": "0",
6660 "frame.protocols": "eth:ethertype:ip:udp:dns",
6661 "frame.coloring_rule.name": "UDP",
6662 "frame.coloring_rule.string": "udp"
6665 "eth.dst": "00:17:88:69:ee:e4",
6667 "eth.dst_resolved": "PhilipsL_69:ee:e4",
6668 "eth.addr": "00:17:88:69:ee:e4",
6669 "eth.addr_resolved": "PhilipsL_69:ee:e4",
6673 "eth.src": "b0:b9:8a:73:69:8e",
6675 "eth.src_resolved": "Netgear_73:69:8e",
6676 "eth.addr": "b0:b9:8a:73:69:8e",
6677 "eth.addr_resolved": "Netgear_73:69:8e",
6681 "eth.type": "0x00000800"
6686 "ip.dsfield": "0x00000000",
6687 "ip.dsfield_tree": {
6688 "ip.dsfield.dscp": "0",
6689 "ip.dsfield.ecn": "0"
6692 "ip.id": "0x000030bf",
6693 "ip.flags": "0x00000002",
6699 "ip.frag_offset": "0",
6702 "ip.checksum": "0x000087c1",
6703 "ip.checksum.status": "2",
6704 "ip.src": "192.168.0.1",
6705 "ip.addr": "192.168.0.1",
6706 "ip.src_host": "192.168.0.1",
6707 "ip.host": "192.168.0.1",
6708 "ip.dst": "192.168.0.160",
6709 "ip.addr": "192.168.0.160",
6710 "ip.dst_host": "192.168.0.160",
6711 "ip.host": "192.168.0.160",
6712 "Source GeoIP: Unknown": "",
6713 "Destination GeoIP: Unknown": ""
6716 "udp.srcport": "53",
6717 "udp.dstport": "51418",
6719 "udp.port": "51418",
6720 "udp.length": "103",
6721 "udp.checksum": "0x0000826a",
6722 "udp.checksum.status": "2",
6726 "dns.response_to": "10050",
6727 "dns.time": "0.001975000",
6728 "dns.id": "0x0000049a",
6729 "dns.flags": "0x00008180",
6731 "dns.flags.response": "1",
6732 "dns.flags.opcode": "0",
6733 "dns.flags.authoritative": "0",
6734 "dns.flags.truncated": "0",
6735 "dns.flags.recdesired": "1",
6736 "dns.flags.recavail": "1",
6738 "dns.flags.authenticated": "0",
6739 "dns.flags.checkdisable": "0",
6740 "dns.flags.rcode": "0"
6742 "dns.count.queries": "1",
6743 "dns.count.answers": "0",
6744 "dns.count.auth_rr": "1",
6745 "dns.count.add_rr": "0",
6747 "dcp.cpp.philips.com: type AAAA, class IN": {
6748 "dns.qry.name": "dcp.cpp.philips.com",
6749 "dns.qry.name.len": "19",
6750 "dns.count.labels": "4",
6751 "dns.qry.type": "28",
6752 "dns.qry.class": "0x00000001"
6755 "Authoritative nameservers": {
6756 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
6757 "dns.resp.name": "cpp.philips.com",
6758 "dns.resp.type": "6",
6759 "dns.resp.class": "0x00000001",
6760 "dns.resp.ttl": "1786",
6761 "dns.resp.len": "46",
6762 "dns.soa.mname": "ns1.ext.philips.com",
6763 "dns.soa.rname": "ddi-authority.philips.com",
6764 "dns.soa.serial_number": "387",
6765 "dns.soa.refresh_interval": "1200",
6766 "dns.soa.retry_interval": "300",
6767 "dns.soa.expire_limit": "1209600",
6768 "dns.soa.mininum_ttl": "3600"
6777 "_index": "packets-2017-10-26",
6778 "_type": "pcap_file",
6783 "frame.encap_type": "1",
6784 "frame.time": "Oct 19, 2017 19:33:22.242432000 PDT",
6785 "frame.offset_shift": "0.000000000",
6786 "frame.time_epoch": "1508466802.242432000",
6787 "frame.time_delta": "0.001007000",
6788 "frame.time_delta_displayed": "0.001007000",
6789 "frame.time_relative": "9089.837228000",
6790 "frame.number": "10052",
6792 "frame.cap_len": "79",
6793 "frame.marked": "0",
6794 "frame.ignored": "0",
6795 "frame.protocols": "eth:ethertype:ip:udp:dns",
6796 "frame.coloring_rule.name": "UDP",
6797 "frame.coloring_rule.string": "udp"
6800 "eth.dst": "b0:b9:8a:73:69:8e",
6802 "eth.dst_resolved": "Netgear_73:69:8e",
6803 "eth.addr": "b0:b9:8a:73:69:8e",
6804 "eth.addr_resolved": "Netgear_73:69:8e",
6808 "eth.src": "00:17:88:69:ee:e4",
6810 "eth.src_resolved": "PhilipsL_69:ee:e4",
6811 "eth.addr": "00:17:88:69:ee:e4",
6812 "eth.addr_resolved": "PhilipsL_69:ee:e4",
6816 "eth.type": "0x00000800"
6821 "ip.dsfield": "0x00000000",
6822 "ip.dsfield_tree": {
6823 "ip.dsfield.dscp": "0",
6824 "ip.dsfield.ecn": "0"
6827 "ip.id": "0x0000751d",
6828 "ip.flags": "0x00000002",
6834 "ip.frag_offset": "0",
6837 "ip.checksum": "0x0000439d",
6838 "ip.checksum.status": "2",
6839 "ip.src": "192.168.0.160",
6840 "ip.addr": "192.168.0.160",
6841 "ip.src_host": "192.168.0.160",
6842 "ip.host": "192.168.0.160",
6843 "ip.dst": "192.168.0.1",
6844 "ip.addr": "192.168.0.1",
6845 "ip.dst_host": "192.168.0.1",
6846 "ip.host": "192.168.0.1",
6847 "Source GeoIP: Unknown": "",
6848 "Destination GeoIP: Unknown": ""
6851 "udp.srcport": "60729",
6852 "udp.dstport": "53",
6853 "udp.port": "60729",
6856 "udp.checksum": "0x0000ee68",
6857 "udp.checksum.status": "2",
6861 "dns.response_in": "10053",
6862 "dns.id": "0x0000049b",
6863 "dns.flags": "0x00000100",
6865 "dns.flags.response": "0",
6866 "dns.flags.opcode": "0",
6867 "dns.flags.truncated": "0",
6868 "dns.flags.recdesired": "1",
6870 "dns.flags.checkdisable": "0"
6872 "dns.count.queries": "1",
6873 "dns.count.answers": "0",
6874 "dns.count.auth_rr": "0",
6875 "dns.count.add_rr": "0",
6877 "dcp.cpp.philips.com: type A, class IN": {
6878 "dns.qry.name": "dcp.cpp.philips.com",
6879 "dns.qry.name.len": "19",
6880 "dns.count.labels": "4",
6881 "dns.qry.type": "1",
6882 "dns.qry.class": "0x00000001"
6891 "_index": "packets-2017-10-26",
6892 "_type": "pcap_file",
6897 "frame.encap_type": "1",
6898 "frame.time": "Oct 19, 2017 19:33:22.244090000 PDT",
6899 "frame.offset_shift": "0.000000000",
6900 "frame.time_epoch": "1508466802.244090000",
6901 "frame.time_delta": "0.001658000",
6902 "frame.time_delta_displayed": "0.001658000",
6903 "frame.time_relative": "9089.838886000",
6904 "frame.number": "10053",
6906 "frame.cap_len": "285",
6907 "frame.marked": "0",
6908 "frame.ignored": "0",
6909 "frame.protocols": "eth:ethertype:ip:udp:dns",
6910 "frame.coloring_rule.name": "UDP",
6911 "frame.coloring_rule.string": "udp"
6914 "eth.dst": "00:17:88:69:ee:e4",
6916 "eth.dst_resolved": "PhilipsL_69:ee:e4",
6917 "eth.addr": "00:17:88:69:ee:e4",
6918 "eth.addr_resolved": "PhilipsL_69:ee:e4",
6922 "eth.src": "b0:b9:8a:73:69:8e",
6924 "eth.src_resolved": "Netgear_73:69:8e",
6925 "eth.addr": "b0:b9:8a:73:69:8e",
6926 "eth.addr_resolved": "Netgear_73:69:8e",
6930 "eth.type": "0x00000800"
6935 "ip.dsfield": "0x00000000",
6936 "ip.dsfield_tree": {
6937 "ip.dsfield.dscp": "0",
6938 "ip.dsfield.ecn": "0"
6941 "ip.id": "0x000030c0",
6942 "ip.flags": "0x00000002",
6948 "ip.frag_offset": "0",
6951 "ip.checksum": "0x0000872c",
6952 "ip.checksum.status": "2",
6953 "ip.src": "192.168.0.1",
6954 "ip.addr": "192.168.0.1",
6955 "ip.src_host": "192.168.0.1",
6956 "ip.host": "192.168.0.1",
6957 "ip.dst": "192.168.0.160",
6958 "ip.addr": "192.168.0.160",
6959 "ip.dst_host": "192.168.0.160",
6960 "ip.host": "192.168.0.160",
6961 "Source GeoIP: Unknown": "",
6962 "Destination GeoIP: Unknown": ""
6965 "udp.srcport": "53",
6966 "udp.dstport": "60729",
6968 "udp.port": "60729",
6969 "udp.length": "251",
6970 "udp.checksum": "0x000082fe",
6971 "udp.checksum.status": "2",
6975 "dns.response_to": "10052",
6976 "dns.time": "0.001658000",
6977 "dns.id": "0x0000049b",
6978 "dns.flags": "0x00008180",
6980 "dns.flags.response": "1",
6981 "dns.flags.opcode": "0",
6982 "dns.flags.authoritative": "0",
6983 "dns.flags.truncated": "0",
6984 "dns.flags.recdesired": "1",
6985 "dns.flags.recavail": "1",
6987 "dns.flags.authenticated": "0",
6988 "dns.flags.checkdisable": "0",
6989 "dns.flags.rcode": "0"
6991 "dns.count.queries": "1",
6992 "dns.count.answers": "1",
6993 "dns.count.auth_rr": "3",
6994 "dns.count.add_rr": "6",
6996 "dcp.cpp.philips.com: type A, class IN": {
6997 "dns.qry.name": "dcp.cpp.philips.com",
6998 "dns.qry.name.len": "19",
6999 "dns.count.labels": "4",
7000 "dns.qry.type": "1",
7001 "dns.qry.class": "0x00000001"
7005 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
7006 "dns.resp.name": "dcp.cpp.philips.com",
7007 "dns.resp.type": "1",
7008 "dns.resp.class": "0x00000001",
7009 "dns.resp.ttl": "1786",
7010 "dns.resp.len": "4",
7011 "dns.a": "5.79.62.93"
7014 "Authoritative nameservers": {
7015 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
7016 "dns.resp.name": "cpp.philips.com",
7017 "dns.resp.type": "2",
7018 "dns.resp.class": "0x00000001",
7019 "dns.resp.ttl": "1786",
7020 "dns.resp.len": "10",
7021 "dns.ns": "ns1.ext.philips.com"
7023 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
7024 "dns.resp.name": "cpp.philips.com",
7025 "dns.resp.type": "2",
7026 "dns.resp.class": "0x00000001",
7027 "dns.resp.ttl": "1786",
7028 "dns.resp.len": "6",
7029 "dns.ns": "ns3.ext.philips.com"
7031 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
7032 "dns.resp.name": "cpp.philips.com",
7033 "dns.resp.type": "2",
7034 "dns.resp.class": "0x00000001",
7035 "dns.resp.ttl": "1786",
7036 "dns.resp.len": "6",
7037 "dns.ns": "ns2.ext.philips.com"
7040 "Additional records": {
7041 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
7042 "dns.resp.name": "ns1.ext.philips.com",
7043 "dns.resp.type": "1",
7044 "dns.resp.class": "0x00000001",
7045 "dns.resp.ttl": "147808",
7046 "dns.resp.len": "4",
7047 "dns.a": "57.67.40.20"
7049 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
7050 "dns.resp.name": "ns2.ext.philips.com",
7051 "dns.resp.type": "1",
7052 "dns.resp.class": "0x00000001",
7053 "dns.resp.ttl": "172526",
7054 "dns.resp.len": "4",
7055 "dns.a": "57.77.21.76"
7057 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
7058 "dns.resp.name": "ns3.ext.philips.com",
7059 "dns.resp.type": "1",
7060 "dns.resp.class": "0x00000001",
7061 "dns.resp.ttl": "172526",
7062 "dns.resp.len": "4",
7063 "dns.a": "57.73.36.68"
7065 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
7066 "dns.resp.name": "ns1.ext.philips.com",
7067 "dns.resp.type": "28",
7068 "dns.resp.class": "0x00000001",
7069 "dns.resp.ttl": "151427",
7070 "dns.resp.len": "16",
7071 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
7073 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
7074 "dns.resp.name": "ns2.ext.philips.com",
7075 "dns.resp.type": "28",
7076 "dns.resp.class": "0x00000001",
7077 "dns.resp.ttl": "144000",
7078 "dns.resp.len": "16",
7079 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
7081 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
7082 "dns.resp.name": "ns3.ext.philips.com",
7083 "dns.resp.type": "28",
7084 "dns.resp.class": "0x00000001",
7085 "dns.resp.ttl": "144000",
7086 "dns.resp.len": "16",
7087 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
7096 "_index": "packets-2017-10-26",
7097 "_type": "pcap_file",
7102 "frame.encap_type": "1",
7103 "frame.time": "Oct 19, 2017 19:33:22.660387000 PDT",
7104 "frame.offset_shift": "0.000000000",
7105 "frame.time_epoch": "1508466802.660387000",
7106 "frame.time_delta": "0.001051000",
7107 "frame.time_delta_displayed": "0.416297000",
7108 "frame.time_relative": "9090.255183000",
7109 "frame.number": "10069",
7111 "frame.cap_len": "79",
7112 "frame.marked": "0",
7113 "frame.ignored": "0",
7114 "frame.protocols": "eth:ethertype:ip:udp:dns",
7115 "frame.coloring_rule.name": "UDP",
7116 "frame.coloring_rule.string": "udp"
7119 "eth.dst": "b0:b9:8a:73:69:8e",
7121 "eth.dst_resolved": "Netgear_73:69:8e",
7122 "eth.addr": "b0:b9:8a:73:69:8e",
7123 "eth.addr_resolved": "Netgear_73:69:8e",
7127 "eth.src": "00:17:88:69:ee:e4",
7129 "eth.src_resolved": "PhilipsL_69:ee:e4",
7130 "eth.addr": "00:17:88:69:ee:e4",
7131 "eth.addr_resolved": "PhilipsL_69:ee:e4",
7135 "eth.type": "0x00000800"
7140 "ip.dsfield": "0x00000000",
7141 "ip.dsfield_tree": {
7142 "ip.dsfield.dscp": "0",
7143 "ip.dsfield.ecn": "0"
7146 "ip.id": "0x00007547",
7147 "ip.flags": "0x00000002",
7153 "ip.frag_offset": "0",
7156 "ip.checksum": "0x00004373",
7157 "ip.checksum.status": "2",
7158 "ip.src": "192.168.0.160",
7159 "ip.addr": "192.168.0.160",
7160 "ip.src_host": "192.168.0.160",
7161 "ip.host": "192.168.0.160",
7162 "ip.dst": "192.168.0.1",
7163 "ip.addr": "192.168.0.1",
7164 "ip.dst_host": "192.168.0.1",
7165 "ip.host": "192.168.0.1",
7166 "Source GeoIP: Unknown": "",
7167 "Destination GeoIP: Unknown": ""
7170 "udp.srcport": "46220",
7171 "udp.dstport": "53",
7172 "udp.port": "46220",
7175 "udp.checksum": "0x00000c15",
7176 "udp.checksum.status": "2",
7180 "dns.response_in": "10070",
7181 "dns.id": "0x0000049c",
7182 "dns.flags": "0x00000100",
7184 "dns.flags.response": "0",
7185 "dns.flags.opcode": "0",
7186 "dns.flags.truncated": "0",
7187 "dns.flags.recdesired": "1",
7189 "dns.flags.checkdisable": "0"
7191 "dns.count.queries": "1",
7192 "dns.count.answers": "0",
7193 "dns.count.auth_rr": "0",
7194 "dns.count.add_rr": "0",
7196 "dcp.cpp.philips.com: type AAAA, class IN": {
7197 "dns.qry.name": "dcp.cpp.philips.com",
7198 "dns.qry.name.len": "19",
7199 "dns.count.labels": "4",
7200 "dns.qry.type": "28",
7201 "dns.qry.class": "0x00000001"
7210 "_index": "packets-2017-10-26",
7211 "_type": "pcap_file",
7216 "frame.encap_type": "1",
7217 "frame.time": "Oct 19, 2017 19:33:22.660954000 PDT",
7218 "frame.offset_shift": "0.000000000",
7219 "frame.time_epoch": "1508466802.660954000",
7220 "frame.time_delta": "0.000567000",
7221 "frame.time_delta_displayed": "0.000567000",
7222 "frame.time_relative": "9090.255750000",
7223 "frame.number": "10070",
7225 "frame.cap_len": "79",
7226 "frame.marked": "0",
7227 "frame.ignored": "0",
7228 "frame.protocols": "eth:ethertype:ip:udp:dns",
7229 "frame.coloring_rule.name": "UDP",
7230 "frame.coloring_rule.string": "udp"
7233 "eth.dst": "00:17:88:69:ee:e4",
7235 "eth.dst_resolved": "PhilipsL_69:ee:e4",
7236 "eth.addr": "00:17:88:69:ee:e4",
7237 "eth.addr_resolved": "PhilipsL_69:ee:e4",
7241 "eth.src": "b0:b9:8a:73:69:8e",
7243 "eth.src_resolved": "Netgear_73:69:8e",
7244 "eth.addr": "b0:b9:8a:73:69:8e",
7245 "eth.addr_resolved": "Netgear_73:69:8e",
7249 "eth.type": "0x00000800"
7254 "ip.dsfield": "0x00000000",
7255 "ip.dsfield_tree": {
7256 "ip.dsfield.dscp": "0",
7257 "ip.dsfield.ecn": "0"
7260 "ip.id": "0x000030d6",
7261 "ip.flags": "0x00000002",
7267 "ip.frag_offset": "0",
7270 "ip.checksum": "0x000087e4",
7271 "ip.checksum.status": "2",
7272 "ip.src": "192.168.0.1",
7273 "ip.addr": "192.168.0.1",
7274 "ip.src_host": "192.168.0.1",
7275 "ip.host": "192.168.0.1",
7276 "ip.dst": "192.168.0.160",
7277 "ip.addr": "192.168.0.160",
7278 "ip.dst_host": "192.168.0.160",
7279 "ip.host": "192.168.0.160",
7280 "Source GeoIP: Unknown": "",
7281 "Destination GeoIP: Unknown": ""
7284 "udp.srcport": "53",
7285 "udp.dstport": "46220",
7287 "udp.port": "46220",
7289 "udp.checksum": "0x00008230",
7290 "udp.checksum.status": "2",
7294 "dns.response_to": "10069",
7295 "dns.time": "0.000567000",
7296 "dns.id": "0x0000049c",
7297 "dns.flags": "0x00008180",
7299 "dns.flags.response": "1",
7300 "dns.flags.opcode": "0",
7301 "dns.flags.authoritative": "0",
7302 "dns.flags.truncated": "0",
7303 "dns.flags.recdesired": "1",
7304 "dns.flags.recavail": "1",
7306 "dns.flags.authenticated": "0",
7307 "dns.flags.checkdisable": "0",
7308 "dns.flags.rcode": "0"
7310 "dns.count.queries": "1",
7311 "dns.count.answers": "0",
7312 "dns.count.auth_rr": "0",
7313 "dns.count.add_rr": "0",
7315 "dcp.cpp.philips.com: type AAAA, class IN": {
7316 "dns.qry.name": "dcp.cpp.philips.com",
7317 "dns.qry.name.len": "19",
7318 "dns.count.labels": "4",
7319 "dns.qry.type": "28",
7320 "dns.qry.class": "0x00000001"
7329 "_index": "packets-2017-10-26",
7330 "_type": "pcap_file",
7335 "frame.encap_type": "1",
7336 "frame.time": "Oct 19, 2017 19:33:22.661749000 PDT",
7337 "frame.offset_shift": "0.000000000",
7338 "frame.time_epoch": "1508466802.661749000",
7339 "frame.time_delta": "0.000795000",
7340 "frame.time_delta_displayed": "0.000795000",
7341 "frame.time_relative": "9090.256545000",
7342 "frame.number": "10071",
7344 "frame.cap_len": "79",
7345 "frame.marked": "0",
7346 "frame.ignored": "0",
7347 "frame.protocols": "eth:ethertype:ip:udp:dns",
7348 "frame.coloring_rule.name": "UDP",
7349 "frame.coloring_rule.string": "udp"
7352 "eth.dst": "b0:b9:8a:73:69:8e",
7354 "eth.dst_resolved": "Netgear_73:69:8e",
7355 "eth.addr": "b0:b9:8a:73:69:8e",
7356 "eth.addr_resolved": "Netgear_73:69:8e",
7360 "eth.src": "00:17:88:69:ee:e4",
7362 "eth.src_resolved": "PhilipsL_69:ee:e4",
7363 "eth.addr": "00:17:88:69:ee:e4",
7364 "eth.addr_resolved": "PhilipsL_69:ee:e4",
7368 "eth.type": "0x00000800"
7373 "ip.dsfield": "0x00000000",
7374 "ip.dsfield_tree": {
7375 "ip.dsfield.dscp": "0",
7376 "ip.dsfield.ecn": "0"
7379 "ip.id": "0x00007548",
7380 "ip.flags": "0x00000002",
7386 "ip.frag_offset": "0",
7389 "ip.checksum": "0x00004372",
7390 "ip.checksum.status": "2",
7391 "ip.src": "192.168.0.160",
7392 "ip.addr": "192.168.0.160",
7393 "ip.src_host": "192.168.0.160",
7394 "ip.host": "192.168.0.160",
7395 "ip.dst": "192.168.0.1",
7396 "ip.addr": "192.168.0.1",
7397 "ip.dst_host": "192.168.0.1",
7398 "ip.host": "192.168.0.1",
7399 "Source GeoIP: Unknown": "",
7400 "Destination GeoIP: Unknown": ""
7403 "udp.srcport": "51255",
7404 "udp.dstport": "53",
7405 "udp.port": "51255",
7408 "udp.checksum": "0x00001369",
7409 "udp.checksum.status": "2",
7413 "dns.response_in": "10072",
7414 "dns.id": "0x0000049d",
7415 "dns.flags": "0x00000100",
7417 "dns.flags.response": "0",
7418 "dns.flags.opcode": "0",
7419 "dns.flags.truncated": "0",
7420 "dns.flags.recdesired": "1",
7422 "dns.flags.checkdisable": "0"
7424 "dns.count.queries": "1",
7425 "dns.count.answers": "0",
7426 "dns.count.auth_rr": "0",
7427 "dns.count.add_rr": "0",
7429 "dcp.cpp.philips.com: type A, class IN": {
7430 "dns.qry.name": "dcp.cpp.philips.com",
7431 "dns.qry.name.len": "19",
7432 "dns.count.labels": "4",
7433 "dns.qry.type": "1",
7434 "dns.qry.class": "0x00000001"
7443 "_index": "packets-2017-10-26",
7444 "_type": "pcap_file",
7449 "frame.encap_type": "1",
7450 "frame.time": "Oct 19, 2017 19:33:22.662301000 PDT",
7451 "frame.offset_shift": "0.000000000",
7452 "frame.time_epoch": "1508466802.662301000",
7453 "frame.time_delta": "0.000552000",
7454 "frame.time_delta_displayed": "0.000552000",
7455 "frame.time_relative": "9090.257097000",
7456 "frame.number": "10072",
7458 "frame.cap_len": "95",
7459 "frame.marked": "0",
7460 "frame.ignored": "0",
7461 "frame.protocols": "eth:ethertype:ip:udp:dns",
7462 "frame.coloring_rule.name": "UDP",
7463 "frame.coloring_rule.string": "udp"
7466 "eth.dst": "00:17:88:69:ee:e4",
7468 "eth.dst_resolved": "PhilipsL_69:ee:e4",
7469 "eth.addr": "00:17:88:69:ee:e4",
7470 "eth.addr_resolved": "PhilipsL_69:ee:e4",
7474 "eth.src": "b0:b9:8a:73:69:8e",
7476 "eth.src_resolved": "Netgear_73:69:8e",
7477 "eth.addr": "b0:b9:8a:73:69:8e",
7478 "eth.addr_resolved": "Netgear_73:69:8e",
7482 "eth.type": "0x00000800"
7487 "ip.dsfield": "0x00000000",
7488 "ip.dsfield_tree": {
7489 "ip.dsfield.dscp": "0",
7490 "ip.dsfield.ecn": "0"
7493 "ip.id": "0x000030d7",
7494 "ip.flags": "0x00000002",
7500 "ip.frag_offset": "0",
7503 "ip.checksum": "0x000087d3",
7504 "ip.checksum.status": "2",
7505 "ip.src": "192.168.0.1",
7506 "ip.addr": "192.168.0.1",
7507 "ip.src_host": "192.168.0.1",
7508 "ip.host": "192.168.0.1",
7509 "ip.dst": "192.168.0.160",
7510 "ip.addr": "192.168.0.160",
7511 "ip.dst_host": "192.168.0.160",
7512 "ip.host": "192.168.0.160",
7513 "Source GeoIP: Unknown": "",
7514 "Destination GeoIP: Unknown": ""
7517 "udp.srcport": "53",
7518 "udp.dstport": "51255",
7520 "udp.port": "51255",
7522 "udp.checksum": "0x00008240",
7523 "udp.checksum.status": "2",
7527 "dns.response_to": "10071",
7528 "dns.time": "0.000552000",
7529 "dns.id": "0x0000049d",
7530 "dns.flags": "0x00008180",
7532 "dns.flags.response": "1",
7533 "dns.flags.opcode": "0",
7534 "dns.flags.authoritative": "0",
7535 "dns.flags.truncated": "0",
7536 "dns.flags.recdesired": "1",
7537 "dns.flags.recavail": "1",
7539 "dns.flags.authenticated": "0",
7540 "dns.flags.checkdisable": "0",
7541 "dns.flags.rcode": "0"
7543 "dns.count.queries": "1",
7544 "dns.count.answers": "1",
7545 "dns.count.auth_rr": "0",
7546 "dns.count.add_rr": "0",
7548 "dcp.cpp.philips.com: type A, class IN": {
7549 "dns.qry.name": "dcp.cpp.philips.com",
7550 "dns.qry.name.len": "19",
7551 "dns.count.labels": "4",
7552 "dns.qry.type": "1",
7553 "dns.qry.class": "0x00000001"
7557 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
7558 "dns.resp.name": "dcp.cpp.philips.com",
7559 "dns.resp.type": "1",
7560 "dns.resp.class": "0x00000001",
7561 "dns.resp.ttl": "1786",
7562 "dns.resp.len": "4",
7563 "dns.a": "5.79.62.93"
7572 "_index": "packets-2017-10-26",
7573 "_type": "pcap_file",
7578 "frame.encap_type": "1",
7579 "frame.time": "Oct 19, 2017 19:37:51.914199000 PDT",
7580 "frame.offset_shift": "0.000000000",
7581 "frame.time_epoch": "1508467071.914199000",
7582 "frame.time_delta": "0.065381000",
7583 "frame.time_delta_displayed": "269.251898000",
7584 "frame.time_relative": "9359.508995000",
7585 "frame.number": "10287",
7587 "frame.cap_len": "76",
7588 "frame.marked": "0",
7589 "frame.ignored": "0",
7590 "frame.protocols": "eth:ethertype:ip:udp:dns",
7591 "frame.coloring_rule.name": "UDP",
7592 "frame.coloring_rule.string": "udp"
7595 "eth.dst": "b0:b9:8a:73:69:8e",
7597 "eth.dst_resolved": "Netgear_73:69:8e",
7598 "eth.addr": "b0:b9:8a:73:69:8e",
7599 "eth.addr_resolved": "Netgear_73:69:8e",
7603 "eth.src": "00:17:88:69:ee:e4",
7605 "eth.src_resolved": "PhilipsL_69:ee:e4",
7606 "eth.addr": "00:17:88:69:ee:e4",
7607 "eth.addr_resolved": "PhilipsL_69:ee:e4",
7611 "eth.type": "0x00000800"
7616 "ip.dsfield": "0x00000000",
7617 "ip.dsfield_tree": {
7618 "ip.dsfield.dscp": "0",
7619 "ip.dsfield.ecn": "0"
7622 "ip.id": "0x000089fd",
7623 "ip.flags": "0x00000002",
7629 "ip.frag_offset": "0",
7632 "ip.checksum": "0x00002ec0",
7633 "ip.checksum.status": "2",
7634 "ip.src": "192.168.0.160",
7635 "ip.addr": "192.168.0.160",
7636 "ip.src_host": "192.168.0.160",
7637 "ip.host": "192.168.0.160",
7638 "ip.dst": "192.168.0.1",
7639 "ip.addr": "192.168.0.1",
7640 "ip.dst_host": "192.168.0.1",
7641 "ip.host": "192.168.0.1",
7642 "Source GeoIP: Unknown": "",
7643 "Destination GeoIP: Unknown": ""
7646 "udp.srcport": "41837",
7647 "udp.dstport": "53",
7648 "udp.port": "41837",
7651 "udp.checksum": "0x0000b5ac",
7652 "udp.checksum.status": "2",
7656 "dns.response_in": "10288",
7657 "dns.id": "0x0000049e",
7658 "dns.flags": "0x00000100",
7660 "dns.flags.response": "0",
7661 "dns.flags.opcode": "0",
7662 "dns.flags.truncated": "0",
7663 "dns.flags.recdesired": "1",
7665 "dns.flags.checkdisable": "0"
7667 "dns.count.queries": "1",
7668 "dns.count.answers": "0",
7669 "dns.count.auth_rr": "0",
7670 "dns.count.add_rr": "0",
7672 "www2.meethue.com: type A, class IN": {
7673 "dns.qry.name": "www2.meethue.com",
7674 "dns.qry.name.len": "16",
7675 "dns.count.labels": "3",
7676 "dns.qry.type": "1",
7677 "dns.qry.class": "0x00000001"
7686 "_index": "packets-2017-10-26",
7687 "_type": "pcap_file",
7692 "frame.encap_type": "1",
7693 "frame.time": "Oct 19, 2017 19:37:51.978100000 PDT",
7694 "frame.offset_shift": "0.000000000",
7695 "frame.time_epoch": "1508467071.978100000",
7696 "frame.time_delta": "0.063901000",
7697 "frame.time_delta_displayed": "0.063901000",
7698 "frame.time_relative": "9359.572896000",
7699 "frame.number": "10288",
7701 "frame.cap_len": "513",
7702 "frame.marked": "0",
7703 "frame.ignored": "0",
7704 "frame.protocols": "eth:ethertype:ip:udp:dns",
7705 "frame.coloring_rule.name": "UDP",
7706 "frame.coloring_rule.string": "udp"
7709 "eth.dst": "00:17:88:69:ee:e4",
7711 "eth.dst_resolved": "PhilipsL_69:ee:e4",
7712 "eth.addr": "00:17:88:69:ee:e4",
7713 "eth.addr_resolved": "PhilipsL_69:ee:e4",
7717 "eth.src": "b0:b9:8a:73:69:8e",
7719 "eth.src_resolved": "Netgear_73:69:8e",
7720 "eth.addr": "b0:b9:8a:73:69:8e",
7721 "eth.addr_resolved": "Netgear_73:69:8e",
7725 "eth.type": "0x00000800"
7730 "ip.dsfield": "0x00000000",
7731 "ip.dsfield_tree": {
7732 "ip.dsfield.dscp": "0",
7733 "ip.dsfield.ecn": "0"
7736 "ip.id": "0x00008e7d",
7737 "ip.flags": "0x00000002",
7743 "ip.frag_offset": "0",
7746 "ip.checksum": "0x0000288b",
7747 "ip.checksum.status": "2",
7748 "ip.src": "192.168.0.1",
7749 "ip.addr": "192.168.0.1",
7750 "ip.src_host": "192.168.0.1",
7751 "ip.host": "192.168.0.1",
7752 "ip.dst": "192.168.0.160",
7753 "ip.addr": "192.168.0.160",
7754 "ip.dst_host": "192.168.0.160",
7755 "ip.host": "192.168.0.160",
7756 "Source GeoIP: Unknown": "",
7757 "Destination GeoIP: Unknown": ""
7760 "udp.srcport": "53",
7761 "udp.dstport": "41837",
7763 "udp.port": "41837",
7764 "udp.length": "479",
7765 "udp.checksum": "0x000083e2",
7766 "udp.checksum.status": "2",
7770 "dns.response_to": "10287",
7771 "dns.time": "0.063901000",
7772 "dns.id": "0x0000049e",
7773 "dns.flags": "0x00008180",
7775 "dns.flags.response": "1",
7776 "dns.flags.opcode": "0",
7777 "dns.flags.authoritative": "0",
7778 "dns.flags.truncated": "0",
7779 "dns.flags.recdesired": "1",
7780 "dns.flags.recavail": "1",
7782 "dns.flags.authenticated": "0",
7783 "dns.flags.checkdisable": "0",
7784 "dns.flags.rcode": "0"
7786 "dns.count.queries": "1",
7787 "dns.count.answers": "4",
7788 "dns.count.auth_rr": "9",
7789 "dns.count.add_rr": "9",
7791 "www2.meethue.com: type A, class IN": {
7792 "dns.qry.name": "www2.meethue.com",
7793 "dns.qry.name.len": "16",
7794 "dns.count.labels": "3",
7795 "dns.qry.type": "1",
7796 "dns.qry.class": "0x00000001"
7800 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
7801 "dns.resp.name": "www2.meethue.com",
7802 "dns.resp.type": "5",
7803 "dns.resp.class": "0x00000001",
7804 "dns.resp.ttl": "117",
7805 "dns.resp.len": "41",
7806 "dns.cname": "brands.lighting.philips.com.edgekey.net"
7808 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
7809 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
7810 "dns.resp.type": "5",
7811 "dns.resp.class": "0x00000001",
7812 "dns.resp.ttl": "4313",
7813 "dns.resp.len": "22",
7814 "dns.cname": "e15361.b.akamaiedge.net"
7816 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
7817 "dns.resp.name": "e15361.b.akamaiedge.net",
7818 "dns.resp.type": "1",
7819 "dns.resp.class": "0x00000001",
7820 "dns.resp.ttl": "20",
7821 "dns.resp.len": "4",
7822 "dns.a": "173.223.52.112"
7824 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
7825 "dns.resp.name": "e15361.b.akamaiedge.net",
7826 "dns.resp.type": "1",
7827 "dns.resp.class": "0x00000001",
7828 "dns.resp.ttl": "20",
7829 "dns.resp.len": "4",
7830 "dns.a": "173.223.52.125"
7833 "Authoritative nameservers": {
7834 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
7835 "dns.resp.name": "b.akamaiedge.net",
7836 "dns.resp.type": "2",
7837 "dns.resp.class": "0x00000001",
7838 "dns.resp.ttl": "488",
7839 "dns.resp.len": "6",
7840 "dns.ns": "n1b.akamaiedge.net"
7842 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
7843 "dns.resp.name": "b.akamaiedge.net",
7844 "dns.resp.type": "2",
7845 "dns.resp.class": "0x00000001",
7846 "dns.resp.ttl": "488",
7847 "dns.resp.len": "6",
7848 "dns.ns": "n7b.akamaiedge.net"
7850 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
7851 "dns.resp.name": "b.akamaiedge.net",
7852 "dns.resp.type": "2",
7853 "dns.resp.class": "0x00000001",
7854 "dns.resp.ttl": "488",
7855 "dns.resp.len": "6",
7856 "dns.ns": "n6b.akamaiedge.net"
7858 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
7859 "dns.resp.name": "b.akamaiedge.net",
7860 "dns.resp.type": "2",
7861 "dns.resp.class": "0x00000001",
7862 "dns.resp.ttl": "488",
7863 "dns.resp.len": "6",
7864 "dns.ns": "n0b.akamaiedge.net"
7866 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
7867 "dns.resp.name": "b.akamaiedge.net",
7868 "dns.resp.type": "2",
7869 "dns.resp.class": "0x00000001",
7870 "dns.resp.ttl": "488",
7871 "dns.resp.len": "6",
7872 "dns.ns": "n3b.akamaiedge.net"
7874 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
7875 "dns.resp.name": "b.akamaiedge.net",
7876 "dns.resp.type": "2",
7877 "dns.resp.class": "0x00000001",
7878 "dns.resp.ttl": "488",
7879 "dns.resp.len": "6",
7880 "dns.ns": "n5b.akamaiedge.net"
7882 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
7883 "dns.resp.name": "b.akamaiedge.net",
7884 "dns.resp.type": "2",
7885 "dns.resp.class": "0x00000001",
7886 "dns.resp.ttl": "488",
7887 "dns.resp.len": "6",
7888 "dns.ns": "n2b.akamaiedge.net"
7890 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
7891 "dns.resp.name": "b.akamaiedge.net",
7892 "dns.resp.type": "2",
7893 "dns.resp.class": "0x00000001",
7894 "dns.resp.ttl": "488",
7895 "dns.resp.len": "6",
7896 "dns.ns": "n4b.akamaiedge.net"
7898 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
7899 "dns.resp.name": "b.akamaiedge.net",
7900 "dns.resp.type": "2",
7901 "dns.resp.class": "0x00000001",
7902 "dns.resp.ttl": "488",
7903 "dns.resp.len": "6",
7904 "dns.ns": "a0b.akamaiedge.net"
7907 "Additional records": {
7908 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
7909 "dns.resp.name": "n0b.akamaiedge.net",
7910 "dns.resp.type": "1",
7911 "dns.resp.class": "0x00000001",
7912 "dns.resp.ttl": "2799",
7913 "dns.resp.len": "4",
7914 "dns.a": "88.221.81.192"
7916 "n1b.akamaiedge.net: type A, class IN, addr 184.51.200.159": {
7917 "dns.resp.name": "n1b.akamaiedge.net",
7918 "dns.resp.type": "1",
7919 "dns.resp.class": "0x00000001",
7920 "dns.resp.ttl": "1516",
7921 "dns.resp.len": "4",
7922 "dns.a": "184.51.200.159"
7924 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
7925 "dns.resp.name": "n2b.akamaiedge.net",
7926 "dns.resp.type": "1",
7927 "dns.resp.class": "0x00000001",
7928 "dns.resp.ttl": "2018",
7929 "dns.resp.len": "4",
7930 "dns.a": "96.17.70.188"
7932 "n3b.akamaiedge.net: type A, class IN, addr 204.1.137.33": {
7933 "dns.resp.name": "n3b.akamaiedge.net",
7934 "dns.resp.type": "1",
7935 "dns.resp.class": "0x00000001",
7936 "dns.resp.ttl": "2202",
7937 "dns.resp.len": "4",
7938 "dns.a": "204.1.137.33"
7940 "n4b.akamaiedge.net: type A, class IN, addr 173.197.192.230": {
7941 "dns.resp.name": "n4b.akamaiedge.net",
7942 "dns.resp.type": "1",
7943 "dns.resp.class": "0x00000001",
7944 "dns.resp.ttl": "5110",
7945 "dns.resp.len": "4",
7946 "dns.a": "173.197.192.230"
7948 "n5b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
7949 "dns.resp.name": "n5b.akamaiedge.net",
7950 "dns.resp.type": "1",
7951 "dns.resp.class": "0x00000001",
7952 "dns.resp.ttl": "2858",
7953 "dns.resp.len": "4",
7954 "dns.a": "165.254.16.89"
7956 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
7957 "dns.resp.name": "n6b.akamaiedge.net",
7958 "dns.resp.type": "1",
7959 "dns.resp.class": "0x00000001",
7960 "dns.resp.ttl": "2660",
7961 "dns.resp.len": "4",
7962 "dns.a": "96.17.70.188"
7964 "n7b.akamaiedge.net: type A, class IN, addr 165.254.16.92": {
7965 "dns.resp.name": "n7b.akamaiedge.net",
7966 "dns.resp.type": "1",
7967 "dns.resp.class": "0x00000001",
7968 "dns.resp.ttl": "719",
7969 "dns.resp.len": "4",
7970 "dns.a": "165.254.16.92"
7972 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
7973 "dns.resp.name": "a0b.akamaiedge.net",
7974 "dns.resp.type": "28",
7975 "dns.resp.class": "0x00000001",
7976 "dns.resp.ttl": "5496",
7977 "dns.resp.len": "16",
7978 "dns.aaaa": "2600:1480:e800::c0"
7987 "_index": "packets-2017-10-26",
7988 "_type": "pcap_file",
7993 "frame.encap_type": "1",
7994 "frame.time": "Oct 19, 2017 19:52:51.985173000 PDT",
7995 "frame.offset_shift": "0.000000000",
7996 "frame.time_epoch": "1508467971.985173000",
7997 "frame.time_delta": "0.373714000",
7998 "frame.time_delta_displayed": "900.007073000",
7999 "frame.time_relative": "10259.579969000",
8000 "frame.number": "11065",
8002 "frame.cap_len": "76",
8003 "frame.marked": "0",
8004 "frame.ignored": "0",
8005 "frame.protocols": "eth:ethertype:ip:udp:dns",
8006 "frame.coloring_rule.name": "UDP",
8007 "frame.coloring_rule.string": "udp"
8010 "eth.dst": "b0:b9:8a:73:69:8e",
8012 "eth.dst_resolved": "Netgear_73:69:8e",
8013 "eth.addr": "b0:b9:8a:73:69:8e",
8014 "eth.addr_resolved": "Netgear_73:69:8e",
8018 "eth.src": "00:17:88:69:ee:e4",
8020 "eth.src_resolved": "PhilipsL_69:ee:e4",
8021 "eth.addr": "00:17:88:69:ee:e4",
8022 "eth.addr_resolved": "PhilipsL_69:ee:e4",
8026 "eth.type": "0x00000800"
8031 "ip.dsfield": "0x00000000",
8032 "ip.dsfield_tree": {
8033 "ip.dsfield.dscp": "0",
8034 "ip.dsfield.ecn": "0"
8037 "ip.id": "0x0000b24b",
8038 "ip.flags": "0x00000002",
8044 "ip.frag_offset": "0",
8047 "ip.checksum": "0x00000672",
8048 "ip.checksum.status": "2",
8049 "ip.src": "192.168.0.160",
8050 "ip.addr": "192.168.0.160",
8051 "ip.src_host": "192.168.0.160",
8052 "ip.host": "192.168.0.160",
8053 "ip.dst": "192.168.0.1",
8054 "ip.addr": "192.168.0.1",
8055 "ip.dst_host": "192.168.0.1",
8056 "ip.host": "192.168.0.1",
8057 "Source GeoIP: Unknown": "",
8058 "Destination GeoIP: Unknown": ""
8061 "udp.srcport": "33682",
8062 "udp.dstport": "53",
8063 "udp.port": "33682",
8066 "udp.checksum": "0x0000d586",
8067 "udp.checksum.status": "2",
8071 "dns.response_in": "11066",
8072 "dns.id": "0x0000049f",
8073 "dns.flags": "0x00000100",
8075 "dns.flags.response": "0",
8076 "dns.flags.opcode": "0",
8077 "dns.flags.truncated": "0",
8078 "dns.flags.recdesired": "1",
8080 "dns.flags.checkdisable": "0"
8082 "dns.count.queries": "1",
8083 "dns.count.answers": "0",
8084 "dns.count.auth_rr": "0",
8085 "dns.count.add_rr": "0",
8087 "www2.meethue.com: type A, class IN": {
8088 "dns.qry.name": "www2.meethue.com",
8089 "dns.qry.name.len": "16",
8090 "dns.count.labels": "3",
8091 "dns.qry.type": "1",
8092 "dns.qry.class": "0x00000001"
8101 "_index": "packets-2017-10-26",
8102 "_type": "pcap_file",
8107 "frame.encap_type": "1",
8108 "frame.time": "Oct 19, 2017 19:52:52.048951000 PDT",
8109 "frame.offset_shift": "0.000000000",
8110 "frame.time_epoch": "1508467972.048951000",
8111 "frame.time_delta": "0.063778000",
8112 "frame.time_delta_displayed": "0.063778000",
8113 "frame.time_relative": "10259.643747000",
8114 "frame.number": "11066",
8116 "frame.cap_len": "513",
8117 "frame.marked": "0",
8118 "frame.ignored": "0",
8119 "frame.protocols": "eth:ethertype:ip:udp:dns",
8120 "frame.coloring_rule.name": "UDP",
8121 "frame.coloring_rule.string": "udp"
8124 "eth.dst": "00:17:88:69:ee:e4",
8126 "eth.dst_resolved": "PhilipsL_69:ee:e4",
8127 "eth.addr": "00:17:88:69:ee:e4",
8128 "eth.addr_resolved": "PhilipsL_69:ee:e4",
8132 "eth.src": "b0:b9:8a:73:69:8e",
8134 "eth.src_resolved": "Netgear_73:69:8e",
8135 "eth.addr": "b0:b9:8a:73:69:8e",
8136 "eth.addr_resolved": "Netgear_73:69:8e",
8140 "eth.type": "0x00000800"
8145 "ip.dsfield": "0x00000000",
8146 "ip.dsfield_tree": {
8147 "ip.dsfield.dscp": "0",
8148 "ip.dsfield.ecn": "0"
8151 "ip.id": "0x00008dbf",
8152 "ip.flags": "0x00000002",
8158 "ip.frag_offset": "0",
8161 "ip.checksum": "0x00002949",
8162 "ip.checksum.status": "2",
8163 "ip.src": "192.168.0.1",
8164 "ip.addr": "192.168.0.1",
8165 "ip.src_host": "192.168.0.1",
8166 "ip.host": "192.168.0.1",
8167 "ip.dst": "192.168.0.160",
8168 "ip.addr": "192.168.0.160",
8169 "ip.dst_host": "192.168.0.160",
8170 "ip.host": "192.168.0.160",
8171 "Source GeoIP: Unknown": "",
8172 "Destination GeoIP: Unknown": ""
8175 "udp.srcport": "53",
8176 "udp.dstport": "33682",
8178 "udp.port": "33682",
8179 "udp.length": "479",
8180 "udp.checksum": "0x000083e2",
8181 "udp.checksum.status": "2",
8185 "dns.response_to": "11065",
8186 "dns.time": "0.063778000",
8187 "dns.id": "0x0000049f",
8188 "dns.flags": "0x00008180",
8190 "dns.flags.response": "1",
8191 "dns.flags.opcode": "0",
8192 "dns.flags.authoritative": "0",
8193 "dns.flags.truncated": "0",
8194 "dns.flags.recdesired": "1",
8195 "dns.flags.recavail": "1",
8197 "dns.flags.authenticated": "0",
8198 "dns.flags.checkdisable": "0",
8199 "dns.flags.rcode": "0"
8201 "dns.count.queries": "1",
8202 "dns.count.answers": "4",
8203 "dns.count.auth_rr": "9",
8204 "dns.count.add_rr": "9",
8206 "www2.meethue.com: type A, class IN": {
8207 "dns.qry.name": "www2.meethue.com",
8208 "dns.qry.name.len": "16",
8209 "dns.count.labels": "3",
8210 "dns.qry.type": "1",
8211 "dns.qry.class": "0x00000001"
8215 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
8216 "dns.resp.name": "www2.meethue.com",
8217 "dns.resp.type": "5",
8218 "dns.resp.class": "0x00000001",
8219 "dns.resp.ttl": "117",
8220 "dns.resp.len": "41",
8221 "dns.cname": "brands.lighting.philips.com.edgekey.net"
8223 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
8224 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
8225 "dns.resp.type": "5",
8226 "dns.resp.class": "0x00000001",
8227 "dns.resp.ttl": "3413",
8228 "dns.resp.len": "22",
8229 "dns.cname": "e15361.b.akamaiedge.net"
8231 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.73": {
8232 "dns.resp.name": "e15361.b.akamaiedge.net",
8233 "dns.resp.type": "1",
8234 "dns.resp.class": "0x00000001",
8235 "dns.resp.ttl": "20",
8236 "dns.resp.len": "4",
8237 "dns.a": "173.223.52.73"
8239 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.2": {
8240 "dns.resp.name": "e15361.b.akamaiedge.net",
8241 "dns.resp.type": "1",
8242 "dns.resp.class": "0x00000001",
8243 "dns.resp.ttl": "20",
8244 "dns.resp.len": "4",
8245 "dns.a": "173.223.52.2"
8248 "Authoritative nameservers": {
8249 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
8250 "dns.resp.name": "b.akamaiedge.net",
8251 "dns.resp.type": "2",
8252 "dns.resp.class": "0x00000001",
8253 "dns.resp.ttl": "3589",
8254 "dns.resp.len": "6",
8255 "dns.ns": "n5b.akamaiedge.net"
8257 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
8258 "dns.resp.name": "b.akamaiedge.net",
8259 "dns.resp.type": "2",
8260 "dns.resp.class": "0x00000001",
8261 "dns.resp.ttl": "3589",
8262 "dns.resp.len": "6",
8263 "dns.ns": "n1b.akamaiedge.net"
8265 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
8266 "dns.resp.name": "b.akamaiedge.net",
8267 "dns.resp.type": "2",
8268 "dns.resp.class": "0x00000001",
8269 "dns.resp.ttl": "3589",
8270 "dns.resp.len": "6",
8271 "dns.ns": "n3b.akamaiedge.net"
8273 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
8274 "dns.resp.name": "b.akamaiedge.net",
8275 "dns.resp.type": "2",
8276 "dns.resp.class": "0x00000001",
8277 "dns.resp.ttl": "3589",
8278 "dns.resp.len": "6",
8279 "dns.ns": "n6b.akamaiedge.net"
8281 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
8282 "dns.resp.name": "b.akamaiedge.net",
8283 "dns.resp.type": "2",
8284 "dns.resp.class": "0x00000001",
8285 "dns.resp.ttl": "3589",
8286 "dns.resp.len": "6",
8287 "dns.ns": "n2b.akamaiedge.net"
8289 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
8290 "dns.resp.name": "b.akamaiedge.net",
8291 "dns.resp.type": "2",
8292 "dns.resp.class": "0x00000001",
8293 "dns.resp.ttl": "3589",
8294 "dns.resp.len": "6",
8295 "dns.ns": "n7b.akamaiedge.net"
8297 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
8298 "dns.resp.name": "b.akamaiedge.net",
8299 "dns.resp.type": "2",
8300 "dns.resp.class": "0x00000001",
8301 "dns.resp.ttl": "3589",
8302 "dns.resp.len": "6",
8303 "dns.ns": "n0b.akamaiedge.net"
8305 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
8306 "dns.resp.name": "b.akamaiedge.net",
8307 "dns.resp.type": "2",
8308 "dns.resp.class": "0x00000001",
8309 "dns.resp.ttl": "3589",
8310 "dns.resp.len": "6",
8311 "dns.ns": "a0b.akamaiedge.net"
8313 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
8314 "dns.resp.name": "b.akamaiedge.net",
8315 "dns.resp.type": "2",
8316 "dns.resp.class": "0x00000001",
8317 "dns.resp.ttl": "3589",
8318 "dns.resp.len": "6",
8319 "dns.ns": "n4b.akamaiedge.net"
8322 "Additional records": {
8323 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
8324 "dns.resp.name": "n0b.akamaiedge.net",
8325 "dns.resp.type": "1",
8326 "dns.resp.class": "0x00000001",
8327 "dns.resp.ttl": "1898",
8328 "dns.resp.len": "4",
8329 "dns.a": "88.221.81.192"
8331 "n1b.akamaiedge.net: type A, class IN, addr 184.51.200.159": {
8332 "dns.resp.name": "n1b.akamaiedge.net",
8333 "dns.resp.type": "1",
8334 "dns.resp.class": "0x00000001",
8335 "dns.resp.ttl": "615",
8336 "dns.resp.len": "4",
8337 "dns.a": "184.51.200.159"
8339 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
8340 "dns.resp.name": "n2b.akamaiedge.net",
8341 "dns.resp.type": "1",
8342 "dns.resp.class": "0x00000001",
8343 "dns.resp.ttl": "1117",
8344 "dns.resp.len": "4",
8345 "dns.a": "96.17.70.188"
8347 "n3b.akamaiedge.net: type A, class IN, addr 204.1.137.33": {
8348 "dns.resp.name": "n3b.akamaiedge.net",
8349 "dns.resp.type": "1",
8350 "dns.resp.class": "0x00000001",
8351 "dns.resp.ttl": "1301",
8352 "dns.resp.len": "4",
8353 "dns.a": "204.1.137.33"
8355 "n4b.akamaiedge.net: type A, class IN, addr 173.197.192.230": {
8356 "dns.resp.name": "n4b.akamaiedge.net",
8357 "dns.resp.type": "1",
8358 "dns.resp.class": "0x00000001",
8359 "dns.resp.ttl": "4209",
8360 "dns.resp.len": "4",
8361 "dns.a": "173.197.192.230"
8363 "n5b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
8364 "dns.resp.name": "n5b.akamaiedge.net",
8365 "dns.resp.type": "1",
8366 "dns.resp.class": "0x00000001",
8367 "dns.resp.ttl": "1957",
8368 "dns.resp.len": "4",
8369 "dns.a": "165.254.16.89"
8371 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
8372 "dns.resp.name": "n6b.akamaiedge.net",
8373 "dns.resp.type": "1",
8374 "dns.resp.class": "0x00000001",
8375 "dns.resp.ttl": "1759",
8376 "dns.resp.len": "4",
8377 "dns.a": "96.17.70.188"
8379 "n7b.akamaiedge.net: type A, class IN, addr 173.197.192.237": {
8380 "dns.resp.name": "n7b.akamaiedge.net",
8381 "dns.resp.type": "1",
8382 "dns.resp.class": "0x00000001",
8383 "dns.resp.ttl": "5819",
8384 "dns.resp.len": "4",
8385 "dns.a": "173.197.192.237"
8387 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
8388 "dns.resp.name": "a0b.akamaiedge.net",
8389 "dns.resp.type": "28",
8390 "dns.resp.class": "0x00000001",
8391 "dns.resp.ttl": "4595",
8392 "dns.resp.len": "16",
8393 "dns.aaaa": "2600:1480:e800::c0"
8402 "_index": "packets-2017-10-26",
8403 "_type": "pcap_file",
8408 "frame.encap_type": "1",
8409 "frame.time": "Oct 19, 2017 20:07:52.060309000 PDT",
8410 "frame.offset_shift": "0.000000000",
8411 "frame.time_epoch": "1508468872.060309000",
8412 "frame.time_delta": "0.486449000",
8413 "frame.time_delta_displayed": "900.011358000",
8414 "frame.time_relative": "11159.655105000",
8415 "frame.number": "11855",
8417 "frame.cap_len": "76",
8418 "frame.marked": "0",
8419 "frame.ignored": "0",
8420 "frame.protocols": "eth:ethertype:ip:udp:dns",
8421 "frame.coloring_rule.name": "UDP",
8422 "frame.coloring_rule.string": "udp"
8425 "eth.dst": "b0:b9:8a:73:69:8e",
8427 "eth.dst_resolved": "Netgear_73:69:8e",
8428 "eth.addr": "b0:b9:8a:73:69:8e",
8429 "eth.addr_resolved": "Netgear_73:69:8e",
8433 "eth.src": "00:17:88:69:ee:e4",
8435 "eth.src_resolved": "PhilipsL_69:ee:e4",
8436 "eth.addr": "00:17:88:69:ee:e4",
8437 "eth.addr_resolved": "PhilipsL_69:ee:e4",
8441 "eth.type": "0x00000800"
8446 "ip.dsfield": "0x00000000",
8447 "ip.dsfield_tree": {
8448 "ip.dsfield.dscp": "0",
8449 "ip.dsfield.ecn": "0"
8452 "ip.id": "0x0000fdee",
8453 "ip.flags": "0x00000002",
8459 "ip.frag_offset": "0",
8462 "ip.checksum": "0x0000bace",
8463 "ip.checksum.status": "2",
8464 "ip.src": "192.168.0.160",
8465 "ip.addr": "192.168.0.160",
8466 "ip.src_host": "192.168.0.160",
8467 "ip.host": "192.168.0.160",
8468 "ip.dst": "192.168.0.1",
8469 "ip.addr": "192.168.0.1",
8470 "ip.dst_host": "192.168.0.1",
8471 "ip.host": "192.168.0.1",
8472 "Source GeoIP: Unknown": "",
8473 "Destination GeoIP: Unknown": ""
8476 "udp.srcport": "49312",
8477 "udp.dstport": "53",
8478 "udp.port": "49312",
8481 "udp.checksum": "0x00009877",
8482 "udp.checksum.status": "2",
8486 "dns.response_in": "11856",
8487 "dns.id": "0x000004a0",
8488 "dns.flags": "0x00000100",
8490 "dns.flags.response": "0",
8491 "dns.flags.opcode": "0",
8492 "dns.flags.truncated": "0",
8493 "dns.flags.recdesired": "1",
8495 "dns.flags.checkdisable": "0"
8497 "dns.count.queries": "1",
8498 "dns.count.answers": "0",
8499 "dns.count.auth_rr": "0",
8500 "dns.count.add_rr": "0",
8502 "www2.meethue.com: type A, class IN": {
8503 "dns.qry.name": "www2.meethue.com",
8504 "dns.qry.name.len": "16",
8505 "dns.count.labels": "3",
8506 "dns.qry.type": "1",
8507 "dns.qry.class": "0x00000001"
8516 "_index": "packets-2017-10-26",
8517 "_type": "pcap_file",
8522 "frame.encap_type": "1",
8523 "frame.time": "Oct 19, 2017 20:07:52.067203000 PDT",
8524 "frame.offset_shift": "0.000000000",
8525 "frame.time_epoch": "1508468872.067203000",
8526 "frame.time_delta": "0.006894000",
8527 "frame.time_delta_displayed": "0.006894000",
8528 "frame.time_relative": "11159.661999000",
8529 "frame.number": "11856",
8531 "frame.cap_len": "467",
8532 "frame.marked": "0",
8533 "frame.ignored": "0",
8534 "frame.protocols": "eth:ethertype:ip:udp:dns",
8535 "frame.coloring_rule.name": "UDP",
8536 "frame.coloring_rule.string": "udp"
8539 "eth.dst": "00:17:88:69:ee:e4",
8541 "eth.dst_resolved": "PhilipsL_69:ee:e4",
8542 "eth.addr": "00:17:88:69:ee:e4",
8543 "eth.addr_resolved": "PhilipsL_69:ee:e4",
8547 "eth.src": "b0:b9:8a:73:69:8e",
8549 "eth.src_resolved": "Netgear_73:69:8e",
8550 "eth.addr": "b0:b9:8a:73:69:8e",
8551 "eth.addr_resolved": "Netgear_73:69:8e",
8555 "eth.type": "0x00000800"
8560 "ip.dsfield": "0x00000000",
8561 "ip.dsfield_tree": {
8562 "ip.dsfield.dscp": "0",
8563 "ip.dsfield.ecn": "0"
8566 "ip.id": "0x0000b190",
8567 "ip.flags": "0x00000002",
8573 "ip.frag_offset": "0",
8576 "ip.checksum": "0x000005a6",
8577 "ip.checksum.status": "2",
8578 "ip.src": "192.168.0.1",
8579 "ip.addr": "192.168.0.1",
8580 "ip.src_host": "192.168.0.1",
8581 "ip.host": "192.168.0.1",
8582 "ip.dst": "192.168.0.160",
8583 "ip.addr": "192.168.0.160",
8584 "ip.dst_host": "192.168.0.160",
8585 "ip.host": "192.168.0.160",
8586 "Source GeoIP: Unknown": "",
8587 "Destination GeoIP: Unknown": ""
8590 "udp.srcport": "53",
8591 "udp.dstport": "49312",
8593 "udp.port": "49312",
8594 "udp.length": "433",
8595 "udp.checksum": "0x000083b4",
8596 "udp.checksum.status": "2",
8600 "dns.response_to": "11855",
8601 "dns.time": "0.006894000",
8602 "dns.id": "0x000004a0",
8603 "dns.flags": "0x00008180",
8605 "dns.flags.response": "1",
8606 "dns.flags.opcode": "0",
8607 "dns.flags.authoritative": "0",
8608 "dns.flags.truncated": "0",
8609 "dns.flags.recdesired": "1",
8610 "dns.flags.recavail": "1",
8612 "dns.flags.authenticated": "0",
8613 "dns.flags.checkdisable": "0",
8614 "dns.flags.rcode": "0"
8616 "dns.count.queries": "1",
8617 "dns.count.answers": "4",
8618 "dns.count.auth_rr": "8",
8619 "dns.count.add_rr": "8",
8621 "www2.meethue.com: type A, class IN": {
8622 "dns.qry.name": "www2.meethue.com",
8623 "dns.qry.name.len": "16",
8624 "dns.count.labels": "3",
8625 "dns.qry.type": "1",
8626 "dns.qry.class": "0x00000001"
8630 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
8631 "dns.resp.name": "www2.meethue.com",
8632 "dns.resp.type": "5",
8633 "dns.resp.class": "0x00000001",
8634 "dns.resp.ttl": "141",
8635 "dns.resp.len": "41",
8636 "dns.cname": "brands.lighting.philips.com.edgekey.net"
8638 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
8639 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
8640 "dns.resp.type": "5",
8641 "dns.resp.class": "0x00000001",
8642 "dns.resp.ttl": "4110",
8643 "dns.resp.len": "22",
8644 "dns.cname": "e15361.b.akamaiedge.net"
8646 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
8647 "dns.resp.name": "e15361.b.akamaiedge.net",
8648 "dns.resp.type": "1",
8649 "dns.resp.class": "0x00000001",
8650 "dns.resp.ttl": "20",
8651 "dns.resp.len": "4",
8652 "dns.a": "184.84.242.27"
8654 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
8655 "dns.resp.name": "e15361.b.akamaiedge.net",
8656 "dns.resp.type": "1",
8657 "dns.resp.class": "0x00000001",
8658 "dns.resp.ttl": "20",
8659 "dns.resp.len": "4",
8660 "dns.a": "184.84.242.42"
8663 "Authoritative nameservers": {
8664 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
8665 "dns.resp.name": "b.akamaiedge.net",
8666 "dns.resp.type": "2",
8667 "dns.resp.class": "0x00000001",
8668 "dns.resp.ttl": "774",
8669 "dns.resp.len": "6",
8670 "dns.ns": "n6b.akamaiedge.net"
8672 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
8673 "dns.resp.name": "b.akamaiedge.net",
8674 "dns.resp.type": "2",
8675 "dns.resp.class": "0x00000001",
8676 "dns.resp.ttl": "774",
8677 "dns.resp.len": "6",
8678 "dns.ns": "n0b.akamaiedge.net"
8680 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
8681 "dns.resp.name": "b.akamaiedge.net",
8682 "dns.resp.type": "2",
8683 "dns.resp.class": "0x00000001",
8684 "dns.resp.ttl": "774",
8685 "dns.resp.len": "6",
8686 "dns.ns": "n4b.akamaiedge.net"
8688 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
8689 "dns.resp.name": "b.akamaiedge.net",
8690 "dns.resp.type": "2",
8691 "dns.resp.class": "0x00000001",
8692 "dns.resp.ttl": "774",
8693 "dns.resp.len": "6",
8694 "dns.ns": "n5b.akamaiedge.net"
8696 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
8697 "dns.resp.name": "b.akamaiedge.net",
8698 "dns.resp.type": "2",
8699 "dns.resp.class": "0x00000001",
8700 "dns.resp.ttl": "774",
8701 "dns.resp.len": "6",
8702 "dns.ns": "n7b.akamaiedge.net"
8704 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
8705 "dns.resp.name": "b.akamaiedge.net",
8706 "dns.resp.type": "2",
8707 "dns.resp.class": "0x00000001",
8708 "dns.resp.ttl": "774",
8709 "dns.resp.len": "6",
8710 "dns.ns": "n2b.akamaiedge.net"
8712 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
8713 "dns.resp.name": "b.akamaiedge.net",
8714 "dns.resp.type": "2",
8715 "dns.resp.class": "0x00000001",
8716 "dns.resp.ttl": "774",
8717 "dns.resp.len": "6",
8718 "dns.ns": "n1b.akamaiedge.net"
8720 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
8721 "dns.resp.name": "b.akamaiedge.net",
8722 "dns.resp.type": "2",
8723 "dns.resp.class": "0x00000001",
8724 "dns.resp.ttl": "774",
8725 "dns.resp.len": "6",
8726 "dns.ns": "n3b.akamaiedge.net"
8729 "Additional records": {
8730 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
8731 "dns.resp.name": "n0b.akamaiedge.net",
8732 "dns.resp.type": "1",
8733 "dns.resp.class": "0x00000001",
8734 "dns.resp.ttl": "3298",
8735 "dns.resp.len": "4",
8736 "dns.a": "88.221.81.192"
8738 "n1b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
8739 "dns.resp.name": "n1b.akamaiedge.net",
8740 "dns.resp.type": "1",
8741 "dns.resp.class": "0x00000001",
8742 "dns.resp.ttl": "3838",
8743 "dns.resp.len": "4",
8744 "dns.a": "204.1.137.41"
8746 "n2b.akamaiedge.net: type A, class IN, addr 173.197.192.233": {
8747 "dns.resp.name": "n2b.akamaiedge.net",
8748 "dns.resp.type": "1",
8749 "dns.resp.class": "0x00000001",
8750 "dns.resp.ttl": "6614",
8751 "dns.resp.len": "4",
8752 "dns.a": "173.197.192.233"
8754 "n3b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
8755 "dns.resp.name": "n3b.akamaiedge.net",
8756 "dns.resp.type": "1",
8757 "dns.resp.class": "0x00000001",
8758 "dns.resp.ttl": "2677",
8759 "dns.resp.len": "4",
8760 "dns.a": "173.197.192.229"
8762 "n4b.akamaiedge.net: type A, class IN, addr 173.197.192.230": {
8763 "dns.resp.name": "n4b.akamaiedge.net",
8764 "dns.resp.type": "1",
8765 "dns.resp.class": "0x00000001",
8766 "dns.resp.ttl": "1085",
8767 "dns.resp.len": "4",
8768 "dns.a": "173.197.192.230"
8770 "n5b.akamaiedge.net: type A, class IN, addr 204.1.137.37": {
8771 "dns.resp.name": "n5b.akamaiedge.net",
8772 "dns.resp.type": "1",
8773 "dns.resp.class": "0x00000001",
8774 "dns.resp.ttl": "3641",
8775 "dns.resp.len": "4",
8776 "dns.a": "204.1.137.37"
8778 "n6b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
8779 "dns.resp.name": "n6b.akamaiedge.net",
8780 "dns.resp.type": "1",
8781 "dns.resp.class": "0x00000001",
8782 "dns.resp.ttl": "3220",
8783 "dns.resp.len": "4",
8784 "dns.a": "204.1.137.41"
8786 "n7b.akamaiedge.net: type A, class IN, addr 204.1.137.37": {
8787 "dns.resp.name": "n7b.akamaiedge.net",
8788 "dns.resp.type": "1",
8789 "dns.resp.class": "0x00000001",
8790 "dns.resp.ttl": "5325",
8791 "dns.resp.len": "4",
8792 "dns.a": "204.1.137.37"
8801 "_index": "packets-2017-10-26",
8802 "_type": "pcap_file",
8807 "frame.encap_type": "1",
8808 "frame.time": "Oct 19, 2017 20:22:52.076126000 PDT",
8809 "frame.offset_shift": "0.000000000",
8810 "frame.time_epoch": "1508469772.076126000",
8811 "frame.time_delta": "0.590869000",
8812 "frame.time_delta_displayed": "900.008923000",
8813 "frame.time_relative": "12059.670922000",
8814 "frame.number": "12657",
8816 "frame.cap_len": "76",
8817 "frame.marked": "0",
8818 "frame.ignored": "0",
8819 "frame.protocols": "eth:ethertype:ip:udp:dns",
8820 "frame.coloring_rule.name": "UDP",
8821 "frame.coloring_rule.string": "udp"
8824 "eth.dst": "b0:b9:8a:73:69:8e",
8826 "eth.dst_resolved": "Netgear_73:69:8e",
8827 "eth.addr": "b0:b9:8a:73:69:8e",
8828 "eth.addr_resolved": "Netgear_73:69:8e",
8832 "eth.src": "00:17:88:69:ee:e4",
8834 "eth.src_resolved": "PhilipsL_69:ee:e4",
8835 "eth.addr": "00:17:88:69:ee:e4",
8836 "eth.addr_resolved": "PhilipsL_69:ee:e4",
8840 "eth.type": "0x00000800"
8845 "ip.dsfield": "0x00000000",
8846 "ip.dsfield_tree": {
8847 "ip.dsfield.dscp": "0",
8848 "ip.dsfield.ecn": "0"
8851 "ip.id": "0x0000a2db",
8852 "ip.flags": "0x00000002",
8858 "ip.frag_offset": "0",
8861 "ip.checksum": "0x000015e2",
8862 "ip.checksum.status": "2",
8863 "ip.src": "192.168.0.160",
8864 "ip.addr": "192.168.0.160",
8865 "ip.src_host": "192.168.0.160",
8866 "ip.host": "192.168.0.160",
8867 "ip.dst": "192.168.0.1",
8868 "ip.addr": "192.168.0.1",
8869 "ip.dst_host": "192.168.0.1",
8870 "ip.host": "192.168.0.1",
8871 "Source GeoIP: Unknown": "",
8872 "Destination GeoIP: Unknown": ""
8875 "udp.srcport": "53703",
8876 "udp.dstport": "53",
8877 "udp.port": "53703",
8880 "udp.checksum": "0x0000874f",
8881 "udp.checksum.status": "2",
8885 "dns.response_in": "12658",
8886 "dns.id": "0x000004a1",
8887 "dns.flags": "0x00000100",
8889 "dns.flags.response": "0",
8890 "dns.flags.opcode": "0",
8891 "dns.flags.truncated": "0",
8892 "dns.flags.recdesired": "1",
8894 "dns.flags.checkdisable": "0"
8896 "dns.count.queries": "1",
8897 "dns.count.answers": "0",
8898 "dns.count.auth_rr": "0",
8899 "dns.count.add_rr": "0",
8901 "www2.meethue.com: type A, class IN": {
8902 "dns.qry.name": "www2.meethue.com",
8903 "dns.qry.name.len": "16",
8904 "dns.count.labels": "3",
8905 "dns.qry.type": "1",
8906 "dns.qry.class": "0x00000001"
8915 "_index": "packets-2017-10-26",
8916 "_type": "pcap_file",
8921 "frame.encap_type": "1",
8922 "frame.time": "Oct 19, 2017 20:22:52.112051000 PDT",
8923 "frame.offset_shift": "0.000000000",
8924 "frame.time_epoch": "1508469772.112051000",
8925 "frame.time_delta": "0.035925000",
8926 "frame.time_delta_displayed": "0.035925000",
8927 "frame.time_relative": "12059.706847000",
8928 "frame.number": "12658",
8930 "frame.cap_len": "513",
8931 "frame.marked": "0",
8932 "frame.ignored": "0",
8933 "frame.protocols": "eth:ethertype:ip:udp:dns",
8934 "frame.coloring_rule.name": "UDP",
8935 "frame.coloring_rule.string": "udp"
8938 "eth.dst": "00:17:88:69:ee:e4",
8940 "eth.dst_resolved": "PhilipsL_69:ee:e4",
8941 "eth.addr": "00:17:88:69:ee:e4",
8942 "eth.addr_resolved": "PhilipsL_69:ee:e4",
8946 "eth.src": "b0:b9:8a:73:69:8e",
8948 "eth.src_resolved": "Netgear_73:69:8e",
8949 "eth.addr": "b0:b9:8a:73:69:8e",
8950 "eth.addr_resolved": "Netgear_73:69:8e",
8954 "eth.type": "0x00000800"
8959 "ip.dsfield": "0x00000000",
8960 "ip.dsfield_tree": {
8961 "ip.dsfield.dscp": "0",
8962 "ip.dsfield.ecn": "0"
8965 "ip.id": "0x0000ccc6",
8966 "ip.flags": "0x00000002",
8972 "ip.frag_offset": "0",
8975 "ip.checksum": "0x0000ea41",
8976 "ip.checksum.status": "2",
8977 "ip.src": "192.168.0.1",
8978 "ip.addr": "192.168.0.1",
8979 "ip.src_host": "192.168.0.1",
8980 "ip.host": "192.168.0.1",
8981 "ip.dst": "192.168.0.160",
8982 "ip.addr": "192.168.0.160",
8983 "ip.dst_host": "192.168.0.160",
8984 "ip.host": "192.168.0.160",
8985 "Source GeoIP: Unknown": "",
8986 "Destination GeoIP: Unknown": ""
8989 "udp.srcport": "53",
8990 "udp.dstport": "53703",
8992 "udp.port": "53703",
8993 "udp.length": "479",
8994 "udp.checksum": "0x000083e2",
8995 "udp.checksum.status": "2",
8999 "dns.response_to": "12657",
9000 "dns.time": "0.035925000",
9001 "dns.id": "0x000004a1",
9002 "dns.flags": "0x00008180",
9004 "dns.flags.response": "1",
9005 "dns.flags.opcode": "0",
9006 "dns.flags.authoritative": "0",
9007 "dns.flags.truncated": "0",
9008 "dns.flags.recdesired": "1",
9009 "dns.flags.recavail": "1",
9011 "dns.flags.authenticated": "0",
9012 "dns.flags.checkdisable": "0",
9013 "dns.flags.rcode": "0"
9015 "dns.count.queries": "1",
9016 "dns.count.answers": "4",
9017 "dns.count.auth_rr": "9",
9018 "dns.count.add_rr": "9",
9020 "www2.meethue.com: type A, class IN": {
9021 "dns.qry.name": "www2.meethue.com",
9022 "dns.qry.name.len": "16",
9023 "dns.count.labels": "3",
9024 "dns.qry.type": "1",
9025 "dns.qry.class": "0x00000001"
9029 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
9030 "dns.resp.name": "www2.meethue.com",
9031 "dns.resp.type": "5",
9032 "dns.resp.class": "0x00000001",
9033 "dns.resp.ttl": "116",
9034 "dns.resp.len": "41",
9035 "dns.cname": "brands.lighting.philips.com.edgekey.net"
9037 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
9038 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
9039 "dns.resp.type": "5",
9040 "dns.resp.class": "0x00000001",
9041 "dns.resp.ttl": "1612",
9042 "dns.resp.len": "22",
9043 "dns.cname": "e15361.b.akamaiedge.net"
9045 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.2": {
9046 "dns.resp.name": "e15361.b.akamaiedge.net",
9047 "dns.resp.type": "1",
9048 "dns.resp.class": "0x00000001",
9049 "dns.resp.ttl": "20",
9050 "dns.resp.len": "4",
9051 "dns.a": "173.223.52.2"
9053 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.73": {
9054 "dns.resp.name": "e15361.b.akamaiedge.net",
9055 "dns.resp.type": "1",
9056 "dns.resp.class": "0x00000001",
9057 "dns.resp.ttl": "20",
9058 "dns.resp.len": "4",
9059 "dns.a": "173.223.52.73"
9062 "Authoritative nameservers": {
9063 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
9064 "dns.resp.name": "b.akamaiedge.net",
9065 "dns.resp.type": "2",
9066 "dns.resp.class": "0x00000001",
9067 "dns.resp.ttl": "1789",
9068 "dns.resp.len": "6",
9069 "dns.ns": "n4b.akamaiedge.net"
9071 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
9072 "dns.resp.name": "b.akamaiedge.net",
9073 "dns.resp.type": "2",
9074 "dns.resp.class": "0x00000001",
9075 "dns.resp.ttl": "1789",
9076 "dns.resp.len": "6",
9077 "dns.ns": "n1b.akamaiedge.net"
9079 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
9080 "dns.resp.name": "b.akamaiedge.net",
9081 "dns.resp.type": "2",
9082 "dns.resp.class": "0x00000001",
9083 "dns.resp.ttl": "1789",
9084 "dns.resp.len": "6",
9085 "dns.ns": "n6b.akamaiedge.net"
9087 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
9088 "dns.resp.name": "b.akamaiedge.net",
9089 "dns.resp.type": "2",
9090 "dns.resp.class": "0x00000001",
9091 "dns.resp.ttl": "1789",
9092 "dns.resp.len": "6",
9093 "dns.ns": "n0b.akamaiedge.net"
9095 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
9096 "dns.resp.name": "b.akamaiedge.net",
9097 "dns.resp.type": "2",
9098 "dns.resp.class": "0x00000001",
9099 "dns.resp.ttl": "1789",
9100 "dns.resp.len": "6",
9101 "dns.ns": "a0b.akamaiedge.net"
9103 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
9104 "dns.resp.name": "b.akamaiedge.net",
9105 "dns.resp.type": "2",
9106 "dns.resp.class": "0x00000001",
9107 "dns.resp.ttl": "1789",
9108 "dns.resp.len": "6",
9109 "dns.ns": "n7b.akamaiedge.net"
9111 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
9112 "dns.resp.name": "b.akamaiedge.net",
9113 "dns.resp.type": "2",
9114 "dns.resp.class": "0x00000001",
9115 "dns.resp.ttl": "1789",
9116 "dns.resp.len": "6",
9117 "dns.ns": "n3b.akamaiedge.net"
9119 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
9120 "dns.resp.name": "b.akamaiedge.net",
9121 "dns.resp.type": "2",
9122 "dns.resp.class": "0x00000001",
9123 "dns.resp.ttl": "1789",
9124 "dns.resp.len": "6",
9125 "dns.ns": "n2b.akamaiedge.net"
9127 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
9128 "dns.resp.name": "b.akamaiedge.net",
9129 "dns.resp.type": "2",
9130 "dns.resp.class": "0x00000001",
9131 "dns.resp.ttl": "1789",
9132 "dns.resp.len": "6",
9133 "dns.ns": "n5b.akamaiedge.net"
9136 "Additional records": {
9137 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
9138 "dns.resp.name": "n0b.akamaiedge.net",
9139 "dns.resp.type": "1",
9140 "dns.resp.class": "0x00000001",
9141 "dns.resp.ttl": "98",
9142 "dns.resp.len": "4",
9143 "dns.a": "88.221.81.192"
9145 "n1b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
9146 "dns.resp.name": "n1b.akamaiedge.net",
9147 "dns.resp.type": "1",
9148 "dns.resp.class": "0x00000001",
9149 "dns.resp.ttl": "6816",
9150 "dns.resp.len": "4",
9151 "dns.a": "198.172.88.208"
9153 "n2b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
9154 "dns.resp.name": "n2b.akamaiedge.net",
9155 "dns.resp.type": "1",
9156 "dns.resp.class": "0x00000001",
9157 "dns.resp.ttl": "7318",
9158 "dns.resp.len": "4",
9159 "dns.a": "198.172.88.208"
9161 "n3b.akamaiedge.net: type A, class IN, addr 198.172.88.200": {
9162 "dns.resp.name": "n3b.akamaiedge.net",
9163 "dns.resp.type": "1",
9164 "dns.resp.class": "0x00000001",
9165 "dns.resp.ttl": "3503",
9166 "dns.resp.len": "4",
9167 "dns.a": "198.172.88.200"
9169 "n4b.akamaiedge.net: type A, class IN, addr 173.197.192.230": {
9170 "dns.resp.name": "n4b.akamaiedge.net",
9171 "dns.resp.type": "1",
9172 "dns.resp.class": "0x00000001",
9173 "dns.resp.ttl": "2409",
9174 "dns.resp.len": "4",
9175 "dns.a": "173.197.192.230"
9177 "n5b.akamaiedge.net: type A, class IN, addr 165.254.16.89": {
9178 "dns.resp.name": "n5b.akamaiedge.net",
9179 "dns.resp.type": "1",
9180 "dns.resp.class": "0x00000001",
9181 "dns.resp.ttl": "157",
9182 "dns.resp.len": "4",
9183 "dns.a": "165.254.16.89"
9185 "n6b.akamaiedge.net: type A, class IN, addr 198.172.88.205": {
9186 "dns.resp.name": "n6b.akamaiedge.net",
9187 "dns.resp.type": "1",
9188 "dns.resp.class": "0x00000001",
9189 "dns.resp.ttl": "3960",
9190 "dns.resp.len": "4",
9191 "dns.a": "198.172.88.205"
9193 "n7b.akamaiedge.net: type A, class IN, addr 173.197.192.237": {
9194 "dns.resp.name": "n7b.akamaiedge.net",
9195 "dns.resp.type": "1",
9196 "dns.resp.class": "0x00000001",
9197 "dns.resp.ttl": "4019",
9198 "dns.resp.len": "4",
9199 "dns.a": "173.197.192.237"
9201 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
9202 "dns.resp.name": "a0b.akamaiedge.net",
9203 "dns.resp.type": "28",
9204 "dns.resp.class": "0x00000001",
9205 "dns.resp.ttl": "2795",
9206 "dns.resp.len": "16",
9207 "dns.aaaa": "2600:1480:e800::c0"
9216 "_index": "packets-2017-10-26",
9217 "_type": "pcap_file",
9222 "frame.encap_type": "1",
9223 "frame.time": "Oct 19, 2017 20:33:22.842206000 PDT",
9224 "frame.offset_shift": "0.000000000",
9225 "frame.time_epoch": "1508470402.842206000",
9226 "frame.time_delta": "0.384116000",
9227 "frame.time_delta_displayed": "630.730155000",
9228 "frame.time_relative": "12690.437002000",
9229 "frame.number": "13303",
9231 "frame.cap_len": "79",
9232 "frame.marked": "0",
9233 "frame.ignored": "0",
9234 "frame.protocols": "eth:ethertype:ip:udp:dns",
9235 "frame.coloring_rule.name": "UDP",
9236 "frame.coloring_rule.string": "udp"
9239 "eth.dst": "b0:b9:8a:73:69:8e",
9241 "eth.dst_resolved": "Netgear_73:69:8e",
9242 "eth.addr": "b0:b9:8a:73:69:8e",
9243 "eth.addr_resolved": "Netgear_73:69:8e",
9247 "eth.src": "00:17:88:69:ee:e4",
9249 "eth.src_resolved": "PhilipsL_69:ee:e4",
9250 "eth.addr": "00:17:88:69:ee:e4",
9251 "eth.addr_resolved": "PhilipsL_69:ee:e4",
9255 "eth.type": "0x00000800"
9260 "ip.dsfield": "0x00000000",
9261 "ip.dsfield_tree": {
9262 "ip.dsfield.dscp": "0",
9263 "ip.dsfield.ecn": "0"
9266 "ip.id": "0x0000dd6f",
9267 "ip.flags": "0x00000002",
9273 "ip.frag_offset": "0",
9276 "ip.checksum": "0x0000db4a",
9277 "ip.checksum.status": "2",
9278 "ip.src": "192.168.0.160",
9279 "ip.addr": "192.168.0.160",
9280 "ip.src_host": "192.168.0.160",
9281 "ip.host": "192.168.0.160",
9282 "ip.dst": "192.168.0.1",
9283 "ip.addr": "192.168.0.1",
9284 "ip.dst_host": "192.168.0.1",
9285 "ip.host": "192.168.0.1",
9286 "Source GeoIP: Unknown": "",
9287 "Destination GeoIP: Unknown": ""
9290 "udp.srcport": "44754",
9291 "udp.dstport": "53",
9292 "udp.port": "44754",
9295 "udp.checksum": "0x000011c9",
9296 "udp.checksum.status": "2",
9300 "dns.response_in": "13304",
9301 "dns.id": "0x000004a2",
9302 "dns.flags": "0x00000100",
9304 "dns.flags.response": "0",
9305 "dns.flags.opcode": "0",
9306 "dns.flags.truncated": "0",
9307 "dns.flags.recdesired": "1",
9309 "dns.flags.checkdisable": "0"
9311 "dns.count.queries": "1",
9312 "dns.count.answers": "0",
9313 "dns.count.auth_rr": "0",
9314 "dns.count.add_rr": "0",
9316 "dcp.cpp.philips.com: type AAAA, class IN": {
9317 "dns.qry.name": "dcp.cpp.philips.com",
9318 "dns.qry.name.len": "19",
9319 "dns.count.labels": "4",
9320 "dns.qry.type": "28",
9321 "dns.qry.class": "0x00000001"
9330 "_index": "packets-2017-10-26",
9331 "_type": "pcap_file",
9336 "frame.encap_type": "1",
9337 "frame.time": "Oct 19, 2017 20:33:22.844183000 PDT",
9338 "frame.offset_shift": "0.000000000",
9339 "frame.time_epoch": "1508470402.844183000",
9340 "frame.time_delta": "0.001977000",
9341 "frame.time_delta_displayed": "0.001977000",
9342 "frame.time_relative": "12690.438979000",
9343 "frame.number": "13304",
9345 "frame.cap_len": "137",
9346 "frame.marked": "0",
9347 "frame.ignored": "0",
9348 "frame.protocols": "eth:ethertype:ip:udp:dns",
9349 "frame.coloring_rule.name": "UDP",
9350 "frame.coloring_rule.string": "udp"
9353 "eth.dst": "00:17:88:69:ee:e4",
9355 "eth.dst_resolved": "PhilipsL_69:ee:e4",
9356 "eth.addr": "00:17:88:69:ee:e4",
9357 "eth.addr_resolved": "PhilipsL_69:ee:e4",
9361 "eth.src": "b0:b9:8a:73:69:8e",
9363 "eth.src_resolved": "Netgear_73:69:8e",
9364 "eth.addr": "b0:b9:8a:73:69:8e",
9365 "eth.addr_resolved": "Netgear_73:69:8e",
9369 "eth.type": "0x00000800"
9374 "ip.dsfield": "0x00000000",
9375 "ip.dsfield_tree": {
9376 "ip.dsfield.dscp": "0",
9377 "ip.dsfield.ecn": "0"
9380 "ip.id": "0x00000246",
9381 "ip.flags": "0x00000002",
9387 "ip.frag_offset": "0",
9390 "ip.checksum": "0x0000b63a",
9391 "ip.checksum.status": "2",
9392 "ip.src": "192.168.0.1",
9393 "ip.addr": "192.168.0.1",
9394 "ip.src_host": "192.168.0.1",
9395 "ip.host": "192.168.0.1",
9396 "ip.dst": "192.168.0.160",
9397 "ip.addr": "192.168.0.160",
9398 "ip.dst_host": "192.168.0.160",
9399 "ip.host": "192.168.0.160",
9400 "Source GeoIP: Unknown": "",
9401 "Destination GeoIP: Unknown": ""
9404 "udp.srcport": "53",
9405 "udp.dstport": "44754",
9407 "udp.port": "44754",
9408 "udp.length": "103",
9409 "udp.checksum": "0x0000826a",
9410 "udp.checksum.status": "2",
9414 "dns.response_to": "13303",
9415 "dns.time": "0.001977000",
9416 "dns.id": "0x000004a2",
9417 "dns.flags": "0x00008180",
9419 "dns.flags.response": "1",
9420 "dns.flags.opcode": "0",
9421 "dns.flags.authoritative": "0",
9422 "dns.flags.truncated": "0",
9423 "dns.flags.recdesired": "1",
9424 "dns.flags.recavail": "1",
9426 "dns.flags.authenticated": "0",
9427 "dns.flags.checkdisable": "0",
9428 "dns.flags.rcode": "0"
9430 "dns.count.queries": "1",
9431 "dns.count.answers": "0",
9432 "dns.count.auth_rr": "1",
9433 "dns.count.add_rr": "0",
9435 "dcp.cpp.philips.com: type AAAA, class IN": {
9436 "dns.qry.name": "dcp.cpp.philips.com",
9437 "dns.qry.name.len": "19",
9438 "dns.count.labels": "4",
9439 "dns.qry.type": "28",
9440 "dns.qry.class": "0x00000001"
9443 "Authoritative nameservers": {
9444 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
9445 "dns.resp.name": "cpp.philips.com",
9446 "dns.resp.type": "6",
9447 "dns.resp.class": "0x00000001",
9448 "dns.resp.ttl": "3219",
9449 "dns.resp.len": "46",
9450 "dns.soa.mname": "ns1.ext.philips.com",
9451 "dns.soa.rname": "ddi-authority.philips.com",
9452 "dns.soa.serial_number": "387",
9453 "dns.soa.refresh_interval": "1200",
9454 "dns.soa.retry_interval": "300",
9455 "dns.soa.expire_limit": "1209600",
9456 "dns.soa.mininum_ttl": "3600"
9465 "_index": "packets-2017-10-26",
9466 "_type": "pcap_file",
9471 "frame.encap_type": "1",
9472 "frame.time": "Oct 19, 2017 20:33:22.846468000 PDT",
9473 "frame.offset_shift": "0.000000000",
9474 "frame.time_epoch": "1508470402.846468000",
9475 "frame.time_delta": "0.002285000",
9476 "frame.time_delta_displayed": "0.002285000",
9477 "frame.time_relative": "12690.441264000",
9478 "frame.number": "13305",
9480 "frame.cap_len": "79",
9481 "frame.marked": "0",
9482 "frame.ignored": "0",
9483 "frame.protocols": "eth:ethertype:ip:udp:dns",
9484 "frame.coloring_rule.name": "UDP",
9485 "frame.coloring_rule.string": "udp"
9488 "eth.dst": "b0:b9:8a:73:69:8e",
9490 "eth.dst_resolved": "Netgear_73:69:8e",
9491 "eth.addr": "b0:b9:8a:73:69:8e",
9492 "eth.addr_resolved": "Netgear_73:69:8e",
9496 "eth.src": "00:17:88:69:ee:e4",
9498 "eth.src_resolved": "PhilipsL_69:ee:e4",
9499 "eth.addr": "00:17:88:69:ee:e4",
9500 "eth.addr_resolved": "PhilipsL_69:ee:e4",
9504 "eth.type": "0x00000800"
9509 "ip.dsfield": "0x00000000",
9510 "ip.dsfield_tree": {
9511 "ip.dsfield.dscp": "0",
9512 "ip.dsfield.ecn": "0"
9515 "ip.id": "0x0000dd70",
9516 "ip.flags": "0x00000002",
9522 "ip.frag_offset": "0",
9525 "ip.checksum": "0x0000db49",
9526 "ip.checksum.status": "2",
9527 "ip.src": "192.168.0.160",
9528 "ip.addr": "192.168.0.160",
9529 "ip.src_host": "192.168.0.160",
9530 "ip.host": "192.168.0.160",
9531 "ip.dst": "192.168.0.1",
9532 "ip.addr": "192.168.0.1",
9533 "ip.dst_host": "192.168.0.1",
9534 "ip.host": "192.168.0.1",
9535 "Source GeoIP: Unknown": "",
9536 "Destination GeoIP: Unknown": ""
9539 "udp.srcport": "35982",
9540 "udp.dstport": "53",
9541 "udp.port": "35982",
9544 "udp.checksum": "0x00004f0c",
9545 "udp.checksum.status": "2",
9549 "dns.response_in": "13306",
9550 "dns.id": "0x000004a3",
9551 "dns.flags": "0x00000100",
9553 "dns.flags.response": "0",
9554 "dns.flags.opcode": "0",
9555 "dns.flags.truncated": "0",
9556 "dns.flags.recdesired": "1",
9558 "dns.flags.checkdisable": "0"
9560 "dns.count.queries": "1",
9561 "dns.count.answers": "0",
9562 "dns.count.auth_rr": "0",
9563 "dns.count.add_rr": "0",
9565 "dcp.cpp.philips.com: type A, class IN": {
9566 "dns.qry.name": "dcp.cpp.philips.com",
9567 "dns.qry.name.len": "19",
9568 "dns.count.labels": "4",
9569 "dns.qry.type": "1",
9570 "dns.qry.class": "0x00000001"
9579 "_index": "packets-2017-10-26",
9580 "_type": "pcap_file",
9585 "frame.encap_type": "1",
9586 "frame.time": "Oct 19, 2017 20:33:22.848081000 PDT",
9587 "frame.offset_shift": "0.000000000",
9588 "frame.time_epoch": "1508470402.848081000",
9589 "frame.time_delta": "0.001613000",
9590 "frame.time_delta_displayed": "0.001613000",
9591 "frame.time_relative": "12690.442877000",
9592 "frame.number": "13306",
9594 "frame.cap_len": "285",
9595 "frame.marked": "0",
9596 "frame.ignored": "0",
9597 "frame.protocols": "eth:ethertype:ip:udp:dns",
9598 "frame.coloring_rule.name": "UDP",
9599 "frame.coloring_rule.string": "udp"
9602 "eth.dst": "00:17:88:69:ee:e4",
9604 "eth.dst_resolved": "PhilipsL_69:ee:e4",
9605 "eth.addr": "00:17:88:69:ee:e4",
9606 "eth.addr_resolved": "PhilipsL_69:ee:e4",
9610 "eth.src": "b0:b9:8a:73:69:8e",
9612 "eth.src_resolved": "Netgear_73:69:8e",
9613 "eth.addr": "b0:b9:8a:73:69:8e",
9614 "eth.addr_resolved": "Netgear_73:69:8e",
9618 "eth.type": "0x00000800"
9623 "ip.dsfield": "0x00000000",
9624 "ip.dsfield_tree": {
9625 "ip.dsfield.dscp": "0",
9626 "ip.dsfield.ecn": "0"
9629 "ip.id": "0x00000247",
9630 "ip.flags": "0x00000002",
9636 "ip.frag_offset": "0",
9639 "ip.checksum": "0x0000b5a5",
9640 "ip.checksum.status": "2",
9641 "ip.src": "192.168.0.1",
9642 "ip.addr": "192.168.0.1",
9643 "ip.src_host": "192.168.0.1",
9644 "ip.host": "192.168.0.1",
9645 "ip.dst": "192.168.0.160",
9646 "ip.addr": "192.168.0.160",
9647 "ip.dst_host": "192.168.0.160",
9648 "ip.host": "192.168.0.160",
9649 "Source GeoIP: Unknown": "",
9650 "Destination GeoIP: Unknown": ""
9653 "udp.srcport": "53",
9654 "udp.dstport": "35982",
9656 "udp.port": "35982",
9657 "udp.length": "251",
9658 "udp.checksum": "0x000082fe",
9659 "udp.checksum.status": "2",
9663 "dns.response_to": "13305",
9664 "dns.time": "0.001613000",
9665 "dns.id": "0x000004a3",
9666 "dns.flags": "0x00008180",
9668 "dns.flags.response": "1",
9669 "dns.flags.opcode": "0",
9670 "dns.flags.authoritative": "0",
9671 "dns.flags.truncated": "0",
9672 "dns.flags.recdesired": "1",
9673 "dns.flags.recavail": "1",
9675 "dns.flags.authenticated": "0",
9676 "dns.flags.checkdisable": "0",
9677 "dns.flags.rcode": "0"
9679 "dns.count.queries": "1",
9680 "dns.count.answers": "1",
9681 "dns.count.auth_rr": "3",
9682 "dns.count.add_rr": "6",
9684 "dcp.cpp.philips.com: type A, class IN": {
9685 "dns.qry.name": "dcp.cpp.philips.com",
9686 "dns.qry.name.len": "19",
9687 "dns.count.labels": "4",
9688 "dns.qry.type": "1",
9689 "dns.qry.class": "0x00000001"
9693 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
9694 "dns.resp.name": "dcp.cpp.philips.com",
9695 "dns.resp.type": "1",
9696 "dns.resp.class": "0x00000001",
9697 "dns.resp.ttl": "3161",
9698 "dns.resp.len": "4",
9699 "dns.a": "5.79.62.93"
9702 "Authoritative nameservers": {
9703 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
9704 "dns.resp.name": "cpp.philips.com",
9705 "dns.resp.type": "2",
9706 "dns.resp.class": "0x00000001",
9707 "dns.resp.ttl": "645",
9708 "dns.resp.len": "10",
9709 "dns.ns": "ns3.ext.philips.com"
9711 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
9712 "dns.resp.name": "cpp.philips.com",
9713 "dns.resp.type": "2",
9714 "dns.resp.class": "0x00000001",
9715 "dns.resp.ttl": "645",
9716 "dns.resp.len": "6",
9717 "dns.ns": "ns2.ext.philips.com"
9719 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
9720 "dns.resp.name": "cpp.philips.com",
9721 "dns.resp.type": "2",
9722 "dns.resp.class": "0x00000001",
9723 "dns.resp.ttl": "645",
9724 "dns.resp.len": "6",
9725 "dns.ns": "ns1.ext.philips.com"
9728 "Additional records": {
9729 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
9730 "dns.resp.name": "ns1.ext.philips.com",
9731 "dns.resp.type": "1",
9732 "dns.resp.class": "0x00000001",
9733 "dns.resp.ttl": "856",
9734 "dns.resp.len": "4",
9735 "dns.a": "57.67.40.20"
9737 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
9738 "dns.resp.name": "ns2.ext.philips.com",
9739 "dns.resp.type": "1",
9740 "dns.resp.class": "0x00000001",
9741 "dns.resp.ttl": "164374",
9742 "dns.resp.len": "4",
9743 "dns.a": "57.77.21.76"
9745 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
9746 "dns.resp.name": "ns3.ext.philips.com",
9747 "dns.resp.type": "1",
9748 "dns.resp.class": "0x00000001",
9749 "dns.resp.ttl": "164374",
9750 "dns.resp.len": "4",
9751 "dns.a": "57.73.36.68"
9753 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
9754 "dns.resp.name": "ns1.ext.philips.com",
9755 "dns.resp.type": "28",
9756 "dns.resp.class": "0x00000001",
9757 "dns.resp.ttl": "2117",
9758 "dns.resp.len": "16",
9759 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
9761 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
9762 "dns.resp.name": "ns2.ext.philips.com",
9763 "dns.resp.type": "28",
9764 "dns.resp.class": "0x00000001",
9765 "dns.resp.ttl": "54351",
9766 "dns.resp.len": "16",
9767 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
9769 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
9770 "dns.resp.name": "ns3.ext.philips.com",
9771 "dns.resp.type": "28",
9772 "dns.resp.class": "0x00000001",
9773 "dns.resp.ttl": "54351",
9774 "dns.resp.len": "16",
9775 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
9784 "_index": "packets-2017-10-26",
9785 "_type": "pcap_file",
9790 "frame.encap_type": "1",
9791 "frame.time": "Oct 19, 2017 20:33:23.264573000 PDT",
9792 "frame.offset_shift": "0.000000000",
9793 "frame.time_epoch": "1508470403.264573000",
9794 "frame.time_delta": "0.001337000",
9795 "frame.time_delta_displayed": "0.416492000",
9796 "frame.time_relative": "12690.859369000",
9797 "frame.number": "13322",
9799 "frame.cap_len": "79",
9800 "frame.marked": "0",
9801 "frame.ignored": "0",
9802 "frame.protocols": "eth:ethertype:ip:udp:dns",
9803 "frame.coloring_rule.name": "UDP",
9804 "frame.coloring_rule.string": "udp"
9807 "eth.dst": "b0:b9:8a:73:69:8e",
9809 "eth.dst_resolved": "Netgear_73:69:8e",
9810 "eth.addr": "b0:b9:8a:73:69:8e",
9811 "eth.addr_resolved": "Netgear_73:69:8e",
9815 "eth.src": "00:17:88:69:ee:e4",
9817 "eth.src_resolved": "PhilipsL_69:ee:e4",
9818 "eth.addr": "00:17:88:69:ee:e4",
9819 "eth.addr_resolved": "PhilipsL_69:ee:e4",
9823 "eth.type": "0x00000800"
9828 "ip.dsfield": "0x00000000",
9829 "ip.dsfield_tree": {
9830 "ip.dsfield.dscp": "0",
9831 "ip.dsfield.ecn": "0"
9834 "ip.id": "0x0000dd71",
9835 "ip.flags": "0x00000002",
9841 "ip.frag_offset": "0",
9844 "ip.checksum": "0x0000db48",
9845 "ip.checksum.status": "2",
9846 "ip.src": "192.168.0.160",
9847 "ip.addr": "192.168.0.160",
9848 "ip.src_host": "192.168.0.160",
9849 "ip.host": "192.168.0.160",
9850 "ip.dst": "192.168.0.1",
9851 "ip.addr": "192.168.0.1",
9852 "ip.dst_host": "192.168.0.1",
9853 "ip.host": "192.168.0.1",
9854 "Source GeoIP: Unknown": "",
9855 "Destination GeoIP: Unknown": ""
9858 "udp.srcport": "56095",
9859 "udp.dstport": "53",
9860 "udp.port": "56095",
9863 "udp.checksum": "0x0000e579",
9864 "udp.checksum.status": "2",
9868 "dns.response_in": "13323",
9869 "dns.id": "0x000004a4",
9870 "dns.flags": "0x00000100",
9872 "dns.flags.response": "0",
9873 "dns.flags.opcode": "0",
9874 "dns.flags.truncated": "0",
9875 "dns.flags.recdesired": "1",
9877 "dns.flags.checkdisable": "0"
9879 "dns.count.queries": "1",
9880 "dns.count.answers": "0",
9881 "dns.count.auth_rr": "0",
9882 "dns.count.add_rr": "0",
9884 "dcp.cpp.philips.com: type AAAA, class IN": {
9885 "dns.qry.name": "dcp.cpp.philips.com",
9886 "dns.qry.name.len": "19",
9887 "dns.count.labels": "4",
9888 "dns.qry.type": "28",
9889 "dns.qry.class": "0x00000001"
9898 "_index": "packets-2017-10-26",
9899 "_type": "pcap_file",
9904 "frame.encap_type": "1",
9905 "frame.time": "Oct 19, 2017 20:33:23.265148000 PDT",
9906 "frame.offset_shift": "0.000000000",
9907 "frame.time_epoch": "1508470403.265148000",
9908 "frame.time_delta": "0.000575000",
9909 "frame.time_delta_displayed": "0.000575000",
9910 "frame.time_relative": "12690.859944000",
9911 "frame.number": "13323",
9913 "frame.cap_len": "79",
9914 "frame.marked": "0",
9915 "frame.ignored": "0",
9916 "frame.protocols": "eth:ethertype:ip:udp:dns",
9917 "frame.coloring_rule.name": "UDP",
9918 "frame.coloring_rule.string": "udp"
9921 "eth.dst": "00:17:88:69:ee:e4",
9923 "eth.dst_resolved": "PhilipsL_69:ee:e4",
9924 "eth.addr": "00:17:88:69:ee:e4",
9925 "eth.addr_resolved": "PhilipsL_69:ee:e4",
9929 "eth.src": "b0:b9:8a:73:69:8e",
9931 "eth.src_resolved": "Netgear_73:69:8e",
9932 "eth.addr": "b0:b9:8a:73:69:8e",
9933 "eth.addr_resolved": "Netgear_73:69:8e",
9937 "eth.type": "0x00000800"
9942 "ip.dsfield": "0x00000000",
9943 "ip.dsfield_tree": {
9944 "ip.dsfield.dscp": "0",
9945 "ip.dsfield.ecn": "0"
9948 "ip.id": "0x0000026e",
9949 "ip.flags": "0x00000002",
9955 "ip.frag_offset": "0",
9958 "ip.checksum": "0x0000b64c",
9959 "ip.checksum.status": "2",
9960 "ip.src": "192.168.0.1",
9961 "ip.addr": "192.168.0.1",
9962 "ip.src_host": "192.168.0.1",
9963 "ip.host": "192.168.0.1",
9964 "ip.dst": "192.168.0.160",
9965 "ip.addr": "192.168.0.160",
9966 "ip.dst_host": "192.168.0.160",
9967 "ip.host": "192.168.0.160",
9968 "Source GeoIP: Unknown": "",
9969 "Destination GeoIP: Unknown": ""
9972 "udp.srcport": "53",
9973 "udp.dstport": "56095",
9975 "udp.port": "56095",
9977 "udp.checksum": "0x00008230",
9978 "udp.checksum.status": "2",
9982 "dns.response_to": "13322",
9983 "dns.time": "0.000575000",
9984 "dns.id": "0x000004a4",
9985 "dns.flags": "0x00008180",
9987 "dns.flags.response": "1",
9988 "dns.flags.opcode": "0",
9989 "dns.flags.authoritative": "0",
9990 "dns.flags.truncated": "0",
9991 "dns.flags.recdesired": "1",
9992 "dns.flags.recavail": "1",
9994 "dns.flags.authenticated": "0",
9995 "dns.flags.checkdisable": "0",
9996 "dns.flags.rcode": "0"
9998 "dns.count.queries": "1",
9999 "dns.count.answers": "0",
10000 "dns.count.auth_rr": "0",
10001 "dns.count.add_rr": "0",
10003 "dcp.cpp.philips.com: type AAAA, class IN": {
10004 "dns.qry.name": "dcp.cpp.philips.com",
10005 "dns.qry.name.len": "19",
10006 "dns.count.labels": "4",
10007 "dns.qry.type": "28",
10008 "dns.qry.class": "0x00000001"
10017 "_index": "packets-2017-10-26",
10018 "_type": "pcap_file",
10023 "frame.encap_type": "1",
10024 "frame.time": "Oct 19, 2017 20:33:23.266041000 PDT",
10025 "frame.offset_shift": "0.000000000",
10026 "frame.time_epoch": "1508470403.266041000",
10027 "frame.time_delta": "0.000893000",
10028 "frame.time_delta_displayed": "0.000893000",
10029 "frame.time_relative": "12690.860837000",
10030 "frame.number": "13324",
10032 "frame.cap_len": "79",
10033 "frame.marked": "0",
10034 "frame.ignored": "0",
10035 "frame.protocols": "eth:ethertype:ip:udp:dns",
10036 "frame.coloring_rule.name": "UDP",
10037 "frame.coloring_rule.string": "udp"
10040 "eth.dst": "b0:b9:8a:73:69:8e",
10042 "eth.dst_resolved": "Netgear_73:69:8e",
10043 "eth.addr": "b0:b9:8a:73:69:8e",
10044 "eth.addr_resolved": "Netgear_73:69:8e",
10048 "eth.src": "00:17:88:69:ee:e4",
10050 "eth.src_resolved": "PhilipsL_69:ee:e4",
10051 "eth.addr": "00:17:88:69:ee:e4",
10052 "eth.addr_resolved": "PhilipsL_69:ee:e4",
10056 "eth.type": "0x00000800"
10060 "ip.hdr_len": "20",
10061 "ip.dsfield": "0x00000000",
10062 "ip.dsfield_tree": {
10063 "ip.dsfield.dscp": "0",
10064 "ip.dsfield.ecn": "0"
10067 "ip.id": "0x0000dd72",
10068 "ip.flags": "0x00000002",
10070 "ip.flags.rb": "0",
10071 "ip.flags.df": "1",
10074 "ip.frag_offset": "0",
10077 "ip.checksum": "0x0000db47",
10078 "ip.checksum.status": "2",
10079 "ip.src": "192.168.0.160",
10080 "ip.addr": "192.168.0.160",
10081 "ip.src_host": "192.168.0.160",
10082 "ip.host": "192.168.0.160",
10083 "ip.dst": "192.168.0.1",
10084 "ip.addr": "192.168.0.1",
10085 "ip.dst_host": "192.168.0.1",
10086 "ip.host": "192.168.0.1",
10087 "Source GeoIP: Unknown": "",
10088 "Destination GeoIP: Unknown": ""
10091 "udp.srcport": "41786",
10092 "udp.dstport": "53",
10093 "udp.port": "41786",
10095 "udp.length": "45",
10096 "udp.checksum": "0x0000385e",
10097 "udp.checksum.status": "2",
10098 "udp.stream": "187"
10101 "dns.response_in": "13325",
10102 "dns.id": "0x000004a5",
10103 "dns.flags": "0x00000100",
10104 "dns.flags_tree": {
10105 "dns.flags.response": "0",
10106 "dns.flags.opcode": "0",
10107 "dns.flags.truncated": "0",
10108 "dns.flags.recdesired": "1",
10109 "dns.flags.z": "0",
10110 "dns.flags.checkdisable": "0"
10112 "dns.count.queries": "1",
10113 "dns.count.answers": "0",
10114 "dns.count.auth_rr": "0",
10115 "dns.count.add_rr": "0",
10117 "dcp.cpp.philips.com: type A, class IN": {
10118 "dns.qry.name": "dcp.cpp.philips.com",
10119 "dns.qry.name.len": "19",
10120 "dns.count.labels": "4",
10121 "dns.qry.type": "1",
10122 "dns.qry.class": "0x00000001"
10131 "_index": "packets-2017-10-26",
10132 "_type": "pcap_file",
10137 "frame.encap_type": "1",
10138 "frame.time": "Oct 19, 2017 20:33:23.266579000 PDT",
10139 "frame.offset_shift": "0.000000000",
10140 "frame.time_epoch": "1508470403.266579000",
10141 "frame.time_delta": "0.000538000",
10142 "frame.time_delta_displayed": "0.000538000",
10143 "frame.time_relative": "12690.861375000",
10144 "frame.number": "13325",
10146 "frame.cap_len": "95",
10147 "frame.marked": "0",
10148 "frame.ignored": "0",
10149 "frame.protocols": "eth:ethertype:ip:udp:dns",
10150 "frame.coloring_rule.name": "UDP",
10151 "frame.coloring_rule.string": "udp"
10154 "eth.dst": "00:17:88:69:ee:e4",
10156 "eth.dst_resolved": "PhilipsL_69:ee:e4",
10157 "eth.addr": "00:17:88:69:ee:e4",
10158 "eth.addr_resolved": "PhilipsL_69:ee:e4",
10162 "eth.src": "b0:b9:8a:73:69:8e",
10164 "eth.src_resolved": "Netgear_73:69:8e",
10165 "eth.addr": "b0:b9:8a:73:69:8e",
10166 "eth.addr_resolved": "Netgear_73:69:8e",
10170 "eth.type": "0x00000800"
10174 "ip.hdr_len": "20",
10175 "ip.dsfield": "0x00000000",
10176 "ip.dsfield_tree": {
10177 "ip.dsfield.dscp": "0",
10178 "ip.dsfield.ecn": "0"
10181 "ip.id": "0x0000026f",
10182 "ip.flags": "0x00000002",
10184 "ip.flags.rb": "0",
10185 "ip.flags.df": "1",
10188 "ip.frag_offset": "0",
10191 "ip.checksum": "0x0000b63b",
10192 "ip.checksum.status": "2",
10193 "ip.src": "192.168.0.1",
10194 "ip.addr": "192.168.0.1",
10195 "ip.src_host": "192.168.0.1",
10196 "ip.host": "192.168.0.1",
10197 "ip.dst": "192.168.0.160",
10198 "ip.addr": "192.168.0.160",
10199 "ip.dst_host": "192.168.0.160",
10200 "ip.host": "192.168.0.160",
10201 "Source GeoIP: Unknown": "",
10202 "Destination GeoIP: Unknown": ""
10205 "udp.srcport": "53",
10206 "udp.dstport": "41786",
10208 "udp.port": "41786",
10209 "udp.length": "61",
10210 "udp.checksum": "0x00008240",
10211 "udp.checksum.status": "2",
10212 "udp.stream": "187"
10215 "dns.response_to": "13324",
10216 "dns.time": "0.000538000",
10217 "dns.id": "0x000004a5",
10218 "dns.flags": "0x00008180",
10219 "dns.flags_tree": {
10220 "dns.flags.response": "1",
10221 "dns.flags.opcode": "0",
10222 "dns.flags.authoritative": "0",
10223 "dns.flags.truncated": "0",
10224 "dns.flags.recdesired": "1",
10225 "dns.flags.recavail": "1",
10226 "dns.flags.z": "0",
10227 "dns.flags.authenticated": "0",
10228 "dns.flags.checkdisable": "0",
10229 "dns.flags.rcode": "0"
10231 "dns.count.queries": "1",
10232 "dns.count.answers": "1",
10233 "dns.count.auth_rr": "0",
10234 "dns.count.add_rr": "0",
10236 "dcp.cpp.philips.com: type A, class IN": {
10237 "dns.qry.name": "dcp.cpp.philips.com",
10238 "dns.qry.name.len": "19",
10239 "dns.count.labels": "4",
10240 "dns.qry.type": "1",
10241 "dns.qry.class": "0x00000001"
10245 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
10246 "dns.resp.name": "dcp.cpp.philips.com",
10247 "dns.resp.type": "1",
10248 "dns.resp.class": "0x00000001",
10249 "dns.resp.ttl": "3160",
10250 "dns.resp.len": "4",
10251 "dns.a": "5.79.62.93"
10260 "_index": "packets-2017-10-26",
10261 "_type": "pcap_file",
10266 "frame.encap_type": "1",
10267 "frame.time": "Oct 19, 2017 20:37:52.120059000 PDT",
10268 "frame.offset_shift": "0.000000000",
10269 "frame.time_epoch": "1508470672.120059000",
10270 "frame.time_delta": "0.625668000",
10271 "frame.time_delta_displayed": "268.853480000",
10272 "frame.time_relative": "12959.714855000",
10273 "frame.number": "13582",
10275 "frame.cap_len": "76",
10276 "frame.marked": "0",
10277 "frame.ignored": "0",
10278 "frame.protocols": "eth:ethertype:ip:udp:dns",
10279 "frame.coloring_rule.name": "UDP",
10280 "frame.coloring_rule.string": "udp"
10283 "eth.dst": "b0:b9:8a:73:69:8e",
10285 "eth.dst_resolved": "Netgear_73:69:8e",
10286 "eth.addr": "b0:b9:8a:73:69:8e",
10287 "eth.addr_resolved": "Netgear_73:69:8e",
10291 "eth.src": "00:17:88:69:ee:e4",
10293 "eth.src_resolved": "PhilipsL_69:ee:e4",
10294 "eth.addr": "00:17:88:69:ee:e4",
10295 "eth.addr_resolved": "PhilipsL_69:ee:e4",
10299 "eth.type": "0x00000800"
10303 "ip.hdr_len": "20",
10304 "ip.dsfield": "0x00000000",
10305 "ip.dsfield_tree": {
10306 "ip.dsfield.dscp": "0",
10307 "ip.dsfield.ecn": "0"
10310 "ip.id": "0x00002649",
10311 "ip.flags": "0x00000002",
10313 "ip.flags.rb": "0",
10314 "ip.flags.df": "1",
10317 "ip.frag_offset": "0",
10320 "ip.checksum": "0x00009274",
10321 "ip.checksum.status": "2",
10322 "ip.src": "192.168.0.160",
10323 "ip.addr": "192.168.0.160",
10324 "ip.src_host": "192.168.0.160",
10325 "ip.host": "192.168.0.160",
10326 "ip.dst": "192.168.0.1",
10327 "ip.addr": "192.168.0.1",
10328 "ip.dst_host": "192.168.0.1",
10329 "ip.host": "192.168.0.1",
10330 "Source GeoIP: Unknown": "",
10331 "Destination GeoIP: Unknown": ""
10334 "udp.srcport": "54738",
10335 "udp.dstport": "53",
10336 "udp.port": "54738",
10338 "udp.length": "42",
10339 "udp.checksum": "0x0000833f",
10340 "udp.checksum.status": "2",
10341 "udp.stream": "188"
10344 "dns.response_in": "13583",
10345 "dns.id": "0x000004a6",
10346 "dns.flags": "0x00000100",
10347 "dns.flags_tree": {
10348 "dns.flags.response": "0",
10349 "dns.flags.opcode": "0",
10350 "dns.flags.truncated": "0",
10351 "dns.flags.recdesired": "1",
10352 "dns.flags.z": "0",
10353 "dns.flags.checkdisable": "0"
10355 "dns.count.queries": "1",
10356 "dns.count.answers": "0",
10357 "dns.count.auth_rr": "0",
10358 "dns.count.add_rr": "0",
10360 "www2.meethue.com: type A, class IN": {
10361 "dns.qry.name": "www2.meethue.com",
10362 "dns.qry.name.len": "16",
10363 "dns.count.labels": "3",
10364 "dns.qry.type": "1",
10365 "dns.qry.class": "0x00000001"
10374 "_index": "packets-2017-10-26",
10375 "_type": "pcap_file",
10380 "frame.encap_type": "1",
10381 "frame.time": "Oct 19, 2017 20:37:52.140960000 PDT",
10382 "frame.offset_shift": "0.000000000",
10383 "frame.time_epoch": "1508470672.140960000",
10384 "frame.time_delta": "0.020901000",
10385 "frame.time_delta_displayed": "0.020901000",
10386 "frame.time_relative": "12959.735756000",
10387 "frame.number": "13583",
10388 "frame.len": "513",
10389 "frame.cap_len": "513",
10390 "frame.marked": "0",
10391 "frame.ignored": "0",
10392 "frame.protocols": "eth:ethertype:ip:udp:dns",
10393 "frame.coloring_rule.name": "UDP",
10394 "frame.coloring_rule.string": "udp"
10397 "eth.dst": "00:17:88:69:ee:e4",
10399 "eth.dst_resolved": "PhilipsL_69:ee:e4",
10400 "eth.addr": "00:17:88:69:ee:e4",
10401 "eth.addr_resolved": "PhilipsL_69:ee:e4",
10405 "eth.src": "b0:b9:8a:73:69:8e",
10407 "eth.src_resolved": "Netgear_73:69:8e",
10408 "eth.addr": "b0:b9:8a:73:69:8e",
10409 "eth.addr_resolved": "Netgear_73:69:8e",
10413 "eth.type": "0x00000800"
10417 "ip.hdr_len": "20",
10418 "ip.dsfield": "0x00000000",
10419 "ip.dsfield_tree": {
10420 "ip.dsfield.dscp": "0",
10421 "ip.dsfield.ecn": "0"
10424 "ip.id": "0x00004310",
10425 "ip.flags": "0x00000002",
10427 "ip.flags.rb": "0",
10428 "ip.flags.df": "1",
10431 "ip.frag_offset": "0",
10434 "ip.checksum": "0x000073f8",
10435 "ip.checksum.status": "2",
10436 "ip.src": "192.168.0.1",
10437 "ip.addr": "192.168.0.1",
10438 "ip.src_host": "192.168.0.1",
10439 "ip.host": "192.168.0.1",
10440 "ip.dst": "192.168.0.160",
10441 "ip.addr": "192.168.0.160",
10442 "ip.dst_host": "192.168.0.160",
10443 "ip.host": "192.168.0.160",
10444 "Source GeoIP: Unknown": "",
10445 "Destination GeoIP: Unknown": ""
10448 "udp.srcport": "53",
10449 "udp.dstport": "54738",
10451 "udp.port": "54738",
10452 "udp.length": "479",
10453 "udp.checksum": "0x000083e2",
10454 "udp.checksum.status": "2",
10455 "udp.stream": "188"
10458 "dns.response_to": "13582",
10459 "dns.time": "0.020901000",
10460 "dns.id": "0x000004a6",
10461 "dns.flags": "0x00008180",
10462 "dns.flags_tree": {
10463 "dns.flags.response": "1",
10464 "dns.flags.opcode": "0",
10465 "dns.flags.authoritative": "0",
10466 "dns.flags.truncated": "0",
10467 "dns.flags.recdesired": "1",
10468 "dns.flags.recavail": "1",
10469 "dns.flags.z": "0",
10470 "dns.flags.authenticated": "0",
10471 "dns.flags.checkdisable": "0",
10472 "dns.flags.rcode": "0"
10474 "dns.count.queries": "1",
10475 "dns.count.answers": "4",
10476 "dns.count.auth_rr": "9",
10477 "dns.count.add_rr": "9",
10479 "www2.meethue.com: type A, class IN": {
10480 "dns.qry.name": "www2.meethue.com",
10481 "dns.qry.name.len": "16",
10482 "dns.count.labels": "3",
10483 "dns.qry.type": "1",
10484 "dns.qry.class": "0x00000001"
10488 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
10489 "dns.resp.name": "www2.meethue.com",
10490 "dns.resp.type": "5",
10491 "dns.resp.class": "0x00000001",
10492 "dns.resp.ttl": "116",
10493 "dns.resp.len": "41",
10494 "dns.cname": "brands.lighting.philips.com.edgekey.net"
10496 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
10497 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
10498 "dns.resp.type": "5",
10499 "dns.resp.class": "0x00000001",
10500 "dns.resp.ttl": "712",
10501 "dns.resp.len": "22",
10502 "dns.cname": "e15361.b.akamaiedge.net"
10504 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
10505 "dns.resp.name": "e15361.b.akamaiedge.net",
10506 "dns.resp.type": "1",
10507 "dns.resp.class": "0x00000001",
10508 "dns.resp.ttl": "20",
10509 "dns.resp.len": "4",
10510 "dns.a": "173.223.52.125"
10512 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
10513 "dns.resp.name": "e15361.b.akamaiedge.net",
10514 "dns.resp.type": "1",
10515 "dns.resp.class": "0x00000001",
10516 "dns.resp.ttl": "20",
10517 "dns.resp.len": "4",
10518 "dns.a": "173.223.52.112"
10521 "Authoritative nameservers": {
10522 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
10523 "dns.resp.name": "b.akamaiedge.net",
10524 "dns.resp.type": "2",
10525 "dns.resp.class": "0x00000001",
10526 "dns.resp.ttl": "889",
10527 "dns.resp.len": "6",
10528 "dns.ns": "n0b.akamaiedge.net"
10530 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
10531 "dns.resp.name": "b.akamaiedge.net",
10532 "dns.resp.type": "2",
10533 "dns.resp.class": "0x00000001",
10534 "dns.resp.ttl": "889",
10535 "dns.resp.len": "6",
10536 "dns.ns": "n7b.akamaiedge.net"
10538 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
10539 "dns.resp.name": "b.akamaiedge.net",
10540 "dns.resp.type": "2",
10541 "dns.resp.class": "0x00000001",
10542 "dns.resp.ttl": "889",
10543 "dns.resp.len": "6",
10544 "dns.ns": "n6b.akamaiedge.net"
10546 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
10547 "dns.resp.name": "b.akamaiedge.net",
10548 "dns.resp.type": "2",
10549 "dns.resp.class": "0x00000001",
10550 "dns.resp.ttl": "889",
10551 "dns.resp.len": "6",
10552 "dns.ns": "n5b.akamaiedge.net"
10554 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
10555 "dns.resp.name": "b.akamaiedge.net",
10556 "dns.resp.type": "2",
10557 "dns.resp.class": "0x00000001",
10558 "dns.resp.ttl": "889",
10559 "dns.resp.len": "6",
10560 "dns.ns": "n3b.akamaiedge.net"
10562 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
10563 "dns.resp.name": "b.akamaiedge.net",
10564 "dns.resp.type": "2",
10565 "dns.resp.class": "0x00000001",
10566 "dns.resp.ttl": "889",
10567 "dns.resp.len": "6",
10568 "dns.ns": "n4b.akamaiedge.net"
10570 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
10571 "dns.resp.name": "b.akamaiedge.net",
10572 "dns.resp.type": "2",
10573 "dns.resp.class": "0x00000001",
10574 "dns.resp.ttl": "889",
10575 "dns.resp.len": "6",
10576 "dns.ns": "n2b.akamaiedge.net"
10578 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
10579 "dns.resp.name": "b.akamaiedge.net",
10580 "dns.resp.type": "2",
10581 "dns.resp.class": "0x00000001",
10582 "dns.resp.ttl": "889",
10583 "dns.resp.len": "6",
10584 "dns.ns": "a0b.akamaiedge.net"
10586 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
10587 "dns.resp.name": "b.akamaiedge.net",
10588 "dns.resp.type": "2",
10589 "dns.resp.class": "0x00000001",
10590 "dns.resp.ttl": "889",
10591 "dns.resp.len": "6",
10592 "dns.ns": "n1b.akamaiedge.net"
10595 "Additional records": {
10596 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
10597 "dns.resp.name": "n0b.akamaiedge.net",
10598 "dns.resp.type": "1",
10599 "dns.resp.class": "0x00000001",
10600 "dns.resp.ttl": "3199",
10601 "dns.resp.len": "4",
10602 "dns.a": "88.221.81.192"
10604 "n1b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
10605 "dns.resp.name": "n1b.akamaiedge.net",
10606 "dns.resp.type": "1",
10607 "dns.resp.class": "0x00000001",
10608 "dns.resp.ttl": "5916",
10609 "dns.resp.len": "4",
10610 "dns.a": "198.172.88.208"
10612 "n2b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
10613 "dns.resp.name": "n2b.akamaiedge.net",
10614 "dns.resp.type": "1",
10615 "dns.resp.class": "0x00000001",
10616 "dns.resp.ttl": "6418",
10617 "dns.resp.len": "4",
10618 "dns.a": "198.172.88.208"
10620 "n3b.akamaiedge.net: type A, class IN, addr 198.172.88.200": {
10621 "dns.resp.name": "n3b.akamaiedge.net",
10622 "dns.resp.type": "1",
10623 "dns.resp.class": "0x00000001",
10624 "dns.resp.ttl": "2603",
10625 "dns.resp.len": "4",
10626 "dns.a": "198.172.88.200"
10628 "n4b.akamaiedge.net: type A, class IN, addr 173.197.192.230": {
10629 "dns.resp.name": "n4b.akamaiedge.net",
10630 "dns.resp.type": "1",
10631 "dns.resp.class": "0x00000001",
10632 "dns.resp.ttl": "1509",
10633 "dns.resp.len": "4",
10634 "dns.a": "173.197.192.230"
10636 "n5b.akamaiedge.net: type A, class IN, addr 198.172.88.206": {
10637 "dns.resp.name": "n5b.akamaiedge.net",
10638 "dns.resp.type": "1",
10639 "dns.resp.class": "0x00000001",
10640 "dns.resp.ttl": "7258",
10641 "dns.resp.len": "4",
10642 "dns.a": "198.172.88.206"
10644 "n6b.akamaiedge.net: type A, class IN, addr 198.172.88.205": {
10645 "dns.resp.name": "n6b.akamaiedge.net",
10646 "dns.resp.type": "1",
10647 "dns.resp.class": "0x00000001",
10648 "dns.resp.ttl": "3060",
10649 "dns.resp.len": "4",
10650 "dns.a": "198.172.88.205"
10652 "n7b.akamaiedge.net: type A, class IN, addr 173.197.192.237": {
10653 "dns.resp.name": "n7b.akamaiedge.net",
10654 "dns.resp.type": "1",
10655 "dns.resp.class": "0x00000001",
10656 "dns.resp.ttl": "3119",
10657 "dns.resp.len": "4",
10658 "dns.a": "173.197.192.237"
10660 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
10661 "dns.resp.name": "a0b.akamaiedge.net",
10662 "dns.resp.type": "28",
10663 "dns.resp.class": "0x00000001",
10664 "dns.resp.ttl": "1895",
10665 "dns.resp.len": "16",
10666 "dns.aaaa": "2600:1480:e800::c0"
10675 "_index": "packets-2017-10-26",
10676 "_type": "pcap_file",
10681 "frame.encap_type": "1",
10682 "frame.time": "Oct 19, 2017 20:52:52.147811000 PDT",
10683 "frame.offset_shift": "0.000000000",
10684 "frame.time_epoch": "1508471572.147811000",
10685 "frame.time_delta": "0.719415000",
10686 "frame.time_delta_displayed": "900.006851000",
10687 "frame.time_relative": "13859.742607000",
10688 "frame.number": "14361",
10690 "frame.cap_len": "76",
10691 "frame.marked": "0",
10692 "frame.ignored": "0",
10693 "frame.protocols": "eth:ethertype:ip:udp:dns",
10694 "frame.coloring_rule.name": "UDP",
10695 "frame.coloring_rule.string": "udp"
10698 "eth.dst": "b0:b9:8a:73:69:8e",
10700 "eth.dst_resolved": "Netgear_73:69:8e",
10701 "eth.addr": "b0:b9:8a:73:69:8e",
10702 "eth.addr_resolved": "Netgear_73:69:8e",
10706 "eth.src": "00:17:88:69:ee:e4",
10708 "eth.src_resolved": "PhilipsL_69:ee:e4",
10709 "eth.addr": "00:17:88:69:ee:e4",
10710 "eth.addr_resolved": "PhilipsL_69:ee:e4",
10714 "eth.type": "0x00000800"
10718 "ip.hdr_len": "20",
10719 "ip.dsfield": "0x00000000",
10720 "ip.dsfield_tree": {
10721 "ip.dsfield.dscp": "0",
10722 "ip.dsfield.ecn": "0"
10725 "ip.id": "0x0000e5bd",
10726 "ip.flags": "0x00000002",
10728 "ip.flags.rb": "0",
10729 "ip.flags.df": "1",
10732 "ip.frag_offset": "0",
10735 "ip.checksum": "0x0000d2ff",
10736 "ip.checksum.status": "2",
10737 "ip.src": "192.168.0.160",
10738 "ip.addr": "192.168.0.160",
10739 "ip.src_host": "192.168.0.160",
10740 "ip.host": "192.168.0.160",
10741 "ip.dst": "192.168.0.1",
10742 "ip.addr": "192.168.0.1",
10743 "ip.dst_host": "192.168.0.1",
10744 "ip.host": "192.168.0.1",
10745 "Source GeoIP: Unknown": "",
10746 "Destination GeoIP: Unknown": ""
10749 "udp.srcport": "55123",
10750 "udp.dstport": "53",
10751 "udp.port": "55123",
10753 "udp.length": "42",
10754 "udp.checksum": "0x000081bd",
10755 "udp.checksum.status": "2",
10756 "udp.stream": "197"
10759 "dns.response_in": "14362",
10760 "dns.id": "0x000004a7",
10761 "dns.flags": "0x00000100",
10762 "dns.flags_tree": {
10763 "dns.flags.response": "0",
10764 "dns.flags.opcode": "0",
10765 "dns.flags.truncated": "0",
10766 "dns.flags.recdesired": "1",
10767 "dns.flags.z": "0",
10768 "dns.flags.checkdisable": "0"
10770 "dns.count.queries": "1",
10771 "dns.count.answers": "0",
10772 "dns.count.auth_rr": "0",
10773 "dns.count.add_rr": "0",
10775 "www2.meethue.com: type A, class IN": {
10776 "dns.qry.name": "www2.meethue.com",
10777 "dns.qry.name.len": "16",
10778 "dns.count.labels": "3",
10779 "dns.qry.type": "1",
10780 "dns.qry.class": "0x00000001"
10789 "_index": "packets-2017-10-26",
10790 "_type": "pcap_file",
10795 "frame.encap_type": "1",
10796 "frame.time": "Oct 19, 2017 20:52:52.212985000 PDT",
10797 "frame.offset_shift": "0.000000000",
10798 "frame.time_epoch": "1508471572.212985000",
10799 "frame.time_delta": "0.065174000",
10800 "frame.time_delta_displayed": "0.065174000",
10801 "frame.time_relative": "13859.807781000",
10802 "frame.number": "14362",
10803 "frame.len": "467",
10804 "frame.cap_len": "467",
10805 "frame.marked": "0",
10806 "frame.ignored": "0",
10807 "frame.protocols": "eth:ethertype:ip:udp:dns",
10808 "frame.coloring_rule.name": "UDP",
10809 "frame.coloring_rule.string": "udp"
10812 "eth.dst": "00:17:88:69:ee:e4",
10814 "eth.dst_resolved": "PhilipsL_69:ee:e4",
10815 "eth.addr": "00:17:88:69:ee:e4",
10816 "eth.addr_resolved": "PhilipsL_69:ee:e4",
10820 "eth.src": "b0:b9:8a:73:69:8e",
10822 "eth.src_resolved": "Netgear_73:69:8e",
10823 "eth.addr": "b0:b9:8a:73:69:8e",
10824 "eth.addr_resolved": "Netgear_73:69:8e",
10828 "eth.type": "0x00000800"
10832 "ip.hdr_len": "20",
10833 "ip.dsfield": "0x00000000",
10834 "ip.dsfield_tree": {
10835 "ip.dsfield.dscp": "0",
10836 "ip.dsfield.ecn": "0"
10839 "ip.id": "0x00004fa4",
10840 "ip.flags": "0x00000002",
10842 "ip.flags.rb": "0",
10843 "ip.flags.df": "1",
10846 "ip.frag_offset": "0",
10849 "ip.checksum": "0x00006792",
10850 "ip.checksum.status": "2",
10851 "ip.src": "192.168.0.1",
10852 "ip.addr": "192.168.0.1",
10853 "ip.src_host": "192.168.0.1",
10854 "ip.host": "192.168.0.1",
10855 "ip.dst": "192.168.0.160",
10856 "ip.addr": "192.168.0.160",
10857 "ip.dst_host": "192.168.0.160",
10858 "ip.host": "192.168.0.160",
10859 "Source GeoIP: Unknown": "",
10860 "Destination GeoIP: Unknown": ""
10863 "udp.srcport": "53",
10864 "udp.dstport": "55123",
10866 "udp.port": "55123",
10867 "udp.length": "433",
10868 "udp.checksum": "0x000083b4",
10869 "udp.checksum.status": "2",
10870 "udp.stream": "197"
10873 "dns.response_to": "14361",
10874 "dns.time": "0.065174000",
10875 "dns.id": "0x000004a7",
10876 "dns.flags": "0x00008180",
10877 "dns.flags_tree": {
10878 "dns.flags.response": "1",
10879 "dns.flags.opcode": "0",
10880 "dns.flags.authoritative": "0",
10881 "dns.flags.truncated": "0",
10882 "dns.flags.recdesired": "1",
10883 "dns.flags.recavail": "1",
10884 "dns.flags.z": "0",
10885 "dns.flags.authenticated": "0",
10886 "dns.flags.checkdisable": "0",
10887 "dns.flags.rcode": "0"
10889 "dns.count.queries": "1",
10890 "dns.count.answers": "4",
10891 "dns.count.auth_rr": "8",
10892 "dns.count.add_rr": "8",
10894 "www2.meethue.com: type A, class IN": {
10895 "dns.qry.name": "www2.meethue.com",
10896 "dns.qry.name.len": "16",
10897 "dns.count.labels": "3",
10898 "dns.qry.type": "1",
10899 "dns.qry.class": "0x00000001"
10903 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
10904 "dns.resp.name": "www2.meethue.com",
10905 "dns.resp.type": "5",
10906 "dns.resp.class": "0x00000001",
10907 "dns.resp.ttl": "117",
10908 "dns.resp.len": "41",
10909 "dns.cname": "brands.lighting.philips.com.edgekey.net"
10911 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
10912 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
10913 "dns.resp.type": "5",
10914 "dns.resp.class": "0x00000001",
10915 "dns.resp.ttl": "21417",
10916 "dns.resp.len": "22",
10917 "dns.cname": "e15361.b.akamaiedge.net"
10919 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
10920 "dns.resp.name": "e15361.b.akamaiedge.net",
10921 "dns.resp.type": "1",
10922 "dns.resp.class": "0x00000001",
10923 "dns.resp.ttl": "20",
10924 "dns.resp.len": "4",
10925 "dns.a": "173.223.52.112"
10927 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
10928 "dns.resp.name": "e15361.b.akamaiedge.net",
10929 "dns.resp.type": "1",
10930 "dns.resp.class": "0x00000001",
10931 "dns.resp.ttl": "20",
10932 "dns.resp.len": "4",
10933 "dns.a": "173.223.52.125"
10936 "Authoritative nameservers": {
10937 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
10938 "dns.resp.name": "b.akamaiedge.net",
10939 "dns.resp.type": "2",
10940 "dns.resp.class": "0x00000001",
10941 "dns.resp.ttl": "989",
10942 "dns.resp.len": "6",
10943 "dns.ns": "n2b.akamaiedge.net"
10945 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
10946 "dns.resp.name": "b.akamaiedge.net",
10947 "dns.resp.type": "2",
10948 "dns.resp.class": "0x00000001",
10949 "dns.resp.ttl": "989",
10950 "dns.resp.len": "6",
10951 "dns.ns": "n4b.akamaiedge.net"
10953 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
10954 "dns.resp.name": "b.akamaiedge.net",
10955 "dns.resp.type": "2",
10956 "dns.resp.class": "0x00000001",
10957 "dns.resp.ttl": "989",
10958 "dns.resp.len": "6",
10959 "dns.ns": "n7b.akamaiedge.net"
10961 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
10962 "dns.resp.name": "b.akamaiedge.net",
10963 "dns.resp.type": "2",
10964 "dns.resp.class": "0x00000001",
10965 "dns.resp.ttl": "989",
10966 "dns.resp.len": "6",
10967 "dns.ns": "n6b.akamaiedge.net"
10969 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
10970 "dns.resp.name": "b.akamaiedge.net",
10971 "dns.resp.type": "2",
10972 "dns.resp.class": "0x00000001",
10973 "dns.resp.ttl": "989",
10974 "dns.resp.len": "6",
10975 "dns.ns": "n0b.akamaiedge.net"
10977 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
10978 "dns.resp.name": "b.akamaiedge.net",
10979 "dns.resp.type": "2",
10980 "dns.resp.class": "0x00000001",
10981 "dns.resp.ttl": "989",
10982 "dns.resp.len": "6",
10983 "dns.ns": "n1b.akamaiedge.net"
10985 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
10986 "dns.resp.name": "b.akamaiedge.net",
10987 "dns.resp.type": "2",
10988 "dns.resp.class": "0x00000001",
10989 "dns.resp.ttl": "989",
10990 "dns.resp.len": "6",
10991 "dns.ns": "n5b.akamaiedge.net"
10993 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
10994 "dns.resp.name": "b.akamaiedge.net",
10995 "dns.resp.type": "2",
10996 "dns.resp.class": "0x00000001",
10997 "dns.resp.ttl": "989",
10998 "dns.resp.len": "6",
10999 "dns.ns": "n3b.akamaiedge.net"
11002 "Additional records": {
11003 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
11004 "dns.resp.name": "n0b.akamaiedge.net",
11005 "dns.resp.type": "1",
11006 "dns.resp.class": "0x00000001",
11007 "dns.resp.ttl": "2299",
11008 "dns.resp.len": "4",
11009 "dns.a": "88.221.81.192"
11011 "n1b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
11012 "dns.resp.name": "n1b.akamaiedge.net",
11013 "dns.resp.type": "1",
11014 "dns.resp.class": "0x00000001",
11015 "dns.resp.ttl": "5016",
11016 "dns.resp.len": "4",
11017 "dns.a": "198.172.88.208"
11019 "n2b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
11020 "dns.resp.name": "n2b.akamaiedge.net",
11021 "dns.resp.type": "1",
11022 "dns.resp.class": "0x00000001",
11023 "dns.resp.ttl": "5518",
11024 "dns.resp.len": "4",
11025 "dns.a": "198.172.88.208"
11027 "n3b.akamaiedge.net: type A, class IN, addr 198.172.88.200": {
11028 "dns.resp.name": "n3b.akamaiedge.net",
11029 "dns.resp.type": "1",
11030 "dns.resp.class": "0x00000001",
11031 "dns.resp.ttl": "1703",
11032 "dns.resp.len": "4",
11033 "dns.a": "198.172.88.200"
11035 "n4b.akamaiedge.net: type A, class IN, addr 173.197.192.230": {
11036 "dns.resp.name": "n4b.akamaiedge.net",
11037 "dns.resp.type": "1",
11038 "dns.resp.class": "0x00000001",
11039 "dns.resp.ttl": "609",
11040 "dns.resp.len": "4",
11041 "dns.a": "173.197.192.230"
11043 "n5b.akamaiedge.net: type A, class IN, addr 198.172.88.206": {
11044 "dns.resp.name": "n5b.akamaiedge.net",
11045 "dns.resp.type": "1",
11046 "dns.resp.class": "0x00000001",
11047 "dns.resp.ttl": "6358",
11048 "dns.resp.len": "4",
11049 "dns.a": "198.172.88.206"
11051 "n6b.akamaiedge.net: type A, class IN, addr 198.172.88.205": {
11052 "dns.resp.name": "n6b.akamaiedge.net",
11053 "dns.resp.type": "1",
11054 "dns.resp.class": "0x00000001",
11055 "dns.resp.ttl": "2160",
11056 "dns.resp.len": "4",
11057 "dns.a": "198.172.88.205"
11059 "n7b.akamaiedge.net: type A, class IN, addr 173.197.192.237": {
11060 "dns.resp.name": "n7b.akamaiedge.net",
11061 "dns.resp.type": "1",
11062 "dns.resp.class": "0x00000001",
11063 "dns.resp.ttl": "2219",
11064 "dns.resp.len": "4",
11065 "dns.a": "173.197.192.237"
11074 "_index": "packets-2017-10-26",
11075 "_type": "pcap_file",
11080 "frame.encap_type": "1",
11081 "frame.time": "Oct 19, 2017 21:07:52.219360000 PDT",
11082 "frame.offset_shift": "0.000000000",
11083 "frame.time_epoch": "1508472472.219360000",
11084 "frame.time_delta": "0.606095000",
11085 "frame.time_delta_displayed": "900.006375000",
11086 "frame.time_relative": "14759.814156000",
11087 "frame.number": "15111",
11089 "frame.cap_len": "76",
11090 "frame.marked": "0",
11091 "frame.ignored": "0",
11092 "frame.protocols": "eth:ethertype:ip:udp:dns",
11093 "frame.coloring_rule.name": "UDP",
11094 "frame.coloring_rule.string": "udp"
11097 "eth.dst": "b0:b9:8a:73:69:8e",
11099 "eth.dst_resolved": "Netgear_73:69:8e",
11100 "eth.addr": "b0:b9:8a:73:69:8e",
11101 "eth.addr_resolved": "Netgear_73:69:8e",
11105 "eth.src": "00:17:88:69:ee:e4",
11107 "eth.src_resolved": "PhilipsL_69:ee:e4",
11108 "eth.addr": "00:17:88:69:ee:e4",
11109 "eth.addr_resolved": "PhilipsL_69:ee:e4",
11113 "eth.type": "0x00000800"
11117 "ip.hdr_len": "20",
11118 "ip.dsfield": "0x00000000",
11119 "ip.dsfield_tree": {
11120 "ip.dsfield.dscp": "0",
11121 "ip.dsfield.ecn": "0"
11124 "ip.id": "0x0000c5af",
11125 "ip.flags": "0x00000002",
11127 "ip.flags.rb": "0",
11128 "ip.flags.df": "1",
11131 "ip.frag_offset": "0",
11134 "ip.checksum": "0x0000f30d",
11135 "ip.checksum.status": "2",
11136 "ip.src": "192.168.0.160",
11137 "ip.addr": "192.168.0.160",
11138 "ip.src_host": "192.168.0.160",
11139 "ip.host": "192.168.0.160",
11140 "ip.dst": "192.168.0.1",
11141 "ip.addr": "192.168.0.1",
11142 "ip.dst_host": "192.168.0.1",
11143 "ip.host": "192.168.0.1",
11144 "Source GeoIP: Unknown": "",
11145 "Destination GeoIP: Unknown": ""
11148 "udp.srcport": "44889",
11149 "udp.dstport": "53",
11150 "udp.port": "44889",
11152 "udp.length": "42",
11153 "udp.checksum": "0x0000a9b6",
11154 "udp.checksum.status": "2",
11155 "udp.stream": "205"
11158 "dns.response_in": "15112",
11159 "dns.id": "0x000004a8",
11160 "dns.flags": "0x00000100",
11161 "dns.flags_tree": {
11162 "dns.flags.response": "0",
11163 "dns.flags.opcode": "0",
11164 "dns.flags.truncated": "0",
11165 "dns.flags.recdesired": "1",
11166 "dns.flags.z": "0",
11167 "dns.flags.checkdisable": "0"
11169 "dns.count.queries": "1",
11170 "dns.count.answers": "0",
11171 "dns.count.auth_rr": "0",
11172 "dns.count.add_rr": "0",
11174 "www2.meethue.com: type A, class IN": {
11175 "dns.qry.name": "www2.meethue.com",
11176 "dns.qry.name.len": "16",
11177 "dns.count.labels": "3",
11178 "dns.qry.type": "1",
11179 "dns.qry.class": "0x00000001"
11188 "_index": "packets-2017-10-26",
11189 "_type": "pcap_file",
11194 "frame.encap_type": "1",
11195 "frame.time": "Oct 19, 2017 21:07:52.306389000 PDT",
11196 "frame.offset_shift": "0.000000000",
11197 "frame.time_epoch": "1508472472.306389000",
11198 "frame.time_delta": "0.087029000",
11199 "frame.time_delta_displayed": "0.087029000",
11200 "frame.time_relative": "14759.901185000",
11201 "frame.number": "15112",
11202 "frame.len": "513",
11203 "frame.cap_len": "513",
11204 "frame.marked": "0",
11205 "frame.ignored": "0",
11206 "frame.protocols": "eth:ethertype:ip:udp:dns",
11207 "frame.coloring_rule.name": "UDP",
11208 "frame.coloring_rule.string": "udp"
11211 "eth.dst": "00:17:88:69:ee:e4",
11213 "eth.dst_resolved": "PhilipsL_69:ee:e4",
11214 "eth.addr": "00:17:88:69:ee:e4",
11215 "eth.addr_resolved": "PhilipsL_69:ee:e4",
11219 "eth.src": "b0:b9:8a:73:69:8e",
11221 "eth.src_resolved": "Netgear_73:69:8e",
11222 "eth.addr": "b0:b9:8a:73:69:8e",
11223 "eth.addr_resolved": "Netgear_73:69:8e",
11227 "eth.type": "0x00000800"
11231 "ip.hdr_len": "20",
11232 "ip.dsfield": "0x00000000",
11233 "ip.dsfield_tree": {
11234 "ip.dsfield.dscp": "0",
11235 "ip.dsfield.ecn": "0"
11238 "ip.id": "0x0000a365",
11239 "ip.flags": "0x00000002",
11241 "ip.flags.rb": "0",
11242 "ip.flags.df": "1",
11245 "ip.frag_offset": "0",
11248 "ip.checksum": "0x000013a3",
11249 "ip.checksum.status": "2",
11250 "ip.src": "192.168.0.1",
11251 "ip.addr": "192.168.0.1",
11252 "ip.src_host": "192.168.0.1",
11253 "ip.host": "192.168.0.1",
11254 "ip.dst": "192.168.0.160",
11255 "ip.addr": "192.168.0.160",
11256 "ip.dst_host": "192.168.0.160",
11257 "ip.host": "192.168.0.160",
11258 "Source GeoIP: Unknown": "",
11259 "Destination GeoIP: Unknown": ""
11262 "udp.srcport": "53",
11263 "udp.dstport": "44889",
11265 "udp.port": "44889",
11266 "udp.length": "479",
11267 "udp.checksum": "0x000083e2",
11268 "udp.checksum.status": "2",
11269 "udp.stream": "205"
11272 "dns.response_to": "15111",
11273 "dns.time": "0.087029000",
11274 "dns.id": "0x000004a8",
11275 "dns.flags": "0x00008180",
11276 "dns.flags_tree": {
11277 "dns.flags.response": "1",
11278 "dns.flags.opcode": "0",
11279 "dns.flags.authoritative": "0",
11280 "dns.flags.truncated": "0",
11281 "dns.flags.recdesired": "1",
11282 "dns.flags.recavail": "1",
11283 "dns.flags.z": "0",
11284 "dns.flags.authenticated": "0",
11285 "dns.flags.checkdisable": "0",
11286 "dns.flags.rcode": "0"
11288 "dns.count.queries": "1",
11289 "dns.count.answers": "4",
11290 "dns.count.auth_rr": "9",
11291 "dns.count.add_rr": "9",
11293 "www2.meethue.com: type A, class IN": {
11294 "dns.qry.name": "www2.meethue.com",
11295 "dns.qry.name.len": "16",
11296 "dns.count.labels": "3",
11297 "dns.qry.type": "1",
11298 "dns.qry.class": "0x00000001"
11302 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
11303 "dns.resp.name": "www2.meethue.com",
11304 "dns.resp.type": "5",
11305 "dns.resp.class": "0x00000001",
11306 "dns.resp.ttl": "300",
11307 "dns.resp.len": "41",
11308 "dns.cname": "brands.lighting.philips.com.edgekey.net"
11310 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
11311 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
11312 "dns.resp.type": "5",
11313 "dns.resp.class": "0x00000001",
11314 "dns.resp.ttl": "510",
11315 "dns.resp.len": "22",
11316 "dns.cname": "e15361.b.akamaiedge.net"
11318 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
11319 "dns.resp.name": "e15361.b.akamaiedge.net",
11320 "dns.resp.type": "1",
11321 "dns.resp.class": "0x00000001",
11322 "dns.resp.ttl": "20",
11323 "dns.resp.len": "4",
11324 "dns.a": "173.223.52.125"
11326 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
11327 "dns.resp.name": "e15361.b.akamaiedge.net",
11328 "dns.resp.type": "1",
11329 "dns.resp.class": "0x00000001",
11330 "dns.resp.ttl": "20",
11331 "dns.resp.len": "4",
11332 "dns.a": "173.223.52.112"
11335 "Authoritative nameservers": {
11336 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
11337 "dns.resp.name": "b.akamaiedge.net",
11338 "dns.resp.type": "2",
11339 "dns.resp.class": "0x00000001",
11340 "dns.resp.ttl": "1174",
11341 "dns.resp.len": "6",
11342 "dns.ns": "n0b.akamaiedge.net"
11344 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
11345 "dns.resp.name": "b.akamaiedge.net",
11346 "dns.resp.type": "2",
11347 "dns.resp.class": "0x00000001",
11348 "dns.resp.ttl": "1174",
11349 "dns.resp.len": "6",
11350 "dns.ns": "n7b.akamaiedge.net"
11352 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
11353 "dns.resp.name": "b.akamaiedge.net",
11354 "dns.resp.type": "2",
11355 "dns.resp.class": "0x00000001",
11356 "dns.resp.ttl": "1174",
11357 "dns.resp.len": "6",
11358 "dns.ns": "n5b.akamaiedge.net"
11360 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
11361 "dns.resp.name": "b.akamaiedge.net",
11362 "dns.resp.type": "2",
11363 "dns.resp.class": "0x00000001",
11364 "dns.resp.ttl": "1174",
11365 "dns.resp.len": "6",
11366 "dns.ns": "n1b.akamaiedge.net"
11368 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
11369 "dns.resp.name": "b.akamaiedge.net",
11370 "dns.resp.type": "2",
11371 "dns.resp.class": "0x00000001",
11372 "dns.resp.ttl": "1174",
11373 "dns.resp.len": "6",
11374 "dns.ns": "n2b.akamaiedge.net"
11376 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
11377 "dns.resp.name": "b.akamaiedge.net",
11378 "dns.resp.type": "2",
11379 "dns.resp.class": "0x00000001",
11380 "dns.resp.ttl": "1174",
11381 "dns.resp.len": "6",
11382 "dns.ns": "n6b.akamaiedge.net"
11384 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
11385 "dns.resp.name": "b.akamaiedge.net",
11386 "dns.resp.type": "2",
11387 "dns.resp.class": "0x00000001",
11388 "dns.resp.ttl": "1174",
11389 "dns.resp.len": "6",
11390 "dns.ns": "n4b.akamaiedge.net"
11392 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
11393 "dns.resp.name": "b.akamaiedge.net",
11394 "dns.resp.type": "2",
11395 "dns.resp.class": "0x00000001",
11396 "dns.resp.ttl": "1174",
11397 "dns.resp.len": "6",
11398 "dns.ns": "a0b.akamaiedge.net"
11400 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
11401 "dns.resp.name": "b.akamaiedge.net",
11402 "dns.resp.type": "2",
11403 "dns.resp.class": "0x00000001",
11404 "dns.resp.ttl": "1174",
11405 "dns.resp.len": "6",
11406 "dns.ns": "n3b.akamaiedge.net"
11409 "Additional records": {
11410 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
11411 "dns.resp.name": "n0b.akamaiedge.net",
11412 "dns.resp.type": "1",
11413 "dns.resp.class": "0x00000001",
11414 "dns.resp.ttl": "3699",
11415 "dns.resp.len": "4",
11416 "dns.a": "88.221.81.192"
11418 "n1b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
11419 "dns.resp.name": "n1b.akamaiedge.net",
11420 "dns.resp.type": "1",
11421 "dns.resp.class": "0x00000001",
11422 "dns.resp.ttl": "238",
11423 "dns.resp.len": "4",
11424 "dns.a": "204.1.137.41"
11426 "n2b.akamaiedge.net: type A, class IN, addr 173.197.192.233": {
11427 "dns.resp.name": "n2b.akamaiedge.net",
11428 "dns.resp.type": "1",
11429 "dns.resp.class": "0x00000001",
11430 "dns.resp.ttl": "3014",
11431 "dns.resp.len": "4",
11432 "dns.a": "173.197.192.233"
11434 "n3b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
11435 "dns.resp.name": "n3b.akamaiedge.net",
11436 "dns.resp.type": "1",
11437 "dns.resp.class": "0x00000001",
11438 "dns.resp.ttl": "3078",
11439 "dns.resp.len": "4",
11440 "dns.a": "173.197.192.229"
11442 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.203": {
11443 "dns.resp.name": "n4b.akamaiedge.net",
11444 "dns.resp.type": "1",
11445 "dns.resp.class": "0x00000001",
11446 "dns.resp.ttl": "3486",
11447 "dns.resp.len": "4",
11448 "dns.a": "198.172.88.203"
11450 "n5b.akamaiedge.net: type A, class IN, addr 204.1.137.37": {
11451 "dns.resp.name": "n5b.akamaiedge.net",
11452 "dns.resp.type": "1",
11453 "dns.resp.class": "0x00000001",
11454 "dns.resp.ttl": "41",
11455 "dns.resp.len": "4",
11456 "dns.a": "204.1.137.37"
11458 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.95": {
11459 "dns.resp.name": "n6b.akamaiedge.net",
11460 "dns.resp.type": "1",
11461 "dns.resp.class": "0x00000001",
11462 "dns.resp.ttl": "3621",
11463 "dns.resp.len": "4",
11464 "dns.a": "165.254.16.95"
11466 "n7b.akamaiedge.net: type A, class IN, addr 204.1.137.37": {
11467 "dns.resp.name": "n7b.akamaiedge.net",
11468 "dns.resp.type": "1",
11469 "dns.resp.class": "0x00000001",
11470 "dns.resp.ttl": "1725",
11471 "dns.resp.len": "4",
11472 "dns.a": "204.1.137.37"
11474 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
11475 "dns.resp.name": "a0b.akamaiedge.net",
11476 "dns.resp.type": "28",
11477 "dns.resp.class": "0x00000001",
11478 "dns.resp.ttl": "4177",
11479 "dns.resp.len": "16",
11480 "dns.aaaa": "2600:1480:e800::c0"
11489 "_index": "packets-2017-10-26",
11490 "_type": "pcap_file",
11495 "frame.encap_type": "1",
11496 "frame.time": "Oct 19, 2017 21:22:52.395472000 PDT",
11497 "frame.offset_shift": "0.000000000",
11498 "frame.time_epoch": "1508473372.395472000",
11499 "frame.time_delta": "3.711619000",
11500 "frame.time_delta_displayed": "900.089083000",
11501 "frame.time_relative": "15659.990268000",
11502 "frame.number": "15884",
11504 "frame.cap_len": "76",
11505 "frame.marked": "0",
11506 "frame.ignored": "0",
11507 "frame.protocols": "eth:ethertype:ip:udp:dns",
11508 "frame.coloring_rule.name": "UDP",
11509 "frame.coloring_rule.string": "udp"
11512 "eth.dst": "b0:b9:8a:73:69:8e",
11514 "eth.dst_resolved": "Netgear_73:69:8e",
11515 "eth.addr": "b0:b9:8a:73:69:8e",
11516 "eth.addr_resolved": "Netgear_73:69:8e",
11520 "eth.src": "00:17:88:69:ee:e4",
11522 "eth.src_resolved": "PhilipsL_69:ee:e4",
11523 "eth.addr": "00:17:88:69:ee:e4",
11524 "eth.addr_resolved": "PhilipsL_69:ee:e4",
11528 "eth.type": "0x00000800"
11532 "ip.hdr_len": "20",
11533 "ip.dsfield": "0x00000000",
11534 "ip.dsfield_tree": {
11535 "ip.dsfield.dscp": "0",
11536 "ip.dsfield.ecn": "0"
11539 "ip.id": "0x000043a6",
11540 "ip.flags": "0x00000002",
11542 "ip.flags.rb": "0",
11543 "ip.flags.df": "1",
11546 "ip.frag_offset": "0",
11549 "ip.checksum": "0x00007517",
11550 "ip.checksum.status": "2",
11551 "ip.src": "192.168.0.160",
11552 "ip.addr": "192.168.0.160",
11553 "ip.src_host": "192.168.0.160",
11554 "ip.host": "192.168.0.160",
11555 "ip.dst": "192.168.0.1",
11556 "ip.addr": "192.168.0.1",
11557 "ip.dst_host": "192.168.0.1",
11558 "ip.host": "192.168.0.1",
11559 "Source GeoIP: Unknown": "",
11560 "Destination GeoIP: Unknown": ""
11563 "udp.srcport": "53892",
11564 "udp.dstport": "53",
11565 "udp.port": "53892",
11567 "udp.length": "42",
11568 "udp.checksum": "0x0000868a",
11569 "udp.checksum.status": "2",
11570 "udp.stream": "212"
11573 "dns.response_in": "15885",
11574 "dns.id": "0x000004a9",
11575 "dns.flags": "0x00000100",
11576 "dns.flags_tree": {
11577 "dns.flags.response": "0",
11578 "dns.flags.opcode": "0",
11579 "dns.flags.truncated": "0",
11580 "dns.flags.recdesired": "1",
11581 "dns.flags.z": "0",
11582 "dns.flags.checkdisable": "0"
11584 "dns.count.queries": "1",
11585 "dns.count.answers": "0",
11586 "dns.count.auth_rr": "0",
11587 "dns.count.add_rr": "0",
11589 "www2.meethue.com: type A, class IN": {
11590 "dns.qry.name": "www2.meethue.com",
11591 "dns.qry.name.len": "16",
11592 "dns.count.labels": "3",
11593 "dns.qry.type": "1",
11594 "dns.qry.class": "0x00000001"
11603 "_index": "packets-2017-10-26",
11604 "_type": "pcap_file",
11609 "frame.encap_type": "1",
11610 "frame.time": "Oct 19, 2017 21:22:52.423942000 PDT",
11611 "frame.offset_shift": "0.000000000",
11612 "frame.time_epoch": "1508473372.423942000",
11613 "frame.time_delta": "0.028470000",
11614 "frame.time_delta_displayed": "0.028470000",
11615 "frame.time_relative": "15660.018738000",
11616 "frame.number": "15885",
11617 "frame.len": "513",
11618 "frame.cap_len": "513",
11619 "frame.marked": "0",
11620 "frame.ignored": "0",
11621 "frame.protocols": "eth:ethertype:ip:udp:dns",
11622 "frame.coloring_rule.name": "UDP",
11623 "frame.coloring_rule.string": "udp"
11626 "eth.dst": "00:17:88:69:ee:e4",
11628 "eth.dst_resolved": "PhilipsL_69:ee:e4",
11629 "eth.addr": "00:17:88:69:ee:e4",
11630 "eth.addr_resolved": "PhilipsL_69:ee:e4",
11634 "eth.src": "b0:b9:8a:73:69:8e",
11636 "eth.src_resolved": "Netgear_73:69:8e",
11637 "eth.addr": "b0:b9:8a:73:69:8e",
11638 "eth.addr_resolved": "Netgear_73:69:8e",
11642 "eth.type": "0x00000800"
11646 "ip.hdr_len": "20",
11647 "ip.dsfield": "0x00000000",
11648 "ip.dsfield_tree": {
11649 "ip.dsfield.dscp": "0",
11650 "ip.dsfield.ecn": "0"
11653 "ip.id": "0x0000f1a1",
11654 "ip.flags": "0x00000002",
11656 "ip.flags.rb": "0",
11657 "ip.flags.df": "1",
11660 "ip.frag_offset": "0",
11663 "ip.checksum": "0x0000c566",
11664 "ip.checksum.status": "2",
11665 "ip.src": "192.168.0.1",
11666 "ip.addr": "192.168.0.1",
11667 "ip.src_host": "192.168.0.1",
11668 "ip.host": "192.168.0.1",
11669 "ip.dst": "192.168.0.160",
11670 "ip.addr": "192.168.0.160",
11671 "ip.dst_host": "192.168.0.160",
11672 "ip.host": "192.168.0.160",
11673 "Source GeoIP: Unknown": "",
11674 "Destination GeoIP: Unknown": ""
11677 "udp.srcport": "53",
11678 "udp.dstport": "53892",
11680 "udp.port": "53892",
11681 "udp.length": "479",
11682 "udp.checksum": "0x000083e2",
11683 "udp.checksum.status": "2",
11684 "udp.stream": "212"
11687 "dns.response_to": "15884",
11688 "dns.time": "0.028470000",
11689 "dns.id": "0x000004a9",
11690 "dns.flags": "0x00008180",
11691 "dns.flags_tree": {
11692 "dns.flags.response": "1",
11693 "dns.flags.opcode": "0",
11694 "dns.flags.authoritative": "0",
11695 "dns.flags.truncated": "0",
11696 "dns.flags.recdesired": "1",
11697 "dns.flags.recavail": "1",
11698 "dns.flags.z": "0",
11699 "dns.flags.authenticated": "0",
11700 "dns.flags.checkdisable": "0",
11701 "dns.flags.rcode": "0"
11703 "dns.count.queries": "1",
11704 "dns.count.answers": "4",
11705 "dns.count.auth_rr": "9",
11706 "dns.count.add_rr": "9",
11708 "www2.meethue.com: type A, class IN": {
11709 "dns.qry.name": "www2.meethue.com",
11710 "dns.qry.name.len": "16",
11711 "dns.count.labels": "3",
11712 "dns.qry.type": "1",
11713 "dns.qry.class": "0x00000001"
11717 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
11718 "dns.resp.name": "www2.meethue.com",
11719 "dns.resp.type": "5",
11720 "dns.resp.class": "0x00000001",
11721 "dns.resp.ttl": "142",
11722 "dns.resp.len": "41",
11723 "dns.cname": "brands.lighting.philips.com.edgekey.net"
11725 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
11726 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
11727 "dns.resp.type": "5",
11728 "dns.resp.class": "0x00000001",
11729 "dns.resp.ttl": "21258",
11730 "dns.resp.len": "22",
11731 "dns.cname": "e15361.b.akamaiedge.net"
11733 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.2": {
11734 "dns.resp.name": "e15361.b.akamaiedge.net",
11735 "dns.resp.type": "1",
11736 "dns.resp.class": "0x00000001",
11737 "dns.resp.ttl": "20",
11738 "dns.resp.len": "4",
11739 "dns.a": "173.223.52.2"
11741 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.73": {
11742 "dns.resp.name": "e15361.b.akamaiedge.net",
11743 "dns.resp.type": "1",
11744 "dns.resp.class": "0x00000001",
11745 "dns.resp.ttl": "20",
11746 "dns.resp.len": "4",
11747 "dns.a": "173.223.52.73"
11750 "Authoritative nameservers": {
11751 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
11752 "dns.resp.name": "b.akamaiedge.net",
11753 "dns.resp.type": "2",
11754 "dns.resp.class": "0x00000001",
11755 "dns.resp.ttl": "274",
11756 "dns.resp.len": "6",
11757 "dns.ns": "n0b.akamaiedge.net"
11759 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
11760 "dns.resp.name": "b.akamaiedge.net",
11761 "dns.resp.type": "2",
11762 "dns.resp.class": "0x00000001",
11763 "dns.resp.ttl": "274",
11764 "dns.resp.len": "6",
11765 "dns.ns": "n5b.akamaiedge.net"
11767 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
11768 "dns.resp.name": "b.akamaiedge.net",
11769 "dns.resp.type": "2",
11770 "dns.resp.class": "0x00000001",
11771 "dns.resp.ttl": "274",
11772 "dns.resp.len": "6",
11773 "dns.ns": "n7b.akamaiedge.net"
11775 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
11776 "dns.resp.name": "b.akamaiedge.net",
11777 "dns.resp.type": "2",
11778 "dns.resp.class": "0x00000001",
11779 "dns.resp.ttl": "274",
11780 "dns.resp.len": "6",
11781 "dns.ns": "n1b.akamaiedge.net"
11783 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
11784 "dns.resp.name": "b.akamaiedge.net",
11785 "dns.resp.type": "2",
11786 "dns.resp.class": "0x00000001",
11787 "dns.resp.ttl": "274",
11788 "dns.resp.len": "6",
11789 "dns.ns": "n6b.akamaiedge.net"
11791 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
11792 "dns.resp.name": "b.akamaiedge.net",
11793 "dns.resp.type": "2",
11794 "dns.resp.class": "0x00000001",
11795 "dns.resp.ttl": "274",
11796 "dns.resp.len": "6",
11797 "dns.ns": "n2b.akamaiedge.net"
11799 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
11800 "dns.resp.name": "b.akamaiedge.net",
11801 "dns.resp.type": "2",
11802 "dns.resp.class": "0x00000001",
11803 "dns.resp.ttl": "274",
11804 "dns.resp.len": "6",
11805 "dns.ns": "n4b.akamaiedge.net"
11807 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
11808 "dns.resp.name": "b.akamaiedge.net",
11809 "dns.resp.type": "2",
11810 "dns.resp.class": "0x00000001",
11811 "dns.resp.ttl": "274",
11812 "dns.resp.len": "6",
11813 "dns.ns": "n3b.akamaiedge.net"
11815 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
11816 "dns.resp.name": "b.akamaiedge.net",
11817 "dns.resp.type": "2",
11818 "dns.resp.class": "0x00000001",
11819 "dns.resp.ttl": "274",
11820 "dns.resp.len": "6",
11821 "dns.ns": "a0b.akamaiedge.net"
11824 "Additional records": {
11825 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
11826 "dns.resp.name": "n0b.akamaiedge.net",
11827 "dns.resp.type": "1",
11828 "dns.resp.class": "0x00000001",
11829 "dns.resp.ttl": "2799",
11830 "dns.resp.len": "4",
11831 "dns.a": "88.221.81.192"
11833 "n1b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
11834 "dns.resp.name": "n1b.akamaiedge.net",
11835 "dns.resp.type": "1",
11836 "dns.resp.class": "0x00000001",
11837 "dns.resp.ttl": "7339",
11838 "dns.resp.len": "4",
11839 "dns.a": "198.172.88.208"
11841 "n2b.akamaiedge.net: type A, class IN, addr 173.197.192.233": {
11842 "dns.resp.name": "n2b.akamaiedge.net",
11843 "dns.resp.type": "1",
11844 "dns.resp.class": "0x00000001",
11845 "dns.resp.ttl": "2114",
11846 "dns.resp.len": "4",
11847 "dns.a": "173.197.192.233"
11849 "n3b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
11850 "dns.resp.name": "n3b.akamaiedge.net",
11851 "dns.resp.type": "1",
11852 "dns.resp.class": "0x00000001",
11853 "dns.resp.ttl": "2178",
11854 "dns.resp.len": "4",
11855 "dns.a": "173.197.192.229"
11857 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.203": {
11858 "dns.resp.name": "n4b.akamaiedge.net",
11859 "dns.resp.type": "1",
11860 "dns.resp.class": "0x00000001",
11861 "dns.resp.ttl": "2586",
11862 "dns.resp.len": "4",
11863 "dns.a": "198.172.88.203"
11865 "n5b.akamaiedge.net: type A, class IN, addr 198.172.88.203": {
11866 "dns.resp.name": "n5b.akamaiedge.net",
11867 "dns.resp.type": "1",
11868 "dns.resp.class": "0x00000001",
11869 "dns.resp.ttl": "7142",
11870 "dns.resp.len": "4",
11871 "dns.a": "198.172.88.203"
11873 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.95": {
11874 "dns.resp.name": "n6b.akamaiedge.net",
11875 "dns.resp.type": "1",
11876 "dns.resp.class": "0x00000001",
11877 "dns.resp.ttl": "2721",
11878 "dns.resp.len": "4",
11879 "dns.a": "165.254.16.95"
11881 "n7b.akamaiedge.net: type A, class IN, addr 204.1.137.37": {
11882 "dns.resp.name": "n7b.akamaiedge.net",
11883 "dns.resp.type": "1",
11884 "dns.resp.class": "0x00000001",
11885 "dns.resp.ttl": "825",
11886 "dns.resp.len": "4",
11887 "dns.a": "204.1.137.37"
11889 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
11890 "dns.resp.name": "a0b.akamaiedge.net",
11891 "dns.resp.type": "28",
11892 "dns.resp.class": "0x00000001",
11893 "dns.resp.ttl": "3277",
11894 "dns.resp.len": "16",
11895 "dns.aaaa": "2600:1480:e800::c0"
11904 "_index": "packets-2017-10-26",
11905 "_type": "pcap_file",
11910 "frame.encap_type": "1",
11911 "frame.time": "Oct 19, 2017 21:33:23.396307000 PDT",
11912 "frame.offset_shift": "0.000000000",
11913 "frame.time_epoch": "1508474003.396307000",
11914 "frame.time_delta": "4.678140000",
11915 "frame.time_delta_displayed": "630.972365000",
11916 "frame.time_relative": "16290.991103000",
11917 "frame.number": "16442",
11919 "frame.cap_len": "79",
11920 "frame.marked": "0",
11921 "frame.ignored": "0",
11922 "frame.protocols": "eth:ethertype:ip:udp:dns",
11923 "frame.coloring_rule.name": "UDP",
11924 "frame.coloring_rule.string": "udp"
11927 "eth.dst": "b0:b9:8a:73:69:8e",
11929 "eth.dst_resolved": "Netgear_73:69:8e",
11930 "eth.addr": "b0:b9:8a:73:69:8e",
11931 "eth.addr_resolved": "Netgear_73:69:8e",
11935 "eth.src": "00:17:88:69:ee:e4",
11937 "eth.src_resolved": "PhilipsL_69:ee:e4",
11938 "eth.addr": "00:17:88:69:ee:e4",
11939 "eth.addr_resolved": "PhilipsL_69:ee:e4",
11943 "eth.type": "0x00000800"
11947 "ip.hdr_len": "20",
11948 "ip.dsfield": "0x00000000",
11949 "ip.dsfield_tree": {
11950 "ip.dsfield.dscp": "0",
11951 "ip.dsfield.ecn": "0"
11954 "ip.id": "0x000096a0",
11955 "ip.flags": "0x00000002",
11957 "ip.flags.rb": "0",
11958 "ip.flags.df": "1",
11961 "ip.frag_offset": "0",
11964 "ip.checksum": "0x0000221a",
11965 "ip.checksum.status": "2",
11966 "ip.src": "192.168.0.160",
11967 "ip.addr": "192.168.0.160",
11968 "ip.src_host": "192.168.0.160",
11969 "ip.host": "192.168.0.160",
11970 "ip.dst": "192.168.0.1",
11971 "ip.addr": "192.168.0.1",
11972 "ip.dst_host": "192.168.0.1",
11973 "ip.host": "192.168.0.1",
11974 "Source GeoIP: Unknown": "",
11975 "Destination GeoIP: Unknown": ""
11978 "udp.srcport": "37663",
11979 "udp.dstport": "53",
11980 "udp.port": "37663",
11982 "udp.length": "45",
11983 "udp.checksum": "0x00002d74",
11984 "udp.checksum.status": "2",
11985 "udp.stream": "215"
11988 "dns.response_in": "16443",
11989 "dns.id": "0x000004aa",
11990 "dns.flags": "0x00000100",
11991 "dns.flags_tree": {
11992 "dns.flags.response": "0",
11993 "dns.flags.opcode": "0",
11994 "dns.flags.truncated": "0",
11995 "dns.flags.recdesired": "1",
11996 "dns.flags.z": "0",
11997 "dns.flags.checkdisable": "0"
11999 "dns.count.queries": "1",
12000 "dns.count.answers": "0",
12001 "dns.count.auth_rr": "0",
12002 "dns.count.add_rr": "0",
12004 "dcp.cpp.philips.com: type AAAA, class IN": {
12005 "dns.qry.name": "dcp.cpp.philips.com",
12006 "dns.qry.name.len": "19",
12007 "dns.count.labels": "4",
12008 "dns.qry.type": "28",
12009 "dns.qry.class": "0x00000001"
12018 "_index": "packets-2017-10-26",
12019 "_type": "pcap_file",
12024 "frame.encap_type": "1",
12025 "frame.time": "Oct 19, 2017 21:33:23.398249000 PDT",
12026 "frame.offset_shift": "0.000000000",
12027 "frame.time_epoch": "1508474003.398249000",
12028 "frame.time_delta": "0.001942000",
12029 "frame.time_delta_displayed": "0.001942000",
12030 "frame.time_relative": "16290.993045000",
12031 "frame.number": "16443",
12032 "frame.len": "137",
12033 "frame.cap_len": "137",
12034 "frame.marked": "0",
12035 "frame.ignored": "0",
12036 "frame.protocols": "eth:ethertype:ip:udp:dns",
12037 "frame.coloring_rule.name": "UDP",
12038 "frame.coloring_rule.string": "udp"
12041 "eth.dst": "00:17:88:69:ee:e4",
12043 "eth.dst_resolved": "PhilipsL_69:ee:e4",
12044 "eth.addr": "00:17:88:69:ee:e4",
12045 "eth.addr_resolved": "PhilipsL_69:ee:e4",
12049 "eth.src": "b0:b9:8a:73:69:8e",
12051 "eth.src_resolved": "Netgear_73:69:8e",
12052 "eth.addr": "b0:b9:8a:73:69:8e",
12053 "eth.addr_resolved": "Netgear_73:69:8e",
12057 "eth.type": "0x00000800"
12061 "ip.hdr_len": "20",
12062 "ip.dsfield": "0x00000000",
12063 "ip.dsfield_tree": {
12064 "ip.dsfield.dscp": "0",
12065 "ip.dsfield.ecn": "0"
12068 "ip.id": "0x00008616",
12069 "ip.flags": "0x00000002",
12071 "ip.flags.rb": "0",
12072 "ip.flags.df": "1",
12075 "ip.frag_offset": "0",
12078 "ip.checksum": "0x0000326a",
12079 "ip.checksum.status": "2",
12080 "ip.src": "192.168.0.1",
12081 "ip.addr": "192.168.0.1",
12082 "ip.src_host": "192.168.0.1",
12083 "ip.host": "192.168.0.1",
12084 "ip.dst": "192.168.0.160",
12085 "ip.addr": "192.168.0.160",
12086 "ip.dst_host": "192.168.0.160",
12087 "ip.host": "192.168.0.160",
12088 "Source GeoIP: Unknown": "",
12089 "Destination GeoIP: Unknown": ""
12092 "udp.srcport": "53",
12093 "udp.dstport": "37663",
12095 "udp.port": "37663",
12096 "udp.length": "103",
12097 "udp.checksum": "0x0000826a",
12098 "udp.checksum.status": "2",
12099 "udp.stream": "215"
12102 "dns.response_to": "16442",
12103 "dns.time": "0.001942000",
12104 "dns.id": "0x000004aa",
12105 "dns.flags": "0x00008180",
12106 "dns.flags_tree": {
12107 "dns.flags.response": "1",
12108 "dns.flags.opcode": "0",
12109 "dns.flags.authoritative": "0",
12110 "dns.flags.truncated": "0",
12111 "dns.flags.recdesired": "1",
12112 "dns.flags.recavail": "1",
12113 "dns.flags.z": "0",
12114 "dns.flags.authenticated": "0",
12115 "dns.flags.checkdisable": "0",
12116 "dns.flags.rcode": "0"
12118 "dns.count.queries": "1",
12119 "dns.count.answers": "0",
12120 "dns.count.auth_rr": "1",
12121 "dns.count.add_rr": "0",
12123 "dcp.cpp.philips.com: type AAAA, class IN": {
12124 "dns.qry.name": "dcp.cpp.philips.com",
12125 "dns.qry.name.len": "19",
12126 "dns.count.labels": "4",
12127 "dns.qry.type": "28",
12128 "dns.qry.class": "0x00000001"
12131 "Authoritative nameservers": {
12132 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
12133 "dns.resp.name": "cpp.philips.com",
12134 "dns.resp.type": "6",
12135 "dns.resp.class": "0x00000001",
12136 "dns.resp.ttl": "1786",
12137 "dns.resp.len": "46",
12138 "dns.soa.mname": "ns1.ext.philips.com",
12139 "dns.soa.rname": "ddi-authority.philips.com",
12140 "dns.soa.serial_number": "387",
12141 "dns.soa.refresh_interval": "1200",
12142 "dns.soa.retry_interval": "300",
12143 "dns.soa.expire_limit": "1209600",
12144 "dns.soa.mininum_ttl": "3600"
12153 "_index": "packets-2017-10-26",
12154 "_type": "pcap_file",
12159 "frame.encap_type": "1",
12160 "frame.time": "Oct 19, 2017 21:33:23.399079000 PDT",
12161 "frame.offset_shift": "0.000000000",
12162 "frame.time_epoch": "1508474003.399079000",
12163 "frame.time_delta": "0.000830000",
12164 "frame.time_delta_displayed": "0.000830000",
12165 "frame.time_relative": "16290.993875000",
12166 "frame.number": "16444",
12168 "frame.cap_len": "79",
12169 "frame.marked": "0",
12170 "frame.ignored": "0",
12171 "frame.protocols": "eth:ethertype:ip:udp:dns",
12172 "frame.coloring_rule.name": "UDP",
12173 "frame.coloring_rule.string": "udp"
12176 "eth.dst": "b0:b9:8a:73:69:8e",
12178 "eth.dst_resolved": "Netgear_73:69:8e",
12179 "eth.addr": "b0:b9:8a:73:69:8e",
12180 "eth.addr_resolved": "Netgear_73:69:8e",
12184 "eth.src": "00:17:88:69:ee:e4",
12186 "eth.src_resolved": "PhilipsL_69:ee:e4",
12187 "eth.addr": "00:17:88:69:ee:e4",
12188 "eth.addr_resolved": "PhilipsL_69:ee:e4",
12192 "eth.type": "0x00000800"
12196 "ip.hdr_len": "20",
12197 "ip.dsfield": "0x00000000",
12198 "ip.dsfield_tree": {
12199 "ip.dsfield.dscp": "0",
12200 "ip.dsfield.ecn": "0"
12203 "ip.id": "0x000096a1",
12204 "ip.flags": "0x00000002",
12206 "ip.flags.rb": "0",
12207 "ip.flags.df": "1",
12210 "ip.frag_offset": "0",
12213 "ip.checksum": "0x00002219",
12214 "ip.checksum.status": "2",
12215 "ip.src": "192.168.0.160",
12216 "ip.addr": "192.168.0.160",
12217 "ip.src_host": "192.168.0.160",
12218 "ip.host": "192.168.0.160",
12219 "ip.dst": "192.168.0.1",
12220 "ip.addr": "192.168.0.1",
12221 "ip.dst_host": "192.168.0.1",
12222 "ip.host": "192.168.0.1",
12223 "Source GeoIP: Unknown": "",
12224 "Destination GeoIP: Unknown": ""
12227 "udp.srcport": "33353",
12228 "udp.dstport": "53",
12229 "udp.port": "33353",
12231 "udp.length": "45",
12232 "udp.checksum": "0x00005949",
12233 "udp.checksum.status": "2",
12234 "udp.stream": "216"
12237 "dns.response_in": "16445",
12238 "dns.id": "0x000004ab",
12239 "dns.flags": "0x00000100",
12240 "dns.flags_tree": {
12241 "dns.flags.response": "0",
12242 "dns.flags.opcode": "0",
12243 "dns.flags.truncated": "0",
12244 "dns.flags.recdesired": "1",
12245 "dns.flags.z": "0",
12246 "dns.flags.checkdisable": "0"
12248 "dns.count.queries": "1",
12249 "dns.count.answers": "0",
12250 "dns.count.auth_rr": "0",
12251 "dns.count.add_rr": "0",
12253 "dcp.cpp.philips.com: type A, class IN": {
12254 "dns.qry.name": "dcp.cpp.philips.com",
12255 "dns.qry.name.len": "19",
12256 "dns.count.labels": "4",
12257 "dns.qry.type": "1",
12258 "dns.qry.class": "0x00000001"
12267 "_index": "packets-2017-10-26",
12268 "_type": "pcap_file",
12273 "frame.encap_type": "1",
12274 "frame.time": "Oct 19, 2017 21:33:23.400649000 PDT",
12275 "frame.offset_shift": "0.000000000",
12276 "frame.time_epoch": "1508474003.400649000",
12277 "frame.time_delta": "0.001570000",
12278 "frame.time_delta_displayed": "0.001570000",
12279 "frame.time_relative": "16290.995445000",
12280 "frame.number": "16445",
12281 "frame.len": "285",
12282 "frame.cap_len": "285",
12283 "frame.marked": "0",
12284 "frame.ignored": "0",
12285 "frame.protocols": "eth:ethertype:ip:udp:dns",
12286 "frame.coloring_rule.name": "UDP",
12287 "frame.coloring_rule.string": "udp"
12290 "eth.dst": "00:17:88:69:ee:e4",
12292 "eth.dst_resolved": "PhilipsL_69:ee:e4",
12293 "eth.addr": "00:17:88:69:ee:e4",
12294 "eth.addr_resolved": "PhilipsL_69:ee:e4",
12298 "eth.src": "b0:b9:8a:73:69:8e",
12300 "eth.src_resolved": "Netgear_73:69:8e",
12301 "eth.addr": "b0:b9:8a:73:69:8e",
12302 "eth.addr_resolved": "Netgear_73:69:8e",
12306 "eth.type": "0x00000800"
12310 "ip.hdr_len": "20",
12311 "ip.dsfield": "0x00000000",
12312 "ip.dsfield_tree": {
12313 "ip.dsfield.dscp": "0",
12314 "ip.dsfield.ecn": "0"
12317 "ip.id": "0x00008617",
12318 "ip.flags": "0x00000002",
12320 "ip.flags.rb": "0",
12321 "ip.flags.df": "1",
12324 "ip.frag_offset": "0",
12327 "ip.checksum": "0x000031d5",
12328 "ip.checksum.status": "2",
12329 "ip.src": "192.168.0.1",
12330 "ip.addr": "192.168.0.1",
12331 "ip.src_host": "192.168.0.1",
12332 "ip.host": "192.168.0.1",
12333 "ip.dst": "192.168.0.160",
12334 "ip.addr": "192.168.0.160",
12335 "ip.dst_host": "192.168.0.160",
12336 "ip.host": "192.168.0.160",
12337 "Source GeoIP: Unknown": "",
12338 "Destination GeoIP: Unknown": ""
12341 "udp.srcport": "53",
12342 "udp.dstport": "33353",
12344 "udp.port": "33353",
12345 "udp.length": "251",
12346 "udp.checksum": "0x000082fe",
12347 "udp.checksum.status": "2",
12348 "udp.stream": "216"
12351 "dns.response_to": "16444",
12352 "dns.time": "0.001570000",
12353 "dns.id": "0x000004ab",
12354 "dns.flags": "0x00008180",
12355 "dns.flags_tree": {
12356 "dns.flags.response": "1",
12357 "dns.flags.opcode": "0",
12358 "dns.flags.authoritative": "0",
12359 "dns.flags.truncated": "0",
12360 "dns.flags.recdesired": "1",
12361 "dns.flags.recavail": "1",
12362 "dns.flags.z": "0",
12363 "dns.flags.authenticated": "0",
12364 "dns.flags.checkdisable": "0",
12365 "dns.flags.rcode": "0"
12367 "dns.count.queries": "1",
12368 "dns.count.answers": "1",
12369 "dns.count.auth_rr": "3",
12370 "dns.count.add_rr": "6",
12372 "dcp.cpp.philips.com: type A, class IN": {
12373 "dns.qry.name": "dcp.cpp.philips.com",
12374 "dns.qry.name.len": "19",
12375 "dns.count.labels": "4",
12376 "dns.qry.type": "1",
12377 "dns.qry.class": "0x00000001"
12381 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
12382 "dns.resp.name": "dcp.cpp.philips.com",
12383 "dns.resp.type": "1",
12384 "dns.resp.class": "0x00000001",
12385 "dns.resp.ttl": "1786",
12386 "dns.resp.len": "4",
12387 "dns.a": "5.79.62.93"
12390 "Authoritative nameservers": {
12391 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
12392 "dns.resp.name": "cpp.philips.com",
12393 "dns.resp.type": "2",
12394 "dns.resp.class": "0x00000001",
12395 "dns.resp.ttl": "1786",
12396 "dns.resp.len": "10",
12397 "dns.ns": "ns3.ext.philips.com"
12399 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
12400 "dns.resp.name": "cpp.philips.com",
12401 "dns.resp.type": "2",
12402 "dns.resp.class": "0x00000001",
12403 "dns.resp.ttl": "1786",
12404 "dns.resp.len": "6",
12405 "dns.ns": "ns1.ext.philips.com"
12407 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
12408 "dns.resp.name": "cpp.philips.com",
12409 "dns.resp.type": "2",
12410 "dns.resp.class": "0x00000001",
12411 "dns.resp.ttl": "1786",
12412 "dns.resp.len": "6",
12413 "dns.ns": "ns2.ext.philips.com"
12416 "Additional records": {
12417 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
12418 "dns.resp.name": "ns1.ext.philips.com",
12419 "dns.resp.type": "1",
12420 "dns.resp.class": "0x00000001",
12421 "dns.resp.ttl": "140607",
12422 "dns.resp.len": "4",
12423 "dns.a": "57.67.40.20"
12425 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
12426 "dns.resp.name": "ns2.ext.philips.com",
12427 "dns.resp.type": "1",
12428 "dns.resp.class": "0x00000001",
12429 "dns.resp.ttl": "165325",
12430 "dns.resp.len": "4",
12431 "dns.a": "57.77.21.76"
12433 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
12434 "dns.resp.name": "ns3.ext.philips.com",
12435 "dns.resp.type": "1",
12436 "dns.resp.class": "0x00000001",
12437 "dns.resp.ttl": "165325",
12438 "dns.resp.len": "4",
12439 "dns.a": "57.73.36.68"
12441 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
12442 "dns.resp.name": "ns1.ext.philips.com",
12443 "dns.resp.type": "28",
12444 "dns.resp.class": "0x00000001",
12445 "dns.resp.ttl": "144226",
12446 "dns.resp.len": "16",
12447 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
12449 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
12450 "dns.resp.name": "ns2.ext.philips.com",
12451 "dns.resp.type": "28",
12452 "dns.resp.class": "0x00000001",
12453 "dns.resp.ttl": "136799",
12454 "dns.resp.len": "16",
12455 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
12457 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
12458 "dns.resp.name": "ns3.ext.philips.com",
12459 "dns.resp.type": "28",
12460 "dns.resp.class": "0x00000001",
12461 "dns.resp.ttl": "136799",
12462 "dns.resp.len": "16",
12463 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
12472 "_index": "packets-2017-10-26",
12473 "_type": "pcap_file",
12478 "frame.encap_type": "1",
12479 "frame.time": "Oct 19, 2017 21:33:23.818793000 PDT",
12480 "frame.offset_shift": "0.000000000",
12481 "frame.time_epoch": "1508474003.818793000",
12482 "frame.time_delta": "0.002460000",
12483 "frame.time_delta_displayed": "0.418144000",
12484 "frame.time_relative": "16291.413589000",
12485 "frame.number": "16461",
12487 "frame.cap_len": "79",
12488 "frame.marked": "0",
12489 "frame.ignored": "0",
12490 "frame.protocols": "eth:ethertype:ip:udp:dns",
12491 "frame.coloring_rule.name": "UDP",
12492 "frame.coloring_rule.string": "udp"
12495 "eth.dst": "b0:b9:8a:73:69:8e",
12497 "eth.dst_resolved": "Netgear_73:69:8e",
12498 "eth.addr": "b0:b9:8a:73:69:8e",
12499 "eth.addr_resolved": "Netgear_73:69:8e",
12503 "eth.src": "00:17:88:69:ee:e4",
12505 "eth.src_resolved": "PhilipsL_69:ee:e4",
12506 "eth.addr": "00:17:88:69:ee:e4",
12507 "eth.addr_resolved": "PhilipsL_69:ee:e4",
12511 "eth.type": "0x00000800"
12515 "ip.hdr_len": "20",
12516 "ip.dsfield": "0x00000000",
12517 "ip.dsfield_tree": {
12518 "ip.dsfield.dscp": "0",
12519 "ip.dsfield.ecn": "0"
12522 "ip.id": "0x000096bd",
12523 "ip.flags": "0x00000002",
12525 "ip.flags.rb": "0",
12526 "ip.flags.df": "1",
12529 "ip.frag_offset": "0",
12532 "ip.checksum": "0x000021fd",
12533 "ip.checksum.status": "2",
12534 "ip.src": "192.168.0.160",
12535 "ip.addr": "192.168.0.160",
12536 "ip.src_host": "192.168.0.160",
12537 "ip.host": "192.168.0.160",
12538 "ip.dst": "192.168.0.1",
12539 "ip.addr": "192.168.0.1",
12540 "ip.dst_host": "192.168.0.1",
12541 "ip.host": "192.168.0.1",
12542 "Source GeoIP: Unknown": "",
12543 "Destination GeoIP: Unknown": ""
12546 "udp.srcport": "52555",
12547 "udp.dstport": "53",
12548 "udp.port": "52555",
12550 "udp.length": "45",
12551 "udp.checksum": "0x0000f345",
12552 "udp.checksum.status": "2",
12553 "udp.stream": "217"
12556 "dns.response_in": "16462",
12557 "dns.id": "0x000004ac",
12558 "dns.flags": "0x00000100",
12559 "dns.flags_tree": {
12560 "dns.flags.response": "0",
12561 "dns.flags.opcode": "0",
12562 "dns.flags.truncated": "0",
12563 "dns.flags.recdesired": "1",
12564 "dns.flags.z": "0",
12565 "dns.flags.checkdisable": "0"
12567 "dns.count.queries": "1",
12568 "dns.count.answers": "0",
12569 "dns.count.auth_rr": "0",
12570 "dns.count.add_rr": "0",
12572 "dcp.cpp.philips.com: type AAAA, class IN": {
12573 "dns.qry.name": "dcp.cpp.philips.com",
12574 "dns.qry.name.len": "19",
12575 "dns.count.labels": "4",
12576 "dns.qry.type": "28",
12577 "dns.qry.class": "0x00000001"
12586 "_index": "packets-2017-10-26",
12587 "_type": "pcap_file",
12592 "frame.encap_type": "1",
12593 "frame.time": "Oct 19, 2017 21:33:23.819379000 PDT",
12594 "frame.offset_shift": "0.000000000",
12595 "frame.time_epoch": "1508474003.819379000",
12596 "frame.time_delta": "0.000586000",
12597 "frame.time_delta_displayed": "0.000586000",
12598 "frame.time_relative": "16291.414175000",
12599 "frame.number": "16462",
12601 "frame.cap_len": "79",
12602 "frame.marked": "0",
12603 "frame.ignored": "0",
12604 "frame.protocols": "eth:ethertype:ip:udp:dns",
12605 "frame.coloring_rule.name": "UDP",
12606 "frame.coloring_rule.string": "udp"
12609 "eth.dst": "00:17:88:69:ee:e4",
12611 "eth.dst_resolved": "PhilipsL_69:ee:e4",
12612 "eth.addr": "00:17:88:69:ee:e4",
12613 "eth.addr_resolved": "PhilipsL_69:ee:e4",
12617 "eth.src": "b0:b9:8a:73:69:8e",
12619 "eth.src_resolved": "Netgear_73:69:8e",
12620 "eth.addr": "b0:b9:8a:73:69:8e",
12621 "eth.addr_resolved": "Netgear_73:69:8e",
12625 "eth.type": "0x00000800"
12629 "ip.hdr_len": "20",
12630 "ip.dsfield": "0x00000000",
12631 "ip.dsfield_tree": {
12632 "ip.dsfield.dscp": "0",
12633 "ip.dsfield.ecn": "0"
12636 "ip.id": "0x0000861c",
12637 "ip.flags": "0x00000002",
12639 "ip.flags.rb": "0",
12640 "ip.flags.df": "1",
12643 "ip.frag_offset": "0",
12646 "ip.checksum": "0x0000329e",
12647 "ip.checksum.status": "2",
12648 "ip.src": "192.168.0.1",
12649 "ip.addr": "192.168.0.1",
12650 "ip.src_host": "192.168.0.1",
12651 "ip.host": "192.168.0.1",
12652 "ip.dst": "192.168.0.160",
12653 "ip.addr": "192.168.0.160",
12654 "ip.dst_host": "192.168.0.160",
12655 "ip.host": "192.168.0.160",
12656 "Source GeoIP: Unknown": "",
12657 "Destination GeoIP: Unknown": ""
12660 "udp.srcport": "53",
12661 "udp.dstport": "52555",
12663 "udp.port": "52555",
12664 "udp.length": "45",
12665 "udp.checksum": "0x00008230",
12666 "udp.checksum.status": "2",
12667 "udp.stream": "217"
12670 "dns.response_to": "16461",
12671 "dns.time": "0.000586000",
12672 "dns.id": "0x000004ac",
12673 "dns.flags": "0x00008180",
12674 "dns.flags_tree": {
12675 "dns.flags.response": "1",
12676 "dns.flags.opcode": "0",
12677 "dns.flags.authoritative": "0",
12678 "dns.flags.truncated": "0",
12679 "dns.flags.recdesired": "1",
12680 "dns.flags.recavail": "1",
12681 "dns.flags.z": "0",
12682 "dns.flags.authenticated": "0",
12683 "dns.flags.checkdisable": "0",
12684 "dns.flags.rcode": "0"
12686 "dns.count.queries": "1",
12687 "dns.count.answers": "0",
12688 "dns.count.auth_rr": "0",
12689 "dns.count.add_rr": "0",
12691 "dcp.cpp.philips.com: type AAAA, class IN": {
12692 "dns.qry.name": "dcp.cpp.philips.com",
12693 "dns.qry.name.len": "19",
12694 "dns.count.labels": "4",
12695 "dns.qry.type": "28",
12696 "dns.qry.class": "0x00000001"
12705 "_index": "packets-2017-10-26",
12706 "_type": "pcap_file",
12711 "frame.encap_type": "1",
12712 "frame.time": "Oct 19, 2017 21:33:23.820220000 PDT",
12713 "frame.offset_shift": "0.000000000",
12714 "frame.time_epoch": "1508474003.820220000",
12715 "frame.time_delta": "0.000841000",
12716 "frame.time_delta_displayed": "0.000841000",
12717 "frame.time_relative": "16291.415016000",
12718 "frame.number": "16463",
12720 "frame.cap_len": "79",
12721 "frame.marked": "0",
12722 "frame.ignored": "0",
12723 "frame.protocols": "eth:ethertype:ip:udp:dns",
12724 "frame.coloring_rule.name": "UDP",
12725 "frame.coloring_rule.string": "udp"
12728 "eth.dst": "b0:b9:8a:73:69:8e",
12730 "eth.dst_resolved": "Netgear_73:69:8e",
12731 "eth.addr": "b0:b9:8a:73:69:8e",
12732 "eth.addr_resolved": "Netgear_73:69:8e",
12736 "eth.src": "00:17:88:69:ee:e4",
12738 "eth.src_resolved": "PhilipsL_69:ee:e4",
12739 "eth.addr": "00:17:88:69:ee:e4",
12740 "eth.addr_resolved": "PhilipsL_69:ee:e4",
12744 "eth.type": "0x00000800"
12748 "ip.hdr_len": "20",
12749 "ip.dsfield": "0x00000000",
12750 "ip.dsfield_tree": {
12751 "ip.dsfield.dscp": "0",
12752 "ip.dsfield.ecn": "0"
12755 "ip.id": "0x000096be",
12756 "ip.flags": "0x00000002",
12758 "ip.flags.rb": "0",
12759 "ip.flags.df": "1",
12762 "ip.frag_offset": "0",
12765 "ip.checksum": "0x000021fc",
12766 "ip.checksum.status": "2",
12767 "ip.src": "192.168.0.160",
12768 "ip.addr": "192.168.0.160",
12769 "ip.src_host": "192.168.0.160",
12770 "ip.host": "192.168.0.160",
12771 "ip.dst": "192.168.0.1",
12772 "ip.addr": "192.168.0.1",
12773 "ip.dst_host": "192.168.0.1",
12774 "ip.host": "192.168.0.1",
12775 "Source GeoIP: Unknown": "",
12776 "Destination GeoIP: Unknown": ""
12779 "udp.srcport": "58656",
12780 "udp.dstport": "53",
12781 "udp.port": "58656",
12783 "udp.length": "45",
12784 "udp.checksum": "0x0000f66f",
12785 "udp.checksum.status": "2",
12786 "udp.stream": "218"
12789 "dns.response_in": "16464",
12790 "dns.id": "0x000004ad",
12791 "dns.flags": "0x00000100",
12792 "dns.flags_tree": {
12793 "dns.flags.response": "0",
12794 "dns.flags.opcode": "0",
12795 "dns.flags.truncated": "0",
12796 "dns.flags.recdesired": "1",
12797 "dns.flags.z": "0",
12798 "dns.flags.checkdisable": "0"
12800 "dns.count.queries": "1",
12801 "dns.count.answers": "0",
12802 "dns.count.auth_rr": "0",
12803 "dns.count.add_rr": "0",
12805 "dcp.cpp.philips.com: type A, class IN": {
12806 "dns.qry.name": "dcp.cpp.philips.com",
12807 "dns.qry.name.len": "19",
12808 "dns.count.labels": "4",
12809 "dns.qry.type": "1",
12810 "dns.qry.class": "0x00000001"
12819 "_index": "packets-2017-10-26",
12820 "_type": "pcap_file",
12825 "frame.encap_type": "1",
12826 "frame.time": "Oct 19, 2017 21:33:23.820779000 PDT",
12827 "frame.offset_shift": "0.000000000",
12828 "frame.time_epoch": "1508474003.820779000",
12829 "frame.time_delta": "0.000559000",
12830 "frame.time_delta_displayed": "0.000559000",
12831 "frame.time_relative": "16291.415575000",
12832 "frame.number": "16464",
12834 "frame.cap_len": "95",
12835 "frame.marked": "0",
12836 "frame.ignored": "0",
12837 "frame.protocols": "eth:ethertype:ip:udp:dns",
12838 "frame.coloring_rule.name": "UDP",
12839 "frame.coloring_rule.string": "udp"
12842 "eth.dst": "00:17:88:69:ee:e4",
12844 "eth.dst_resolved": "PhilipsL_69:ee:e4",
12845 "eth.addr": "00:17:88:69:ee:e4",
12846 "eth.addr_resolved": "PhilipsL_69:ee:e4",
12850 "eth.src": "b0:b9:8a:73:69:8e",
12852 "eth.src_resolved": "Netgear_73:69:8e",
12853 "eth.addr": "b0:b9:8a:73:69:8e",
12854 "eth.addr_resolved": "Netgear_73:69:8e",
12858 "eth.type": "0x00000800"
12862 "ip.hdr_len": "20",
12863 "ip.dsfield": "0x00000000",
12864 "ip.dsfield_tree": {
12865 "ip.dsfield.dscp": "0",
12866 "ip.dsfield.ecn": "0"
12869 "ip.id": "0x0000861d",
12870 "ip.flags": "0x00000002",
12872 "ip.flags.rb": "0",
12873 "ip.flags.df": "1",
12876 "ip.frag_offset": "0",
12879 "ip.checksum": "0x0000328d",
12880 "ip.checksum.status": "2",
12881 "ip.src": "192.168.0.1",
12882 "ip.addr": "192.168.0.1",
12883 "ip.src_host": "192.168.0.1",
12884 "ip.host": "192.168.0.1",
12885 "ip.dst": "192.168.0.160",
12886 "ip.addr": "192.168.0.160",
12887 "ip.dst_host": "192.168.0.160",
12888 "ip.host": "192.168.0.160",
12889 "Source GeoIP: Unknown": "",
12890 "Destination GeoIP: Unknown": ""
12893 "udp.srcport": "53",
12894 "udp.dstport": "58656",
12896 "udp.port": "58656",
12897 "udp.length": "61",
12898 "udp.checksum": "0x00008240",
12899 "udp.checksum.status": "2",
12900 "udp.stream": "218"
12903 "dns.response_to": "16463",
12904 "dns.time": "0.000559000",
12905 "dns.id": "0x000004ad",
12906 "dns.flags": "0x00008180",
12907 "dns.flags_tree": {
12908 "dns.flags.response": "1",
12909 "dns.flags.opcode": "0",
12910 "dns.flags.authoritative": "0",
12911 "dns.flags.truncated": "0",
12912 "dns.flags.recdesired": "1",
12913 "dns.flags.recavail": "1",
12914 "dns.flags.z": "0",
12915 "dns.flags.authenticated": "0",
12916 "dns.flags.checkdisable": "0",
12917 "dns.flags.rcode": "0"
12919 "dns.count.queries": "1",
12920 "dns.count.answers": "1",
12921 "dns.count.auth_rr": "0",
12922 "dns.count.add_rr": "0",
12924 "dcp.cpp.philips.com: type A, class IN": {
12925 "dns.qry.name": "dcp.cpp.philips.com",
12926 "dns.qry.name.len": "19",
12927 "dns.count.labels": "4",
12928 "dns.qry.type": "1",
12929 "dns.qry.class": "0x00000001"
12933 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
12934 "dns.resp.name": "dcp.cpp.philips.com",
12935 "dns.resp.type": "1",
12936 "dns.resp.class": "0x00000001",
12937 "dns.resp.ttl": "1786",
12938 "dns.resp.len": "4",
12939 "dns.a": "5.79.62.93"
12948 "_index": "packets-2017-10-26",
12949 "_type": "pcap_file",
12954 "frame.encap_type": "1",
12955 "frame.time": "Oct 19, 2017 21:37:52.430247000 PDT",
12956 "frame.offset_shift": "0.000000000",
12957 "frame.time_epoch": "1508474272.430247000",
12958 "frame.time_delta": "3.692969000",
12959 "frame.time_delta_displayed": "268.609468000",
12960 "frame.time_relative": "16560.025043000",
12961 "frame.number": "16697",
12963 "frame.cap_len": "76",
12964 "frame.marked": "0",
12965 "frame.ignored": "0",
12966 "frame.protocols": "eth:ethertype:ip:udp:dns",
12967 "frame.coloring_rule.name": "UDP",
12968 "frame.coloring_rule.string": "udp"
12971 "eth.dst": "b0:b9:8a:73:69:8e",
12973 "eth.dst_resolved": "Netgear_73:69:8e",
12974 "eth.addr": "b0:b9:8a:73:69:8e",
12975 "eth.addr_resolved": "Netgear_73:69:8e",
12979 "eth.src": "00:17:88:69:ee:e4",
12981 "eth.src_resolved": "PhilipsL_69:ee:e4",
12982 "eth.addr": "00:17:88:69:ee:e4",
12983 "eth.addr_resolved": "PhilipsL_69:ee:e4",
12987 "eth.type": "0x00000800"
12991 "ip.hdr_len": "20",
12992 "ip.dsfield": "0x00000000",
12993 "ip.dsfield_tree": {
12994 "ip.dsfield.dscp": "0",
12995 "ip.dsfield.ecn": "0"
12998 "ip.id": "0x0000e609",
12999 "ip.flags": "0x00000002",
13001 "ip.flags.rb": "0",
13002 "ip.flags.df": "1",
13005 "ip.frag_offset": "0",
13008 "ip.checksum": "0x0000d2b3",
13009 "ip.checksum.status": "2",
13010 "ip.src": "192.168.0.160",
13011 "ip.addr": "192.168.0.160",
13012 "ip.src_host": "192.168.0.160",
13013 "ip.host": "192.168.0.160",
13014 "ip.dst": "192.168.0.1",
13015 "ip.addr": "192.168.0.1",
13016 "ip.dst_host": "192.168.0.1",
13017 "ip.host": "192.168.0.1",
13018 "Source GeoIP: Unknown": "",
13019 "Destination GeoIP: Unknown": ""
13022 "udp.srcport": "47128",
13023 "udp.dstport": "53",
13024 "udp.port": "47128",
13026 "udp.length": "42",
13027 "udp.checksum": "0x0000a0f1",
13028 "udp.checksum.status": "2",
13029 "udp.stream": "221"
13032 "dns.response_in": "16698",
13033 "dns.id": "0x000004ae",
13034 "dns.flags": "0x00000100",
13035 "dns.flags_tree": {
13036 "dns.flags.response": "0",
13037 "dns.flags.opcode": "0",
13038 "dns.flags.truncated": "0",
13039 "dns.flags.recdesired": "1",
13040 "dns.flags.z": "0",
13041 "dns.flags.checkdisable": "0"
13043 "dns.count.queries": "1",
13044 "dns.count.answers": "0",
13045 "dns.count.auth_rr": "0",
13046 "dns.count.add_rr": "0",
13048 "www2.meethue.com: type A, class IN": {
13049 "dns.qry.name": "www2.meethue.com",
13050 "dns.qry.name.len": "16",
13051 "dns.count.labels": "3",
13052 "dns.qry.type": "1",
13053 "dns.qry.class": "0x00000001"
13062 "_index": "packets-2017-10-26",
13063 "_type": "pcap_file",
13068 "frame.encap_type": "1",
13069 "frame.time": "Oct 19, 2017 21:37:52.445842000 PDT",
13070 "frame.offset_shift": "0.000000000",
13071 "frame.time_epoch": "1508474272.445842000",
13072 "frame.time_delta": "0.015595000",
13073 "frame.time_delta_displayed": "0.015595000",
13074 "frame.time_relative": "16560.040638000",
13075 "frame.number": "16698",
13076 "frame.len": "513",
13077 "frame.cap_len": "513",
13078 "frame.marked": "0",
13079 "frame.ignored": "0",
13080 "frame.protocols": "eth:ethertype:ip:udp:dns",
13081 "frame.coloring_rule.name": "UDP",
13082 "frame.coloring_rule.string": "udp"
13085 "eth.dst": "00:17:88:69:ee:e4",
13087 "eth.dst_resolved": "PhilipsL_69:ee:e4",
13088 "eth.addr": "00:17:88:69:ee:e4",
13089 "eth.addr_resolved": "PhilipsL_69:ee:e4",
13093 "eth.src": "b0:b9:8a:73:69:8e",
13095 "eth.src_resolved": "Netgear_73:69:8e",
13096 "eth.addr": "b0:b9:8a:73:69:8e",
13097 "eth.addr_resolved": "Netgear_73:69:8e",
13101 "eth.type": "0x00000800"
13105 "ip.hdr_len": "20",
13106 "ip.dsfield": "0x00000000",
13107 "ip.dsfield_tree": {
13108 "ip.dsfield.dscp": "0",
13109 "ip.dsfield.ecn": "0"
13112 "ip.id": "0x0000be56",
13113 "ip.flags": "0x00000002",
13115 "ip.flags.rb": "0",
13116 "ip.flags.df": "1",
13119 "ip.frag_offset": "0",
13122 "ip.checksum": "0x0000f8b1",
13123 "ip.checksum.status": "2",
13124 "ip.src": "192.168.0.1",
13125 "ip.addr": "192.168.0.1",
13126 "ip.src_host": "192.168.0.1",
13127 "ip.host": "192.168.0.1",
13128 "ip.dst": "192.168.0.160",
13129 "ip.addr": "192.168.0.160",
13130 "ip.dst_host": "192.168.0.160",
13131 "ip.host": "192.168.0.160",
13132 "Source GeoIP: Unknown": "",
13133 "Destination GeoIP: Unknown": ""
13136 "udp.srcport": "53",
13137 "udp.dstport": "47128",
13139 "udp.port": "47128",
13140 "udp.length": "479",
13141 "udp.checksum": "0x000083e2",
13142 "udp.checksum.status": "2",
13143 "udp.stream": "221"
13146 "dns.response_to": "16697",
13147 "dns.time": "0.015595000",
13148 "dns.id": "0x000004ae",
13149 "dns.flags": "0x00008180",
13150 "dns.flags_tree": {
13151 "dns.flags.response": "1",
13152 "dns.flags.opcode": "0",
13153 "dns.flags.authoritative": "0",
13154 "dns.flags.truncated": "0",
13155 "dns.flags.recdesired": "1",
13156 "dns.flags.recavail": "1",
13157 "dns.flags.z": "0",
13158 "dns.flags.authenticated": "0",
13159 "dns.flags.checkdisable": "0",
13160 "dns.flags.rcode": "0"
13162 "dns.count.queries": "1",
13163 "dns.count.answers": "4",
13164 "dns.count.auth_rr": "9",
13165 "dns.count.add_rr": "9",
13167 "www2.meethue.com: type A, class IN": {
13168 "dns.qry.name": "www2.meethue.com",
13169 "dns.qry.name.len": "16",
13170 "dns.count.labels": "3",
13171 "dns.qry.type": "1",
13172 "dns.qry.class": "0x00000001"
13176 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
13177 "dns.resp.name": "www2.meethue.com",
13178 "dns.resp.type": "5",
13179 "dns.resp.class": "0x00000001",
13180 "dns.resp.ttl": "142",
13181 "dns.resp.len": "41",
13182 "dns.cname": "brands.lighting.philips.com.edgekey.net"
13184 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
13185 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
13186 "dns.resp.type": "5",
13187 "dns.resp.class": "0x00000001",
13188 "dns.resp.ttl": "20358",
13189 "dns.resp.len": "22",
13190 "dns.cname": "e15361.b.akamaiedge.net"
13192 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
13193 "dns.resp.name": "e15361.b.akamaiedge.net",
13194 "dns.resp.type": "1",
13195 "dns.resp.class": "0x00000001",
13196 "dns.resp.ttl": "20",
13197 "dns.resp.len": "4",
13198 "dns.a": "173.223.52.112"
13200 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
13201 "dns.resp.name": "e15361.b.akamaiedge.net",
13202 "dns.resp.type": "1",
13203 "dns.resp.class": "0x00000001",
13204 "dns.resp.ttl": "20",
13205 "dns.resp.len": "4",
13206 "dns.a": "173.223.52.125"
13209 "Authoritative nameservers": {
13210 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
13211 "dns.resp.name": "b.akamaiedge.net",
13212 "dns.resp.type": "2",
13213 "dns.resp.class": "0x00000001",
13214 "dns.resp.ttl": "3374",
13215 "dns.resp.len": "6",
13216 "dns.ns": "n0b.akamaiedge.net"
13218 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
13219 "dns.resp.name": "b.akamaiedge.net",
13220 "dns.resp.type": "2",
13221 "dns.resp.class": "0x00000001",
13222 "dns.resp.ttl": "3374",
13223 "dns.resp.len": "6",
13224 "dns.ns": "n3b.akamaiedge.net"
13226 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
13227 "dns.resp.name": "b.akamaiedge.net",
13228 "dns.resp.type": "2",
13229 "dns.resp.class": "0x00000001",
13230 "dns.resp.ttl": "3374",
13231 "dns.resp.len": "6",
13232 "dns.ns": "n6b.akamaiedge.net"
13234 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
13235 "dns.resp.name": "b.akamaiedge.net",
13236 "dns.resp.type": "2",
13237 "dns.resp.class": "0x00000001",
13238 "dns.resp.ttl": "3374",
13239 "dns.resp.len": "6",
13240 "dns.ns": "n2b.akamaiedge.net"
13242 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
13243 "dns.resp.name": "b.akamaiedge.net",
13244 "dns.resp.type": "2",
13245 "dns.resp.class": "0x00000001",
13246 "dns.resp.ttl": "3374",
13247 "dns.resp.len": "6",
13248 "dns.ns": "n7b.akamaiedge.net"
13250 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
13251 "dns.resp.name": "b.akamaiedge.net",
13252 "dns.resp.type": "2",
13253 "dns.resp.class": "0x00000001",
13254 "dns.resp.ttl": "3374",
13255 "dns.resp.len": "6",
13256 "dns.ns": "n4b.akamaiedge.net"
13258 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
13259 "dns.resp.name": "b.akamaiedge.net",
13260 "dns.resp.type": "2",
13261 "dns.resp.class": "0x00000001",
13262 "dns.resp.ttl": "3374",
13263 "dns.resp.len": "6",
13264 "dns.ns": "n1b.akamaiedge.net"
13266 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
13267 "dns.resp.name": "b.akamaiedge.net",
13268 "dns.resp.type": "2",
13269 "dns.resp.class": "0x00000001",
13270 "dns.resp.ttl": "3374",
13271 "dns.resp.len": "6",
13272 "dns.ns": "n5b.akamaiedge.net"
13274 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
13275 "dns.resp.name": "b.akamaiedge.net",
13276 "dns.resp.type": "2",
13277 "dns.resp.class": "0x00000001",
13278 "dns.resp.ttl": "3374",
13279 "dns.resp.len": "6",
13280 "dns.ns": "a0b.akamaiedge.net"
13283 "Additional records": {
13284 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
13285 "dns.resp.name": "n0b.akamaiedge.net",
13286 "dns.resp.type": "1",
13287 "dns.resp.class": "0x00000001",
13288 "dns.resp.ttl": "1899",
13289 "dns.resp.len": "4",
13290 "dns.a": "88.221.81.192"
13292 "n1b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
13293 "dns.resp.name": "n1b.akamaiedge.net",
13294 "dns.resp.type": "1",
13295 "dns.resp.class": "0x00000001",
13296 "dns.resp.ttl": "6439",
13297 "dns.resp.len": "4",
13298 "dns.a": "198.172.88.208"
13300 "n2b.akamaiedge.net: type A, class IN, addr 173.197.192.233": {
13301 "dns.resp.name": "n2b.akamaiedge.net",
13302 "dns.resp.type": "1",
13303 "dns.resp.class": "0x00000001",
13304 "dns.resp.ttl": "1214",
13305 "dns.resp.len": "4",
13306 "dns.a": "173.197.192.233"
13308 "n3b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
13309 "dns.resp.name": "n3b.akamaiedge.net",
13310 "dns.resp.type": "1",
13311 "dns.resp.class": "0x00000001",
13312 "dns.resp.ttl": "1278",
13313 "dns.resp.len": "4",
13314 "dns.a": "173.197.192.229"
13316 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.203": {
13317 "dns.resp.name": "n4b.akamaiedge.net",
13318 "dns.resp.type": "1",
13319 "dns.resp.class": "0x00000001",
13320 "dns.resp.ttl": "1686",
13321 "dns.resp.len": "4",
13322 "dns.a": "198.172.88.203"
13324 "n5b.akamaiedge.net: type A, class IN, addr 198.172.88.203": {
13325 "dns.resp.name": "n5b.akamaiedge.net",
13326 "dns.resp.type": "1",
13327 "dns.resp.class": "0x00000001",
13328 "dns.resp.ttl": "6242",
13329 "dns.resp.len": "4",
13330 "dns.a": "198.172.88.203"
13332 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.95": {
13333 "dns.resp.name": "n6b.akamaiedge.net",
13334 "dns.resp.type": "1",
13335 "dns.resp.class": "0x00000001",
13336 "dns.resp.ttl": "1821",
13337 "dns.resp.len": "4",
13338 "dns.a": "165.254.16.95"
13340 "n7b.akamaiedge.net: type A, class IN, addr 198.172.88.205": {
13341 "dns.resp.name": "n7b.akamaiedge.net",
13342 "dns.resp.type": "1",
13343 "dns.resp.class": "0x00000001",
13344 "dns.resp.ttl": "5927",
13345 "dns.resp.len": "4",
13346 "dns.a": "198.172.88.205"
13348 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
13349 "dns.resp.name": "a0b.akamaiedge.net",
13350 "dns.resp.type": "28",
13351 "dns.resp.class": "0x00000001",
13352 "dns.resp.ttl": "2377",
13353 "dns.resp.len": "16",
13354 "dns.aaaa": "2600:1480:e800::c0"
13363 "_index": "packets-2017-10-26",
13364 "_type": "pcap_file",
13369 "frame.encap_type": "1",
13370 "frame.time": "Oct 19, 2017 21:52:52.450308000 PDT",
13371 "frame.offset_shift": "0.000000000",
13372 "frame.time_epoch": "1508475172.450308000",
13373 "frame.time_delta": "6.313074000",
13374 "frame.time_delta_displayed": "900.004466000",
13375 "frame.time_relative": "17460.045104000",
13376 "frame.number": "17472",
13378 "frame.cap_len": "76",
13379 "frame.marked": "0",
13380 "frame.ignored": "0",
13381 "frame.protocols": "eth:ethertype:ip:udp:dns",
13382 "frame.coloring_rule.name": "UDP",
13383 "frame.coloring_rule.string": "udp"
13386 "eth.dst": "b0:b9:8a:73:69:8e",
13388 "eth.dst_resolved": "Netgear_73:69:8e",
13389 "eth.addr": "b0:b9:8a:73:69:8e",
13390 "eth.addr_resolved": "Netgear_73:69:8e",
13394 "eth.src": "00:17:88:69:ee:e4",
13396 "eth.src_resolved": "PhilipsL_69:ee:e4",
13397 "eth.addr": "00:17:88:69:ee:e4",
13398 "eth.addr_resolved": "PhilipsL_69:ee:e4",
13402 "eth.type": "0x00000800"
13406 "ip.hdr_len": "20",
13407 "ip.dsfield": "0x00000000",
13408 "ip.dsfield_tree": {
13409 "ip.dsfield.dscp": "0",
13410 "ip.dsfield.ecn": "0"
13413 "ip.id": "0x00002b9d",
13414 "ip.flags": "0x00000002",
13416 "ip.flags.rb": "0",
13417 "ip.flags.df": "1",
13420 "ip.frag_offset": "0",
13423 "ip.checksum": "0x00008d20",
13424 "ip.checksum.status": "2",
13425 "ip.src": "192.168.0.160",
13426 "ip.addr": "192.168.0.160",
13427 "ip.src_host": "192.168.0.160",
13428 "ip.host": "192.168.0.160",
13429 "ip.dst": "192.168.0.1",
13430 "ip.addr": "192.168.0.1",
13431 "ip.dst_host": "192.168.0.1",
13432 "ip.host": "192.168.0.1",
13433 "Source GeoIP: Unknown": "",
13434 "Destination GeoIP: Unknown": ""
13437 "udp.srcport": "58502",
13438 "udp.dstport": "53",
13439 "udp.port": "58502",
13441 "udp.length": "42",
13442 "udp.checksum": "0x00007482",
13443 "udp.checksum.status": "2",
13444 "udp.stream": "229"
13447 "dns.response_in": "17473",
13448 "dns.id": "0x000004af",
13449 "dns.flags": "0x00000100",
13450 "dns.flags_tree": {
13451 "dns.flags.response": "0",
13452 "dns.flags.opcode": "0",
13453 "dns.flags.truncated": "0",
13454 "dns.flags.recdesired": "1",
13455 "dns.flags.z": "0",
13456 "dns.flags.checkdisable": "0"
13458 "dns.count.queries": "1",
13459 "dns.count.answers": "0",
13460 "dns.count.auth_rr": "0",
13461 "dns.count.add_rr": "0",
13463 "www2.meethue.com: type A, class IN": {
13464 "dns.qry.name": "www2.meethue.com",
13465 "dns.qry.name.len": "16",
13466 "dns.count.labels": "3",
13467 "dns.qry.type": "1",
13468 "dns.qry.class": "0x00000001"
13477 "_index": "packets-2017-10-26",
13478 "_type": "pcap_file",
13483 "frame.encap_type": "1",
13484 "frame.time": "Oct 19, 2017 21:52:52.456608000 PDT",
13485 "frame.offset_shift": "0.000000000",
13486 "frame.time_epoch": "1508475172.456608000",
13487 "frame.time_delta": "0.006300000",
13488 "frame.time_delta_displayed": "0.006300000",
13489 "frame.time_relative": "17460.051404000",
13490 "frame.number": "17473",
13491 "frame.len": "513",
13492 "frame.cap_len": "513",
13493 "frame.marked": "0",
13494 "frame.ignored": "0",
13495 "frame.protocols": "eth:ethertype:ip:udp:dns",
13496 "frame.coloring_rule.name": "UDP",
13497 "frame.coloring_rule.string": "udp"
13500 "eth.dst": "00:17:88:69:ee:e4",
13502 "eth.dst_resolved": "PhilipsL_69:ee:e4",
13503 "eth.addr": "00:17:88:69:ee:e4",
13504 "eth.addr_resolved": "PhilipsL_69:ee:e4",
13508 "eth.src": "b0:b9:8a:73:69:8e",
13510 "eth.src_resolved": "Netgear_73:69:8e",
13511 "eth.addr": "b0:b9:8a:73:69:8e",
13512 "eth.addr_resolved": "Netgear_73:69:8e",
13516 "eth.type": "0x00000800"
13520 "ip.hdr_len": "20",
13521 "ip.dsfield": "0x00000000",
13522 "ip.dsfield_tree": {
13523 "ip.dsfield.dscp": "0",
13524 "ip.dsfield.ecn": "0"
13527 "ip.id": "0x000011ad",
13528 "ip.flags": "0x00000002",
13530 "ip.flags.rb": "0",
13531 "ip.flags.df": "1",
13534 "ip.frag_offset": "0",
13537 "ip.checksum": "0x0000a55b",
13538 "ip.checksum.status": "2",
13539 "ip.src": "192.168.0.1",
13540 "ip.addr": "192.168.0.1",
13541 "ip.src_host": "192.168.0.1",
13542 "ip.host": "192.168.0.1",
13543 "ip.dst": "192.168.0.160",
13544 "ip.addr": "192.168.0.160",
13545 "ip.dst_host": "192.168.0.160",
13546 "ip.host": "192.168.0.160",
13547 "Source GeoIP: Unknown": "",
13548 "Destination GeoIP: Unknown": ""
13551 "udp.srcport": "53",
13552 "udp.dstport": "58502",
13554 "udp.port": "58502",
13555 "udp.length": "479",
13556 "udp.checksum": "0x000083e2",
13557 "udp.checksum.status": "2",
13558 "udp.stream": "229"
13561 "dns.response_to": "17472",
13562 "dns.time": "0.006300000",
13563 "dns.id": "0x000004af",
13564 "dns.flags": "0x00008180",
13565 "dns.flags_tree": {
13566 "dns.flags.response": "1",
13567 "dns.flags.opcode": "0",
13568 "dns.flags.authoritative": "0",
13569 "dns.flags.truncated": "0",
13570 "dns.flags.recdesired": "1",
13571 "dns.flags.recavail": "1",
13572 "dns.flags.z": "0",
13573 "dns.flags.authenticated": "0",
13574 "dns.flags.checkdisable": "0",
13575 "dns.flags.rcode": "0"
13577 "dns.count.queries": "1",
13578 "dns.count.answers": "4",
13579 "dns.count.auth_rr": "9",
13580 "dns.count.add_rr": "9",
13582 "www2.meethue.com: type A, class IN": {
13583 "dns.qry.name": "www2.meethue.com",
13584 "dns.qry.name.len": "16",
13585 "dns.count.labels": "3",
13586 "dns.qry.type": "1",
13587 "dns.qry.class": "0x00000001"
13591 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
13592 "dns.resp.name": "www2.meethue.com",
13593 "dns.resp.type": "5",
13594 "dns.resp.class": "0x00000001",
13595 "dns.resp.ttl": "142",
13596 "dns.resp.len": "41",
13597 "dns.cname": "brands.lighting.philips.com.edgekey.net"
13599 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
13600 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
13601 "dns.resp.type": "5",
13602 "dns.resp.class": "0x00000001",
13603 "dns.resp.ttl": "19458",
13604 "dns.resp.len": "22",
13605 "dns.cname": "e15361.b.akamaiedge.net"
13607 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
13608 "dns.resp.name": "e15361.b.akamaiedge.net",
13609 "dns.resp.type": "1",
13610 "dns.resp.class": "0x00000001",
13611 "dns.resp.ttl": "20",
13612 "dns.resp.len": "4",
13613 "dns.a": "173.223.52.112"
13615 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
13616 "dns.resp.name": "e15361.b.akamaiedge.net",
13617 "dns.resp.type": "1",
13618 "dns.resp.class": "0x00000001",
13619 "dns.resp.ttl": "20",
13620 "dns.resp.len": "4",
13621 "dns.a": "173.223.52.125"
13624 "Authoritative nameservers": {
13625 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
13626 "dns.resp.name": "b.akamaiedge.net",
13627 "dns.resp.type": "2",
13628 "dns.resp.class": "0x00000001",
13629 "dns.resp.ttl": "2474",
13630 "dns.resp.len": "6",
13631 "dns.ns": "n0b.akamaiedge.net"
13633 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
13634 "dns.resp.name": "b.akamaiedge.net",
13635 "dns.resp.type": "2",
13636 "dns.resp.class": "0x00000001",
13637 "dns.resp.ttl": "2474",
13638 "dns.resp.len": "6",
13639 "dns.ns": "n1b.akamaiedge.net"
13641 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
13642 "dns.resp.name": "b.akamaiedge.net",
13643 "dns.resp.type": "2",
13644 "dns.resp.class": "0x00000001",
13645 "dns.resp.ttl": "2474",
13646 "dns.resp.len": "6",
13647 "dns.ns": "n6b.akamaiedge.net"
13649 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
13650 "dns.resp.name": "b.akamaiedge.net",
13651 "dns.resp.type": "2",
13652 "dns.resp.class": "0x00000001",
13653 "dns.resp.ttl": "2474",
13654 "dns.resp.len": "6",
13655 "dns.ns": "n3b.akamaiedge.net"
13657 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
13658 "dns.resp.name": "b.akamaiedge.net",
13659 "dns.resp.type": "2",
13660 "dns.resp.class": "0x00000001",
13661 "dns.resp.ttl": "2474",
13662 "dns.resp.len": "6",
13663 "dns.ns": "n2b.akamaiedge.net"
13665 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
13666 "dns.resp.name": "b.akamaiedge.net",
13667 "dns.resp.type": "2",
13668 "dns.resp.class": "0x00000001",
13669 "dns.resp.ttl": "2474",
13670 "dns.resp.len": "6",
13671 "dns.ns": "a0b.akamaiedge.net"
13673 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
13674 "dns.resp.name": "b.akamaiedge.net",
13675 "dns.resp.type": "2",
13676 "dns.resp.class": "0x00000001",
13677 "dns.resp.ttl": "2474",
13678 "dns.resp.len": "6",
13679 "dns.ns": "n5b.akamaiedge.net"
13681 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
13682 "dns.resp.name": "b.akamaiedge.net",
13683 "dns.resp.type": "2",
13684 "dns.resp.class": "0x00000001",
13685 "dns.resp.ttl": "2474",
13686 "dns.resp.len": "6",
13687 "dns.ns": "n7b.akamaiedge.net"
13689 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
13690 "dns.resp.name": "b.akamaiedge.net",
13691 "dns.resp.type": "2",
13692 "dns.resp.class": "0x00000001",
13693 "dns.resp.ttl": "2474",
13694 "dns.resp.len": "6",
13695 "dns.ns": "n4b.akamaiedge.net"
13698 "Additional records": {
13699 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
13700 "dns.resp.name": "n0b.akamaiedge.net",
13701 "dns.resp.type": "1",
13702 "dns.resp.class": "0x00000001",
13703 "dns.resp.ttl": "999",
13704 "dns.resp.len": "4",
13705 "dns.a": "88.221.81.192"
13707 "n1b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
13708 "dns.resp.name": "n1b.akamaiedge.net",
13709 "dns.resp.type": "1",
13710 "dns.resp.class": "0x00000001",
13711 "dns.resp.ttl": "5539",
13712 "dns.resp.len": "4",
13713 "dns.a": "198.172.88.208"
13715 "n2b.akamaiedge.net: type A, class IN, addr 173.197.192.233": {
13716 "dns.resp.name": "n2b.akamaiedge.net",
13717 "dns.resp.type": "1",
13718 "dns.resp.class": "0x00000001",
13719 "dns.resp.ttl": "314",
13720 "dns.resp.len": "4",
13721 "dns.a": "173.197.192.233"
13723 "n3b.akamaiedge.net: type A, class IN, addr 173.197.192.229": {
13724 "dns.resp.name": "n3b.akamaiedge.net",
13725 "dns.resp.type": "1",
13726 "dns.resp.class": "0x00000001",
13727 "dns.resp.ttl": "378",
13728 "dns.resp.len": "4",
13729 "dns.a": "173.197.192.229"
13731 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.203": {
13732 "dns.resp.name": "n4b.akamaiedge.net",
13733 "dns.resp.type": "1",
13734 "dns.resp.class": "0x00000001",
13735 "dns.resp.ttl": "786",
13736 "dns.resp.len": "4",
13737 "dns.a": "198.172.88.203"
13739 "n5b.akamaiedge.net: type A, class IN, addr 198.172.88.203": {
13740 "dns.resp.name": "n5b.akamaiedge.net",
13741 "dns.resp.type": "1",
13742 "dns.resp.class": "0x00000001",
13743 "dns.resp.ttl": "5342",
13744 "dns.resp.len": "4",
13745 "dns.a": "198.172.88.203"
13747 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.95": {
13748 "dns.resp.name": "n6b.akamaiedge.net",
13749 "dns.resp.type": "1",
13750 "dns.resp.class": "0x00000001",
13751 "dns.resp.ttl": "921",
13752 "dns.resp.len": "4",
13753 "dns.a": "165.254.16.95"
13755 "n7b.akamaiedge.net: type A, class IN, addr 198.172.88.205": {
13756 "dns.resp.name": "n7b.akamaiedge.net",
13757 "dns.resp.type": "1",
13758 "dns.resp.class": "0x00000001",
13759 "dns.resp.ttl": "5027",
13760 "dns.resp.len": "4",
13761 "dns.a": "198.172.88.205"
13763 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
13764 "dns.resp.name": "a0b.akamaiedge.net",
13765 "dns.resp.type": "28",
13766 "dns.resp.class": "0x00000001",
13767 "dns.resp.ttl": "1477",
13768 "dns.resp.len": "16",
13769 "dns.aaaa": "2600:1480:e800::c0"
13778 "_index": "packets-2017-10-26",
13779 "_type": "pcap_file",
13784 "frame.encap_type": "1",
13785 "frame.time": "Oct 19, 2017 22:07:52.464775000 PDT",
13786 "frame.offset_shift": "0.000000000",
13787 "frame.time_epoch": "1508476072.464775000",
13788 "frame.time_delta": "4.206559000",
13789 "frame.time_delta_displayed": "900.008167000",
13790 "frame.time_relative": "18360.059571000",
13791 "frame.number": "18263",
13793 "frame.cap_len": "76",
13794 "frame.marked": "0",
13795 "frame.ignored": "0",
13796 "frame.protocols": "eth:ethertype:ip:udp:dns",
13797 "frame.coloring_rule.name": "UDP",
13798 "frame.coloring_rule.string": "udp"
13801 "eth.dst": "b0:b9:8a:73:69:8e",
13803 "eth.dst_resolved": "Netgear_73:69:8e",
13804 "eth.addr": "b0:b9:8a:73:69:8e",
13805 "eth.addr_resolved": "Netgear_73:69:8e",
13809 "eth.src": "00:17:88:69:ee:e4",
13811 "eth.src_resolved": "PhilipsL_69:ee:e4",
13812 "eth.addr": "00:17:88:69:ee:e4",
13813 "eth.addr_resolved": "PhilipsL_69:ee:e4",
13817 "eth.type": "0x00000800"
13821 "ip.hdr_len": "20",
13822 "ip.dsfield": "0x00000000",
13823 "ip.dsfield_tree": {
13824 "ip.dsfield.dscp": "0",
13825 "ip.dsfield.ecn": "0"
13828 "ip.id": "0x00005c8a",
13829 "ip.flags": "0x00000002",
13831 "ip.flags.rb": "0",
13832 "ip.flags.df": "1",
13835 "ip.frag_offset": "0",
13838 "ip.checksum": "0x00005c33",
13839 "ip.checksum.status": "2",
13840 "ip.src": "192.168.0.160",
13841 "ip.addr": "192.168.0.160",
13842 "ip.src_host": "192.168.0.160",
13843 "ip.host": "192.168.0.160",
13844 "ip.dst": "192.168.0.1",
13845 "ip.addr": "192.168.0.1",
13846 "ip.dst_host": "192.168.0.1",
13847 "ip.host": "192.168.0.1",
13848 "Source GeoIP: Unknown": "",
13849 "Destination GeoIP: Unknown": ""
13852 "udp.srcport": "58930",
13853 "udp.dstport": "53",
13854 "udp.port": "58930",
13856 "udp.length": "42",
13857 "udp.checksum": "0x000072d5",
13858 "udp.checksum.status": "2",
13859 "udp.stream": "235"
13862 "dns.response_in": "18264",
13863 "dns.id": "0x000004b0",
13864 "dns.flags": "0x00000100",
13865 "dns.flags_tree": {
13866 "dns.flags.response": "0",
13867 "dns.flags.opcode": "0",
13868 "dns.flags.truncated": "0",
13869 "dns.flags.recdesired": "1",
13870 "dns.flags.z": "0",
13871 "dns.flags.checkdisable": "0"
13873 "dns.count.queries": "1",
13874 "dns.count.answers": "0",
13875 "dns.count.auth_rr": "0",
13876 "dns.count.add_rr": "0",
13878 "www2.meethue.com: type A, class IN": {
13879 "dns.qry.name": "www2.meethue.com",
13880 "dns.qry.name.len": "16",
13881 "dns.count.labels": "3",
13882 "dns.qry.type": "1",
13883 "dns.qry.class": "0x00000001"
13892 "_index": "packets-2017-10-26",
13893 "_type": "pcap_file",
13898 "frame.encap_type": "1",
13899 "frame.time": "Oct 19, 2017 22:07:52.473763000 PDT",
13900 "frame.offset_shift": "0.000000000",
13901 "frame.time_epoch": "1508476072.473763000",
13902 "frame.time_delta": "0.008988000",
13903 "frame.time_delta_displayed": "0.008988000",
13904 "frame.time_relative": "18360.068559000",
13905 "frame.number": "18264",
13906 "frame.len": "513",
13907 "frame.cap_len": "513",
13908 "frame.marked": "0",
13909 "frame.ignored": "0",
13910 "frame.protocols": "eth:ethertype:ip:udp:dns",
13911 "frame.coloring_rule.name": "UDP",
13912 "frame.coloring_rule.string": "udp"
13915 "eth.dst": "00:17:88:69:ee:e4",
13917 "eth.dst_resolved": "PhilipsL_69:ee:e4",
13918 "eth.addr": "00:17:88:69:ee:e4",
13919 "eth.addr_resolved": "PhilipsL_69:ee:e4",
13923 "eth.src": "b0:b9:8a:73:69:8e",
13925 "eth.src_resolved": "Netgear_73:69:8e",
13926 "eth.addr": "b0:b9:8a:73:69:8e",
13927 "eth.addr_resolved": "Netgear_73:69:8e",
13931 "eth.type": "0x00000800"
13935 "ip.hdr_len": "20",
13936 "ip.dsfield": "0x00000000",
13937 "ip.dsfield_tree": {
13938 "ip.dsfield.dscp": "0",
13939 "ip.dsfield.ecn": "0"
13942 "ip.id": "0x000052f7",
13943 "ip.flags": "0x00000002",
13945 "ip.flags.rb": "0",
13946 "ip.flags.df": "1",
13949 "ip.frag_offset": "0",
13952 "ip.checksum": "0x00006411",
13953 "ip.checksum.status": "2",
13954 "ip.src": "192.168.0.1",
13955 "ip.addr": "192.168.0.1",
13956 "ip.src_host": "192.168.0.1",
13957 "ip.host": "192.168.0.1",
13958 "ip.dst": "192.168.0.160",
13959 "ip.addr": "192.168.0.160",
13960 "ip.dst_host": "192.168.0.160",
13961 "ip.host": "192.168.0.160",
13962 "Source GeoIP: Unknown": "",
13963 "Destination GeoIP: Unknown": ""
13966 "udp.srcport": "53",
13967 "udp.dstport": "58930",
13969 "udp.port": "58930",
13970 "udp.length": "479",
13971 "udp.checksum": "0x000083e2",
13972 "udp.checksum.status": "2",
13973 "udp.stream": "235"
13976 "dns.response_to": "18263",
13977 "dns.time": "0.008988000",
13978 "dns.id": "0x000004b0",
13979 "dns.flags": "0x00008180",
13980 "dns.flags_tree": {
13981 "dns.flags.response": "1",
13982 "dns.flags.opcode": "0",
13983 "dns.flags.authoritative": "0",
13984 "dns.flags.truncated": "0",
13985 "dns.flags.recdesired": "1",
13986 "dns.flags.recavail": "1",
13987 "dns.flags.z": "0",
13988 "dns.flags.authenticated": "0",
13989 "dns.flags.checkdisable": "0",
13990 "dns.flags.rcode": "0"
13992 "dns.count.queries": "1",
13993 "dns.count.answers": "4",
13994 "dns.count.auth_rr": "9",
13995 "dns.count.add_rr": "9",
13997 "www2.meethue.com: type A, class IN": {
13998 "dns.qry.name": "www2.meethue.com",
13999 "dns.qry.name.len": "16",
14000 "dns.count.labels": "3",
14001 "dns.qry.type": "1",
14002 "dns.qry.class": "0x00000001"
14006 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
14007 "dns.resp.name": "www2.meethue.com",
14008 "dns.resp.type": "5",
14009 "dns.resp.class": "0x00000001",
14010 "dns.resp.ttl": "142",
14011 "dns.resp.len": "41",
14012 "dns.cname": "brands.lighting.philips.com.edgekey.net"
14014 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
14015 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
14016 "dns.resp.type": "5",
14017 "dns.resp.class": "0x00000001",
14018 "dns.resp.ttl": "18558",
14019 "dns.resp.len": "22",
14020 "dns.cname": "e15361.b.akamaiedge.net"
14022 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
14023 "dns.resp.name": "e15361.b.akamaiedge.net",
14024 "dns.resp.type": "1",
14025 "dns.resp.class": "0x00000001",
14026 "dns.resp.ttl": "20",
14027 "dns.resp.len": "4",
14028 "dns.a": "173.223.52.112"
14030 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
14031 "dns.resp.name": "e15361.b.akamaiedge.net",
14032 "dns.resp.type": "1",
14033 "dns.resp.class": "0x00000001",
14034 "dns.resp.ttl": "20",
14035 "dns.resp.len": "4",
14036 "dns.a": "173.223.52.125"
14039 "Authoritative nameservers": {
14040 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
14041 "dns.resp.name": "b.akamaiedge.net",
14042 "dns.resp.type": "2",
14043 "dns.resp.class": "0x00000001",
14044 "dns.resp.ttl": "1574",
14045 "dns.resp.len": "6",
14046 "dns.ns": "a0b.akamaiedge.net"
14048 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
14049 "dns.resp.name": "b.akamaiedge.net",
14050 "dns.resp.type": "2",
14051 "dns.resp.class": "0x00000001",
14052 "dns.resp.ttl": "1574",
14053 "dns.resp.len": "6",
14054 "dns.ns": "n2b.akamaiedge.net"
14056 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
14057 "dns.resp.name": "b.akamaiedge.net",
14058 "dns.resp.type": "2",
14059 "dns.resp.class": "0x00000001",
14060 "dns.resp.ttl": "1574",
14061 "dns.resp.len": "6",
14062 "dns.ns": "n0b.akamaiedge.net"
14064 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
14065 "dns.resp.name": "b.akamaiedge.net",
14066 "dns.resp.type": "2",
14067 "dns.resp.class": "0x00000001",
14068 "dns.resp.ttl": "1574",
14069 "dns.resp.len": "6",
14070 "dns.ns": "n7b.akamaiedge.net"
14072 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
14073 "dns.resp.name": "b.akamaiedge.net",
14074 "dns.resp.type": "2",
14075 "dns.resp.class": "0x00000001",
14076 "dns.resp.ttl": "1574",
14077 "dns.resp.len": "6",
14078 "dns.ns": "n3b.akamaiedge.net"
14080 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
14081 "dns.resp.name": "b.akamaiedge.net",
14082 "dns.resp.type": "2",
14083 "dns.resp.class": "0x00000001",
14084 "dns.resp.ttl": "1574",
14085 "dns.resp.len": "6",
14086 "dns.ns": "n6b.akamaiedge.net"
14088 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
14089 "dns.resp.name": "b.akamaiedge.net",
14090 "dns.resp.type": "2",
14091 "dns.resp.class": "0x00000001",
14092 "dns.resp.ttl": "1574",
14093 "dns.resp.len": "6",
14094 "dns.ns": "n5b.akamaiedge.net"
14096 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
14097 "dns.resp.name": "b.akamaiedge.net",
14098 "dns.resp.type": "2",
14099 "dns.resp.class": "0x00000001",
14100 "dns.resp.ttl": "1574",
14101 "dns.resp.len": "6",
14102 "dns.ns": "n1b.akamaiedge.net"
14104 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
14105 "dns.resp.name": "b.akamaiedge.net",
14106 "dns.resp.type": "2",
14107 "dns.resp.class": "0x00000001",
14108 "dns.resp.ttl": "1574",
14109 "dns.resp.len": "6",
14110 "dns.ns": "n4b.akamaiedge.net"
14113 "Additional records": {
14114 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
14115 "dns.resp.name": "n0b.akamaiedge.net",
14116 "dns.resp.type": "1",
14117 "dns.resp.class": "0x00000001",
14118 "dns.resp.ttl": "99",
14119 "dns.resp.len": "4",
14120 "dns.a": "88.221.81.192"
14122 "n1b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
14123 "dns.resp.name": "n1b.akamaiedge.net",
14124 "dns.resp.type": "1",
14125 "dns.resp.class": "0x00000001",
14126 "dns.resp.ttl": "4639",
14127 "dns.resp.len": "4",
14128 "dns.a": "198.172.88.208"
14130 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
14131 "dns.resp.name": "n2b.akamaiedge.net",
14132 "dns.resp.type": "1",
14133 "dns.resp.class": "0x00000001",
14134 "dns.resp.ttl": "7415",
14135 "dns.resp.len": "4",
14136 "dns.a": "173.223.52.108"
14138 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.129": {
14139 "dns.resp.name": "n3b.akamaiedge.net",
14140 "dns.resp.type": "1",
14141 "dns.resp.class": "0x00000001",
14142 "dns.resp.ttl": "3479",
14143 "dns.resp.len": "4",
14144 "dns.a": "173.223.52.129"
14146 "n4b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
14147 "dns.resp.name": "n4b.akamaiedge.net",
14148 "dns.resp.type": "1",
14149 "dns.resp.class": "0x00000001",
14150 "dns.resp.ttl": "5887",
14151 "dns.resp.len": "4",
14152 "dns.a": "173.223.52.70"
14154 "n5b.akamaiedge.net: type A, class IN, addr 198.172.88.203": {
14155 "dns.resp.name": "n5b.akamaiedge.net",
14156 "dns.resp.type": "1",
14157 "dns.resp.class": "0x00000001",
14158 "dns.resp.ttl": "4442",
14159 "dns.resp.len": "4",
14160 "dns.a": "198.172.88.203"
14162 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.95": {
14163 "dns.resp.name": "n6b.akamaiedge.net",
14164 "dns.resp.type": "1",
14165 "dns.resp.class": "0x00000001",
14166 "dns.resp.ttl": "21",
14167 "dns.resp.len": "4",
14168 "dns.a": "165.254.16.95"
14170 "n7b.akamaiedge.net: type A, class IN, addr 198.172.88.205": {
14171 "dns.resp.name": "n7b.akamaiedge.net",
14172 "dns.resp.type": "1",
14173 "dns.resp.class": "0x00000001",
14174 "dns.resp.ttl": "4127",
14175 "dns.resp.len": "4",
14176 "dns.a": "198.172.88.205"
14178 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
14179 "dns.resp.name": "a0b.akamaiedge.net",
14180 "dns.resp.type": "28",
14181 "dns.resp.class": "0x00000001",
14182 "dns.resp.ttl": "577",
14183 "dns.resp.len": "16",
14184 "dns.aaaa": "2600:1480:e800::c0"
14193 "_index": "packets-2017-10-26",
14194 "_type": "pcap_file",
14199 "frame.encap_type": "1",
14200 "frame.time": "Oct 19, 2017 22:22:52.482011000 PDT",
14201 "frame.offset_shift": "0.000000000",
14202 "frame.time_epoch": "1508476972.482011000",
14203 "frame.time_delta": "2.079982000",
14204 "frame.time_delta_displayed": "900.008248000",
14205 "frame.time_relative": "19260.076807000",
14206 "frame.number": "19082",
14208 "frame.cap_len": "76",
14209 "frame.marked": "0",
14210 "frame.ignored": "0",
14211 "frame.protocols": "eth:ethertype:ip:udp:dns",
14212 "frame.coloring_rule.name": "UDP",
14213 "frame.coloring_rule.string": "udp"
14216 "eth.dst": "b0:b9:8a:73:69:8e",
14218 "eth.dst_resolved": "Netgear_73:69:8e",
14219 "eth.addr": "b0:b9:8a:73:69:8e",
14220 "eth.addr_resolved": "Netgear_73:69:8e",
14224 "eth.src": "00:17:88:69:ee:e4",
14226 "eth.src_resolved": "PhilipsL_69:ee:e4",
14227 "eth.addr": "00:17:88:69:ee:e4",
14228 "eth.addr_resolved": "PhilipsL_69:ee:e4",
14232 "eth.type": "0x00000800"
14236 "ip.hdr_len": "20",
14237 "ip.dsfield": "0x00000000",
14238 "ip.dsfield_tree": {
14239 "ip.dsfield.dscp": "0",
14240 "ip.dsfield.ecn": "0"
14243 "ip.id": "0x00007f92",
14244 "ip.flags": "0x00000002",
14246 "ip.flags.rb": "0",
14247 "ip.flags.df": "1",
14250 "ip.frag_offset": "0",
14253 "ip.checksum": "0x0000392b",
14254 "ip.checksum.status": "2",
14255 "ip.src": "192.168.0.160",
14256 "ip.addr": "192.168.0.160",
14257 "ip.src_host": "192.168.0.160",
14258 "ip.host": "192.168.0.160",
14259 "ip.dst": "192.168.0.1",
14260 "ip.addr": "192.168.0.1",
14261 "ip.dst_host": "192.168.0.1",
14262 "ip.host": "192.168.0.1",
14263 "Source GeoIP: Unknown": "",
14264 "Destination GeoIP: Unknown": ""
14267 "udp.srcport": "48250",
14268 "udp.dstport": "53",
14269 "udp.port": "48250",
14271 "udp.length": "42",
14272 "udp.checksum": "0x00009c8c",
14273 "udp.checksum.status": "2",
14274 "udp.stream": "242"
14277 "dns.response_in": "19083",
14278 "dns.id": "0x000004b1",
14279 "dns.flags": "0x00000100",
14280 "dns.flags_tree": {
14281 "dns.flags.response": "0",
14282 "dns.flags.opcode": "0",
14283 "dns.flags.truncated": "0",
14284 "dns.flags.recdesired": "1",
14285 "dns.flags.z": "0",
14286 "dns.flags.checkdisable": "0"
14288 "dns.count.queries": "1",
14289 "dns.count.answers": "0",
14290 "dns.count.auth_rr": "0",
14291 "dns.count.add_rr": "0",
14293 "www2.meethue.com: type A, class IN": {
14294 "dns.qry.name": "www2.meethue.com",
14295 "dns.qry.name.len": "16",
14296 "dns.count.labels": "3",
14297 "dns.qry.type": "1",
14298 "dns.qry.class": "0x00000001"
14307 "_index": "packets-2017-10-26",
14308 "_type": "pcap_file",
14313 "frame.encap_type": "1",
14314 "frame.time": "Oct 19, 2017 22:22:52.488375000 PDT",
14315 "frame.offset_shift": "0.000000000",
14316 "frame.time_epoch": "1508476972.488375000",
14317 "frame.time_delta": "0.006364000",
14318 "frame.time_delta_displayed": "0.006364000",
14319 "frame.time_relative": "19260.083171000",
14320 "frame.number": "19083",
14321 "frame.len": "513",
14322 "frame.cap_len": "513",
14323 "frame.marked": "0",
14324 "frame.ignored": "0",
14325 "frame.protocols": "eth:ethertype:ip:udp:dns",
14326 "frame.coloring_rule.name": "UDP",
14327 "frame.coloring_rule.string": "udp"
14330 "eth.dst": "00:17:88:69:ee:e4",
14332 "eth.dst_resolved": "PhilipsL_69:ee:e4",
14333 "eth.addr": "00:17:88:69:ee:e4",
14334 "eth.addr_resolved": "PhilipsL_69:ee:e4",
14338 "eth.src": "b0:b9:8a:73:69:8e",
14340 "eth.src_resolved": "Netgear_73:69:8e",
14341 "eth.addr": "b0:b9:8a:73:69:8e",
14342 "eth.addr_resolved": "Netgear_73:69:8e",
14346 "eth.type": "0x00000800"
14350 "ip.hdr_len": "20",
14351 "ip.dsfield": "0x00000000",
14352 "ip.dsfield_tree": {
14353 "ip.dsfield.dscp": "0",
14354 "ip.dsfield.ecn": "0"
14357 "ip.id": "0x000024f5",
14358 "ip.flags": "0x00000002",
14360 "ip.flags.rb": "0",
14361 "ip.flags.df": "1",
14364 "ip.frag_offset": "0",
14367 "ip.checksum": "0x00009213",
14368 "ip.checksum.status": "2",
14369 "ip.src": "192.168.0.1",
14370 "ip.addr": "192.168.0.1",
14371 "ip.src_host": "192.168.0.1",
14372 "ip.host": "192.168.0.1",
14373 "ip.dst": "192.168.0.160",
14374 "ip.addr": "192.168.0.160",
14375 "ip.dst_host": "192.168.0.160",
14376 "ip.host": "192.168.0.160",
14377 "Source GeoIP: Unknown": "",
14378 "Destination GeoIP: Unknown": ""
14381 "udp.srcport": "53",
14382 "udp.dstport": "48250",
14384 "udp.port": "48250",
14385 "udp.length": "479",
14386 "udp.checksum": "0x000083e2",
14387 "udp.checksum.status": "2",
14388 "udp.stream": "242"
14391 "dns.response_to": "19082",
14392 "dns.time": "0.006364000",
14393 "dns.id": "0x000004b1",
14394 "dns.flags": "0x00008180",
14395 "dns.flags_tree": {
14396 "dns.flags.response": "1",
14397 "dns.flags.opcode": "0",
14398 "dns.flags.authoritative": "0",
14399 "dns.flags.truncated": "0",
14400 "dns.flags.recdesired": "1",
14401 "dns.flags.recavail": "1",
14402 "dns.flags.z": "0",
14403 "dns.flags.authenticated": "0",
14404 "dns.flags.checkdisable": "0",
14405 "dns.flags.rcode": "0"
14407 "dns.count.queries": "1",
14408 "dns.count.answers": "4",
14409 "dns.count.auth_rr": "9",
14410 "dns.count.add_rr": "9",
14412 "www2.meethue.com: type A, class IN": {
14413 "dns.qry.name": "www2.meethue.com",
14414 "dns.qry.name.len": "16",
14415 "dns.count.labels": "3",
14416 "dns.qry.type": "1",
14417 "dns.qry.class": "0x00000001"
14421 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
14422 "dns.resp.name": "www2.meethue.com",
14423 "dns.resp.type": "5",
14424 "dns.resp.class": "0x00000001",
14425 "dns.resp.ttl": "143",
14426 "dns.resp.len": "41",
14427 "dns.cname": "brands.lighting.philips.com.edgekey.net"
14429 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
14430 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
14431 "dns.resp.type": "5",
14432 "dns.resp.class": "0x00000001",
14433 "dns.resp.ttl": "17658",
14434 "dns.resp.len": "22",
14435 "dns.cname": "e15361.b.akamaiedge.net"
14437 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
14438 "dns.resp.name": "e15361.b.akamaiedge.net",
14439 "dns.resp.type": "1",
14440 "dns.resp.class": "0x00000001",
14441 "dns.resp.ttl": "20",
14442 "dns.resp.len": "4",
14443 "dns.a": "173.223.52.112"
14445 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
14446 "dns.resp.name": "e15361.b.akamaiedge.net",
14447 "dns.resp.type": "1",
14448 "dns.resp.class": "0x00000001",
14449 "dns.resp.ttl": "20",
14450 "dns.resp.len": "4",
14451 "dns.a": "173.223.52.125"
14454 "Authoritative nameservers": {
14455 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
14456 "dns.resp.name": "b.akamaiedge.net",
14457 "dns.resp.type": "2",
14458 "dns.resp.class": "0x00000001",
14459 "dns.resp.ttl": "674",
14460 "dns.resp.len": "6",
14461 "dns.ns": "n1b.akamaiedge.net"
14463 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
14464 "dns.resp.name": "b.akamaiedge.net",
14465 "dns.resp.type": "2",
14466 "dns.resp.class": "0x00000001",
14467 "dns.resp.ttl": "674",
14468 "dns.resp.len": "6",
14469 "dns.ns": "a0b.akamaiedge.net"
14471 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
14472 "dns.resp.name": "b.akamaiedge.net",
14473 "dns.resp.type": "2",
14474 "dns.resp.class": "0x00000001",
14475 "dns.resp.ttl": "674",
14476 "dns.resp.len": "6",
14477 "dns.ns": "n2b.akamaiedge.net"
14479 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
14480 "dns.resp.name": "b.akamaiedge.net",
14481 "dns.resp.type": "2",
14482 "dns.resp.class": "0x00000001",
14483 "dns.resp.ttl": "674",
14484 "dns.resp.len": "6",
14485 "dns.ns": "n5b.akamaiedge.net"
14487 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
14488 "dns.resp.name": "b.akamaiedge.net",
14489 "dns.resp.type": "2",
14490 "dns.resp.class": "0x00000001",
14491 "dns.resp.ttl": "674",
14492 "dns.resp.len": "6",
14493 "dns.ns": "n7b.akamaiedge.net"
14495 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
14496 "dns.resp.name": "b.akamaiedge.net",
14497 "dns.resp.type": "2",
14498 "dns.resp.class": "0x00000001",
14499 "dns.resp.ttl": "674",
14500 "dns.resp.len": "6",
14501 "dns.ns": "n3b.akamaiedge.net"
14503 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
14504 "dns.resp.name": "b.akamaiedge.net",
14505 "dns.resp.type": "2",
14506 "dns.resp.class": "0x00000001",
14507 "dns.resp.ttl": "674",
14508 "dns.resp.len": "6",
14509 "dns.ns": "n6b.akamaiedge.net"
14511 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
14512 "dns.resp.name": "b.akamaiedge.net",
14513 "dns.resp.type": "2",
14514 "dns.resp.class": "0x00000001",
14515 "dns.resp.ttl": "674",
14516 "dns.resp.len": "6",
14517 "dns.ns": "n4b.akamaiedge.net"
14519 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
14520 "dns.resp.name": "b.akamaiedge.net",
14521 "dns.resp.type": "2",
14522 "dns.resp.class": "0x00000001",
14523 "dns.resp.ttl": "674",
14524 "dns.resp.len": "6",
14525 "dns.ns": "n0b.akamaiedge.net"
14528 "Additional records": {
14529 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
14530 "dns.resp.name": "n0b.akamaiedge.net",
14531 "dns.resp.type": "1",
14532 "dns.resp.class": "0x00000001",
14533 "dns.resp.ttl": "3200",
14534 "dns.resp.len": "4",
14535 "dns.a": "88.221.81.192"
14537 "n1b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
14538 "dns.resp.name": "n1b.akamaiedge.net",
14539 "dns.resp.type": "1",
14540 "dns.resp.class": "0x00000001",
14541 "dns.resp.ttl": "3739",
14542 "dns.resp.len": "4",
14543 "dns.a": "198.172.88.208"
14545 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
14546 "dns.resp.name": "n2b.akamaiedge.net",
14547 "dns.resp.type": "1",
14548 "dns.resp.class": "0x00000001",
14549 "dns.resp.ttl": "6515",
14550 "dns.resp.len": "4",
14551 "dns.a": "173.223.52.108"
14553 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.129": {
14554 "dns.resp.name": "n3b.akamaiedge.net",
14555 "dns.resp.type": "1",
14556 "dns.resp.class": "0x00000001",
14557 "dns.resp.ttl": "2579",
14558 "dns.resp.len": "4",
14559 "dns.a": "173.223.52.129"
14561 "n4b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
14562 "dns.resp.name": "n4b.akamaiedge.net",
14563 "dns.resp.type": "1",
14564 "dns.resp.class": "0x00000001",
14565 "dns.resp.ttl": "4987",
14566 "dns.resp.len": "4",
14567 "dns.a": "173.223.52.70"
14569 "n5b.akamaiedge.net: type A, class IN, addr 198.172.88.203": {
14570 "dns.resp.name": "n5b.akamaiedge.net",
14571 "dns.resp.type": "1",
14572 "dns.resp.class": "0x00000001",
14573 "dns.resp.ttl": "3542",
14574 "dns.resp.len": "4",
14575 "dns.a": "198.172.88.203"
14577 "n6b.akamaiedge.net: type A, class IN, addr 165.254.16.94": {
14578 "dns.resp.name": "n6b.akamaiedge.net",
14579 "dns.resp.type": "1",
14580 "dns.resp.class": "0x00000001",
14581 "dns.resp.ttl": "3122",
14582 "dns.resp.len": "4",
14583 "dns.a": "165.254.16.94"
14585 "n7b.akamaiedge.net: type A, class IN, addr 198.172.88.205": {
14586 "dns.resp.name": "n7b.akamaiedge.net",
14587 "dns.resp.type": "1",
14588 "dns.resp.class": "0x00000001",
14589 "dns.resp.ttl": "3227",
14590 "dns.resp.len": "4",
14591 "dns.a": "198.172.88.205"
14593 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
14594 "dns.resp.name": "a0b.akamaiedge.net",
14595 "dns.resp.type": "28",
14596 "dns.resp.class": "0x00000001",
14597 "dns.resp.ttl": "5678",
14598 "dns.resp.len": "16",
14599 "dns.aaaa": "2600:1480:e800::c0"
14608 "_index": "packets-2017-10-26",
14609 "_type": "pcap_file",
14614 "frame.encap_type": "1",
14615 "frame.time": "Oct 19, 2017 22:33:21.968209000 PDT",
14616 "frame.offset_shift": "0.000000000",
14617 "frame.time_epoch": "1508477601.968209000",
14618 "frame.time_delta": "2.368838000",
14619 "frame.time_delta_displayed": "629.479834000",
14620 "frame.time_relative": "19889.563005000",
14621 "frame.number": "19759",
14623 "frame.cap_len": "79",
14624 "frame.marked": "0",
14625 "frame.ignored": "0",
14626 "frame.protocols": "eth:ethertype:ip:udp:dns",
14627 "frame.coloring_rule.name": "UDP",
14628 "frame.coloring_rule.string": "udp"
14631 "eth.dst": "b0:b9:8a:73:69:8e",
14633 "eth.dst_resolved": "Netgear_73:69:8e",
14634 "eth.addr": "b0:b9:8a:73:69:8e",
14635 "eth.addr_resolved": "Netgear_73:69:8e",
14639 "eth.src": "00:17:88:69:ee:e4",
14641 "eth.src_resolved": "PhilipsL_69:ee:e4",
14642 "eth.addr": "00:17:88:69:ee:e4",
14643 "eth.addr_resolved": "PhilipsL_69:ee:e4",
14647 "eth.type": "0x00000800"
14651 "ip.hdr_len": "20",
14652 "ip.dsfield": "0x00000000",
14653 "ip.dsfield_tree": {
14654 "ip.dsfield.dscp": "0",
14655 "ip.dsfield.ecn": "0"
14658 "ip.id": "0x000048a9",
14659 "ip.flags": "0x00000002",
14661 "ip.flags.rb": "0",
14662 "ip.flags.df": "1",
14665 "ip.frag_offset": "0",
14668 "ip.checksum": "0x00007011",
14669 "ip.checksum.status": "2",
14670 "ip.src": "192.168.0.160",
14671 "ip.addr": "192.168.0.160",
14672 "ip.src_host": "192.168.0.160",
14673 "ip.host": "192.168.0.160",
14674 "ip.dst": "192.168.0.1",
14675 "ip.addr": "192.168.0.1",
14676 "ip.dst_host": "192.168.0.1",
14677 "ip.host": "192.168.0.1",
14678 "Source GeoIP: Unknown": "",
14679 "Destination GeoIP: Unknown": ""
14682 "udp.srcport": "48476",
14683 "udp.dstport": "53",
14684 "udp.port": "48476",
14686 "udp.length": "45",
14687 "udp.checksum": "0x0000032f",
14688 "udp.checksum.status": "2",
14689 "udp.stream": "248"
14692 "dns.response_in": "19760",
14693 "dns.id": "0x000004b2",
14694 "dns.flags": "0x00000100",
14695 "dns.flags_tree": {
14696 "dns.flags.response": "0",
14697 "dns.flags.opcode": "0",
14698 "dns.flags.truncated": "0",
14699 "dns.flags.recdesired": "1",
14700 "dns.flags.z": "0",
14701 "dns.flags.checkdisable": "0"
14703 "dns.count.queries": "1",
14704 "dns.count.answers": "0",
14705 "dns.count.auth_rr": "0",
14706 "dns.count.add_rr": "0",
14708 "dcp.cpp.philips.com: type AAAA, class IN": {
14709 "dns.qry.name": "dcp.cpp.philips.com",
14710 "dns.qry.name.len": "19",
14711 "dns.count.labels": "4",
14712 "dns.qry.type": "28",
14713 "dns.qry.class": "0x00000001"
14722 "_index": "packets-2017-10-26",
14723 "_type": "pcap_file",
14728 "frame.encap_type": "1",
14729 "frame.time": "Oct 19, 2017 22:33:21.970113000 PDT",
14730 "frame.offset_shift": "0.000000000",
14731 "frame.time_epoch": "1508477601.970113000",
14732 "frame.time_delta": "0.001904000",
14733 "frame.time_delta_displayed": "0.001904000",
14734 "frame.time_relative": "19889.564909000",
14735 "frame.number": "19760",
14736 "frame.len": "137",
14737 "frame.cap_len": "137",
14738 "frame.marked": "0",
14739 "frame.ignored": "0",
14740 "frame.protocols": "eth:ethertype:ip:udp:dns",
14741 "frame.coloring_rule.name": "UDP",
14742 "frame.coloring_rule.string": "udp"
14745 "eth.dst": "00:17:88:69:ee:e4",
14747 "eth.dst_resolved": "PhilipsL_69:ee:e4",
14748 "eth.addr": "00:17:88:69:ee:e4",
14749 "eth.addr_resolved": "PhilipsL_69:ee:e4",
14753 "eth.src": "b0:b9:8a:73:69:8e",
14755 "eth.src_resolved": "Netgear_73:69:8e",
14756 "eth.addr": "b0:b9:8a:73:69:8e",
14757 "eth.addr_resolved": "Netgear_73:69:8e",
14761 "eth.type": "0x00000800"
14765 "ip.hdr_len": "20",
14766 "ip.dsfield": "0x00000000",
14767 "ip.dsfield_tree": {
14768 "ip.dsfield.dscp": "0",
14769 "ip.dsfield.ecn": "0"
14772 "ip.id": "0x00006934",
14773 "ip.flags": "0x00000002",
14775 "ip.flags.rb": "0",
14776 "ip.flags.df": "1",
14779 "ip.frag_offset": "0",
14782 "ip.checksum": "0x00004f4c",
14783 "ip.checksum.status": "2",
14784 "ip.src": "192.168.0.1",
14785 "ip.addr": "192.168.0.1",
14786 "ip.src_host": "192.168.0.1",
14787 "ip.host": "192.168.0.1",
14788 "ip.dst": "192.168.0.160",
14789 "ip.addr": "192.168.0.160",
14790 "ip.dst_host": "192.168.0.160",
14791 "ip.host": "192.168.0.160",
14792 "Source GeoIP: Unknown": "",
14793 "Destination GeoIP: Unknown": ""
14796 "udp.srcport": "53",
14797 "udp.dstport": "48476",
14799 "udp.port": "48476",
14800 "udp.length": "103",
14801 "udp.checksum": "0x0000826a",
14802 "udp.checksum.status": "2",
14803 "udp.stream": "248"
14806 "dns.response_to": "19759",
14807 "dns.time": "0.001904000",
14808 "dns.id": "0x000004b2",
14809 "dns.flags": "0x00008180",
14810 "dns.flags_tree": {
14811 "dns.flags.response": "1",
14812 "dns.flags.opcode": "0",
14813 "dns.flags.authoritative": "0",
14814 "dns.flags.truncated": "0",
14815 "dns.flags.recdesired": "1",
14816 "dns.flags.recavail": "1",
14817 "dns.flags.z": "0",
14818 "dns.flags.authenticated": "0",
14819 "dns.flags.checkdisable": "0",
14820 "dns.flags.rcode": "0"
14822 "dns.count.queries": "1",
14823 "dns.count.answers": "0",
14824 "dns.count.auth_rr": "1",
14825 "dns.count.add_rr": "0",
14827 "dcp.cpp.philips.com: type AAAA, class IN": {
14828 "dns.qry.name": "dcp.cpp.philips.com",
14829 "dns.qry.name.len": "19",
14830 "dns.count.labels": "4",
14831 "dns.qry.type": "28",
14832 "dns.qry.class": "0x00000001"
14835 "Authoritative nameservers": {
14836 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
14837 "dns.resp.name": "cpp.philips.com",
14838 "dns.resp.type": "6",
14839 "dns.resp.class": "0x00000001",
14840 "dns.resp.ttl": "3220",
14841 "dns.resp.len": "46",
14842 "dns.soa.mname": "ns1.ext.philips.com",
14843 "dns.soa.rname": "ddi-authority.philips.com",
14844 "dns.soa.serial_number": "387",
14845 "dns.soa.refresh_interval": "1200",
14846 "dns.soa.retry_interval": "300",
14847 "dns.soa.expire_limit": "1209600",
14848 "dns.soa.mininum_ttl": "3600"
14857 "_index": "packets-2017-10-26",
14858 "_type": "pcap_file",
14863 "frame.encap_type": "1",
14864 "frame.time": "Oct 19, 2017 22:33:21.971590000 PDT",
14865 "frame.offset_shift": "0.000000000",
14866 "frame.time_epoch": "1508477601.971590000",
14867 "frame.time_delta": "0.001477000",
14868 "frame.time_delta_displayed": "0.001477000",
14869 "frame.time_relative": "19889.566386000",
14870 "frame.number": "19761",
14872 "frame.cap_len": "79",
14873 "frame.marked": "0",
14874 "frame.ignored": "0",
14875 "frame.protocols": "eth:ethertype:ip:udp:dns",
14876 "frame.coloring_rule.name": "UDP",
14877 "frame.coloring_rule.string": "udp"
14880 "eth.dst": "b0:b9:8a:73:69:8e",
14882 "eth.dst_resolved": "Netgear_73:69:8e",
14883 "eth.addr": "b0:b9:8a:73:69:8e",
14884 "eth.addr_resolved": "Netgear_73:69:8e",
14888 "eth.src": "00:17:88:69:ee:e4",
14890 "eth.src_resolved": "PhilipsL_69:ee:e4",
14891 "eth.addr": "00:17:88:69:ee:e4",
14892 "eth.addr_resolved": "PhilipsL_69:ee:e4",
14896 "eth.type": "0x00000800"
14900 "ip.hdr_len": "20",
14901 "ip.dsfield": "0x00000000",
14902 "ip.dsfield_tree": {
14903 "ip.dsfield.dscp": "0",
14904 "ip.dsfield.ecn": "0"
14907 "ip.id": "0x000048aa",
14908 "ip.flags": "0x00000002",
14910 "ip.flags.rb": "0",
14911 "ip.flags.df": "1",
14914 "ip.frag_offset": "0",
14917 "ip.checksum": "0x00007010",
14918 "ip.checksum.status": "2",
14919 "ip.src": "192.168.0.160",
14920 "ip.addr": "192.168.0.160",
14921 "ip.src_host": "192.168.0.160",
14922 "ip.host": "192.168.0.160",
14923 "ip.dst": "192.168.0.1",
14924 "ip.addr": "192.168.0.1",
14925 "ip.dst_host": "192.168.0.1",
14926 "ip.host": "192.168.0.1",
14927 "Source GeoIP: Unknown": "",
14928 "Destination GeoIP: Unknown": ""
14931 "udp.srcport": "60103",
14932 "udp.dstport": "53",
14933 "udp.port": "60103",
14935 "udp.length": "45",
14936 "udp.checksum": "0x0000f0c2",
14937 "udp.checksum.status": "2",
14938 "udp.stream": "249"
14941 "dns.response_in": "19762",
14942 "dns.id": "0x000004b3",
14943 "dns.flags": "0x00000100",
14944 "dns.flags_tree": {
14945 "dns.flags.response": "0",
14946 "dns.flags.opcode": "0",
14947 "dns.flags.truncated": "0",
14948 "dns.flags.recdesired": "1",
14949 "dns.flags.z": "0",
14950 "dns.flags.checkdisable": "0"
14952 "dns.count.queries": "1",
14953 "dns.count.answers": "0",
14954 "dns.count.auth_rr": "0",
14955 "dns.count.add_rr": "0",
14957 "dcp.cpp.philips.com: type A, class IN": {
14958 "dns.qry.name": "dcp.cpp.philips.com",
14959 "dns.qry.name.len": "19",
14960 "dns.count.labels": "4",
14961 "dns.qry.type": "1",
14962 "dns.qry.class": "0x00000001"
14971 "_index": "packets-2017-10-26",
14972 "_type": "pcap_file",
14977 "frame.encap_type": "1",
14978 "frame.time": "Oct 19, 2017 22:33:21.973429000 PDT",
14979 "frame.offset_shift": "0.000000000",
14980 "frame.time_epoch": "1508477601.973429000",
14981 "frame.time_delta": "0.001839000",
14982 "frame.time_delta_displayed": "0.001839000",
14983 "frame.time_relative": "19889.568225000",
14984 "frame.number": "19762",
14985 "frame.len": "269",
14986 "frame.cap_len": "269",
14987 "frame.marked": "0",
14988 "frame.ignored": "0",
14989 "frame.protocols": "eth:ethertype:ip:udp:dns",
14990 "frame.coloring_rule.name": "UDP",
14991 "frame.coloring_rule.string": "udp"
14994 "eth.dst": "00:17:88:69:ee:e4",
14996 "eth.dst_resolved": "PhilipsL_69:ee:e4",
14997 "eth.addr": "00:17:88:69:ee:e4",
14998 "eth.addr_resolved": "PhilipsL_69:ee:e4",
15002 "eth.src": "b0:b9:8a:73:69:8e",
15004 "eth.src_resolved": "Netgear_73:69:8e",
15005 "eth.addr": "b0:b9:8a:73:69:8e",
15006 "eth.addr_resolved": "Netgear_73:69:8e",
15010 "eth.type": "0x00000800"
15014 "ip.hdr_len": "20",
15015 "ip.dsfield": "0x00000000",
15016 "ip.dsfield_tree": {
15017 "ip.dsfield.dscp": "0",
15018 "ip.dsfield.ecn": "0"
15021 "ip.id": "0x00006935",
15022 "ip.flags": "0x00000002",
15024 "ip.flags.rb": "0",
15025 "ip.flags.df": "1",
15028 "ip.frag_offset": "0",
15031 "ip.checksum": "0x00004ec7",
15032 "ip.checksum.status": "2",
15033 "ip.src": "192.168.0.1",
15034 "ip.addr": "192.168.0.1",
15035 "ip.src_host": "192.168.0.1",
15036 "ip.host": "192.168.0.1",
15037 "ip.dst": "192.168.0.160",
15038 "ip.addr": "192.168.0.160",
15039 "ip.dst_host": "192.168.0.160",
15040 "ip.host": "192.168.0.160",
15041 "Source GeoIP: Unknown": "",
15042 "Destination GeoIP: Unknown": ""
15045 "udp.srcport": "53",
15046 "udp.dstport": "60103",
15048 "udp.port": "60103",
15049 "udp.length": "235",
15050 "udp.checksum": "0x000082ee",
15051 "udp.checksum.status": "2",
15052 "udp.stream": "249"
15055 "dns.response_to": "19761",
15056 "dns.time": "0.001839000",
15057 "dns.id": "0x000004b3",
15058 "dns.flags": "0x00008180",
15059 "dns.flags_tree": {
15060 "dns.flags.response": "1",
15061 "dns.flags.opcode": "0",
15062 "dns.flags.authoritative": "0",
15063 "dns.flags.truncated": "0",
15064 "dns.flags.recdesired": "1",
15065 "dns.flags.recavail": "1",
15066 "dns.flags.z": "0",
15067 "dns.flags.authenticated": "0",
15068 "dns.flags.checkdisable": "0",
15069 "dns.flags.rcode": "0"
15071 "dns.count.queries": "1",
15072 "dns.count.answers": "1",
15073 "dns.count.auth_rr": "3",
15074 "dns.count.add_rr": "5",
15076 "dcp.cpp.philips.com: type A, class IN": {
15077 "dns.qry.name": "dcp.cpp.philips.com",
15078 "dns.qry.name.len": "19",
15079 "dns.count.labels": "4",
15080 "dns.qry.type": "1",
15081 "dns.qry.class": "0x00000001"
15085 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
15086 "dns.resp.name": "dcp.cpp.philips.com",
15087 "dns.resp.type": "1",
15088 "dns.resp.class": "0x00000001",
15089 "dns.resp.ttl": "3220",
15090 "dns.resp.len": "4",
15091 "dns.a": "5.79.62.93"
15094 "Authoritative nameservers": {
15095 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
15096 "dns.resp.name": "cpp.philips.com",
15097 "dns.resp.type": "2",
15098 "dns.resp.class": "0x00000001",
15099 "dns.resp.ttl": "689",
15100 "dns.resp.len": "10",
15101 "dns.ns": "ns3.ext.philips.com"
15103 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
15104 "dns.resp.name": "cpp.philips.com",
15105 "dns.resp.type": "2",
15106 "dns.resp.class": "0x00000001",
15107 "dns.resp.ttl": "689",
15108 "dns.resp.len": "6",
15109 "dns.ns": "ns1.ext.philips.com"
15111 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
15112 "dns.resp.name": "cpp.philips.com",
15113 "dns.resp.type": "2",
15114 "dns.resp.class": "0x00000001",
15115 "dns.resp.ttl": "689",
15116 "dns.resp.len": "6",
15117 "dns.ns": "ns2.ext.philips.com"
15120 "Additional records": {
15121 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
15122 "dns.resp.name": "ns2.ext.philips.com",
15123 "dns.resp.type": "1",
15124 "dns.resp.class": "0x00000001",
15125 "dns.resp.ttl": "157175",
15126 "dns.resp.len": "4",
15127 "dns.a": "57.77.21.76"
15129 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
15130 "dns.resp.name": "ns3.ext.philips.com",
15131 "dns.resp.type": "1",
15132 "dns.resp.class": "0x00000001",
15133 "dns.resp.ttl": "157175",
15134 "dns.resp.len": "4",
15135 "dns.a": "57.73.36.68"
15137 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
15138 "dns.resp.name": "ns1.ext.philips.com",
15139 "dns.resp.type": "28",
15140 "dns.resp.class": "0x00000001",
15141 "dns.resp.ttl": "2218",
15142 "dns.resp.len": "16",
15143 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
15145 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
15146 "dns.resp.name": "ns2.ext.philips.com",
15147 "dns.resp.type": "28",
15148 "dns.resp.class": "0x00000001",
15149 "dns.resp.ttl": "47152",
15150 "dns.resp.len": "16",
15151 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
15153 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
15154 "dns.resp.name": "ns3.ext.philips.com",
15155 "dns.resp.type": "28",
15156 "dns.resp.class": "0x00000001",
15157 "dns.resp.ttl": "47152",
15158 "dns.resp.len": "16",
15159 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
15168 "_index": "packets-2017-10-26",
15169 "_type": "pcap_file",
15174 "frame.encap_type": "1",
15175 "frame.time": "Oct 19, 2017 22:33:22.393601000 PDT",
15176 "frame.offset_shift": "0.000000000",
15177 "frame.time_epoch": "1508477602.393601000",
15178 "frame.time_delta": "0.000661000",
15179 "frame.time_delta_displayed": "0.420172000",
15180 "frame.time_relative": "19889.988397000",
15181 "frame.number": "19778",
15183 "frame.cap_len": "79",
15184 "frame.marked": "0",
15185 "frame.ignored": "0",
15186 "frame.protocols": "eth:ethertype:ip:udp:dns",
15187 "frame.coloring_rule.name": "UDP",
15188 "frame.coloring_rule.string": "udp"
15191 "eth.dst": "b0:b9:8a:73:69:8e",
15193 "eth.dst_resolved": "Netgear_73:69:8e",
15194 "eth.addr": "b0:b9:8a:73:69:8e",
15195 "eth.addr_resolved": "Netgear_73:69:8e",
15199 "eth.src": "00:17:88:69:ee:e4",
15201 "eth.src_resolved": "PhilipsL_69:ee:e4",
15202 "eth.addr": "00:17:88:69:ee:e4",
15203 "eth.addr_resolved": "PhilipsL_69:ee:e4",
15207 "eth.type": "0x00000800"
15211 "ip.hdr_len": "20",
15212 "ip.dsfield": "0x00000000",
15213 "ip.dsfield_tree": {
15214 "ip.dsfield.dscp": "0",
15215 "ip.dsfield.ecn": "0"
15218 "ip.id": "0x000048c9",
15219 "ip.flags": "0x00000002",
15221 "ip.flags.rb": "0",
15222 "ip.flags.df": "1",
15225 "ip.frag_offset": "0",
15228 "ip.checksum": "0x00006ff1",
15229 "ip.checksum.status": "2",
15230 "ip.src": "192.168.0.160",
15231 "ip.addr": "192.168.0.160",
15232 "ip.src_host": "192.168.0.160",
15233 "ip.host": "192.168.0.160",
15234 "ip.dst": "192.168.0.1",
15235 "ip.addr": "192.168.0.1",
15236 "ip.dst_host": "192.168.0.1",
15237 "ip.host": "192.168.0.1",
15238 "Source GeoIP: Unknown": "",
15239 "Destination GeoIP: Unknown": ""
15242 "udp.srcport": "58716",
15243 "udp.dstport": "53",
15244 "udp.port": "58716",
15246 "udp.length": "45",
15247 "udp.checksum": "0x0000db2c",
15248 "udp.checksum.status": "2",
15249 "udp.stream": "250"
15252 "dns.response_in": "19779",
15253 "dns.id": "0x000004b4",
15254 "dns.flags": "0x00000100",
15255 "dns.flags_tree": {
15256 "dns.flags.response": "0",
15257 "dns.flags.opcode": "0",
15258 "dns.flags.truncated": "0",
15259 "dns.flags.recdesired": "1",
15260 "dns.flags.z": "0",
15261 "dns.flags.checkdisable": "0"
15263 "dns.count.queries": "1",
15264 "dns.count.answers": "0",
15265 "dns.count.auth_rr": "0",
15266 "dns.count.add_rr": "0",
15268 "dcp.cpp.philips.com: type AAAA, class IN": {
15269 "dns.qry.name": "dcp.cpp.philips.com",
15270 "dns.qry.name.len": "19",
15271 "dns.count.labels": "4",
15272 "dns.qry.type": "28",
15273 "dns.qry.class": "0x00000001"
15282 "_index": "packets-2017-10-26",
15283 "_type": "pcap_file",
15288 "frame.encap_type": "1",
15289 "frame.time": "Oct 19, 2017 22:33:22.394208000 PDT",
15290 "frame.offset_shift": "0.000000000",
15291 "frame.time_epoch": "1508477602.394208000",
15292 "frame.time_delta": "0.000607000",
15293 "frame.time_delta_displayed": "0.000607000",
15294 "frame.time_relative": "19889.989004000",
15295 "frame.number": "19779",
15297 "frame.cap_len": "79",
15298 "frame.marked": "0",
15299 "frame.ignored": "0",
15300 "frame.protocols": "eth:ethertype:ip:udp:dns",
15301 "frame.coloring_rule.name": "UDP",
15302 "frame.coloring_rule.string": "udp"
15305 "eth.dst": "00:17:88:69:ee:e4",
15307 "eth.dst_resolved": "PhilipsL_69:ee:e4",
15308 "eth.addr": "00:17:88:69:ee:e4",
15309 "eth.addr_resolved": "PhilipsL_69:ee:e4",
15313 "eth.src": "b0:b9:8a:73:69:8e",
15315 "eth.src_resolved": "Netgear_73:69:8e",
15316 "eth.addr": "b0:b9:8a:73:69:8e",
15317 "eth.addr_resolved": "Netgear_73:69:8e",
15321 "eth.type": "0x00000800"
15325 "ip.hdr_len": "20",
15326 "ip.dsfield": "0x00000000",
15327 "ip.dsfield_tree": {
15328 "ip.dsfield.dscp": "0",
15329 "ip.dsfield.ecn": "0"
15332 "ip.id": "0x00006951",
15333 "ip.flags": "0x00000002",
15335 "ip.flags.rb": "0",
15336 "ip.flags.df": "1",
15339 "ip.frag_offset": "0",
15342 "ip.checksum": "0x00004f69",
15343 "ip.checksum.status": "2",
15344 "ip.src": "192.168.0.1",
15345 "ip.addr": "192.168.0.1",
15346 "ip.src_host": "192.168.0.1",
15347 "ip.host": "192.168.0.1",
15348 "ip.dst": "192.168.0.160",
15349 "ip.addr": "192.168.0.160",
15350 "ip.dst_host": "192.168.0.160",
15351 "ip.host": "192.168.0.160",
15352 "Source GeoIP: Unknown": "",
15353 "Destination GeoIP: Unknown": ""
15356 "udp.srcport": "53",
15357 "udp.dstport": "58716",
15359 "udp.port": "58716",
15360 "udp.length": "45",
15361 "udp.checksum": "0x00008230",
15362 "udp.checksum.status": "2",
15363 "udp.stream": "250"
15366 "dns.response_to": "19778",
15367 "dns.time": "0.000607000",
15368 "dns.id": "0x000004b4",
15369 "dns.flags": "0x00008180",
15370 "dns.flags_tree": {
15371 "dns.flags.response": "1",
15372 "dns.flags.opcode": "0",
15373 "dns.flags.authoritative": "0",
15374 "dns.flags.truncated": "0",
15375 "dns.flags.recdesired": "1",
15376 "dns.flags.recavail": "1",
15377 "dns.flags.z": "0",
15378 "dns.flags.authenticated": "0",
15379 "dns.flags.checkdisable": "0",
15380 "dns.flags.rcode": "0"
15382 "dns.count.queries": "1",
15383 "dns.count.answers": "0",
15384 "dns.count.auth_rr": "0",
15385 "dns.count.add_rr": "0",
15387 "dcp.cpp.philips.com: type AAAA, class IN": {
15388 "dns.qry.name": "dcp.cpp.philips.com",
15389 "dns.qry.name.len": "19",
15390 "dns.count.labels": "4",
15391 "dns.qry.type": "28",
15392 "dns.qry.class": "0x00000001"
15401 "_index": "packets-2017-10-26",
15402 "_type": "pcap_file",
15407 "frame.encap_type": "1",
15408 "frame.time": "Oct 19, 2017 22:33:22.395034000 PDT",
15409 "frame.offset_shift": "0.000000000",
15410 "frame.time_epoch": "1508477602.395034000",
15411 "frame.time_delta": "0.000826000",
15412 "frame.time_delta_displayed": "0.000826000",
15413 "frame.time_relative": "19889.989830000",
15414 "frame.number": "19780",
15416 "frame.cap_len": "79",
15417 "frame.marked": "0",
15418 "frame.ignored": "0",
15419 "frame.protocols": "eth:ethertype:ip:udp:dns",
15420 "frame.coloring_rule.name": "UDP",
15421 "frame.coloring_rule.string": "udp"
15424 "eth.dst": "b0:b9:8a:73:69:8e",
15426 "eth.dst_resolved": "Netgear_73:69:8e",
15427 "eth.addr": "b0:b9:8a:73:69:8e",
15428 "eth.addr_resolved": "Netgear_73:69:8e",
15432 "eth.src": "00:17:88:69:ee:e4",
15434 "eth.src_resolved": "PhilipsL_69:ee:e4",
15435 "eth.addr": "00:17:88:69:ee:e4",
15436 "eth.addr_resolved": "PhilipsL_69:ee:e4",
15440 "eth.type": "0x00000800"
15444 "ip.hdr_len": "20",
15445 "ip.dsfield": "0x00000000",
15446 "ip.dsfield_tree": {
15447 "ip.dsfield.dscp": "0",
15448 "ip.dsfield.ecn": "0"
15451 "ip.id": "0x000048ca",
15452 "ip.flags": "0x00000002",
15454 "ip.flags.rb": "0",
15455 "ip.flags.df": "1",
15458 "ip.frag_offset": "0",
15461 "ip.checksum": "0x00006ff0",
15462 "ip.checksum.status": "2",
15463 "ip.src": "192.168.0.160",
15464 "ip.addr": "192.168.0.160",
15465 "ip.src_host": "192.168.0.160",
15466 "ip.host": "192.168.0.160",
15467 "ip.dst": "192.168.0.1",
15468 "ip.addr": "192.168.0.1",
15469 "ip.dst_host": "192.168.0.1",
15470 "ip.host": "192.168.0.1",
15471 "Source GeoIP: Unknown": "",
15472 "Destination GeoIP: Unknown": ""
15475 "udp.srcport": "58570",
15476 "udp.dstport": "53",
15477 "udp.port": "58570",
15479 "udp.length": "45",
15480 "udp.checksum": "0x0000f6bd",
15481 "udp.checksum.status": "2",
15482 "udp.stream": "251"
15485 "dns.response_in": "19781",
15486 "dns.id": "0x000004b5",
15487 "dns.flags": "0x00000100",
15488 "dns.flags_tree": {
15489 "dns.flags.response": "0",
15490 "dns.flags.opcode": "0",
15491 "dns.flags.truncated": "0",
15492 "dns.flags.recdesired": "1",
15493 "dns.flags.z": "0",
15494 "dns.flags.checkdisable": "0"
15496 "dns.count.queries": "1",
15497 "dns.count.answers": "0",
15498 "dns.count.auth_rr": "0",
15499 "dns.count.add_rr": "0",
15501 "dcp.cpp.philips.com: type A, class IN": {
15502 "dns.qry.name": "dcp.cpp.philips.com",
15503 "dns.qry.name.len": "19",
15504 "dns.count.labels": "4",
15505 "dns.qry.type": "1",
15506 "dns.qry.class": "0x00000001"
15515 "_index": "packets-2017-10-26",
15516 "_type": "pcap_file",
15521 "frame.encap_type": "1",
15522 "frame.time": "Oct 19, 2017 22:33:22.395453000 PDT",
15523 "frame.offset_shift": "0.000000000",
15524 "frame.time_epoch": "1508477602.395453000",
15525 "frame.time_delta": "0.000419000",
15526 "frame.time_delta_displayed": "0.000419000",
15527 "frame.time_relative": "19889.990249000",
15528 "frame.number": "19781",
15530 "frame.cap_len": "95",
15531 "frame.marked": "0",
15532 "frame.ignored": "0",
15533 "frame.protocols": "eth:ethertype:ip:udp:dns",
15534 "frame.coloring_rule.name": "UDP",
15535 "frame.coloring_rule.string": "udp"
15538 "eth.dst": "00:17:88:69:ee:e4",
15540 "eth.dst_resolved": "PhilipsL_69:ee:e4",
15541 "eth.addr": "00:17:88:69:ee:e4",
15542 "eth.addr_resolved": "PhilipsL_69:ee:e4",
15546 "eth.src": "b0:b9:8a:73:69:8e",
15548 "eth.src_resolved": "Netgear_73:69:8e",
15549 "eth.addr": "b0:b9:8a:73:69:8e",
15550 "eth.addr_resolved": "Netgear_73:69:8e",
15554 "eth.type": "0x00000800"
15558 "ip.hdr_len": "20",
15559 "ip.dsfield": "0x00000000",
15560 "ip.dsfield_tree": {
15561 "ip.dsfield.dscp": "0",
15562 "ip.dsfield.ecn": "0"
15565 "ip.id": "0x00006952",
15566 "ip.flags": "0x00000002",
15568 "ip.flags.rb": "0",
15569 "ip.flags.df": "1",
15572 "ip.frag_offset": "0",
15575 "ip.checksum": "0x00004f58",
15576 "ip.checksum.status": "2",
15577 "ip.src": "192.168.0.1",
15578 "ip.addr": "192.168.0.1",
15579 "ip.src_host": "192.168.0.1",
15580 "ip.host": "192.168.0.1",
15581 "ip.dst": "192.168.0.160",
15582 "ip.addr": "192.168.0.160",
15583 "ip.dst_host": "192.168.0.160",
15584 "ip.host": "192.168.0.160",
15585 "Source GeoIP: Unknown": "",
15586 "Destination GeoIP: Unknown": ""
15589 "udp.srcport": "53",
15590 "udp.dstport": "58570",
15592 "udp.port": "58570",
15593 "udp.length": "61",
15594 "udp.checksum": "0x00008240",
15595 "udp.checksum.status": "2",
15596 "udp.stream": "251"
15599 "dns.response_to": "19780",
15600 "dns.time": "0.000419000",
15601 "dns.id": "0x000004b5",
15602 "dns.flags": "0x00008180",
15603 "dns.flags_tree": {
15604 "dns.flags.response": "1",
15605 "dns.flags.opcode": "0",
15606 "dns.flags.authoritative": "0",
15607 "dns.flags.truncated": "0",
15608 "dns.flags.recdesired": "1",
15609 "dns.flags.recavail": "1",
15610 "dns.flags.z": "0",
15611 "dns.flags.authenticated": "0",
15612 "dns.flags.checkdisable": "0",
15613 "dns.flags.rcode": "0"
15615 "dns.count.queries": "1",
15616 "dns.count.answers": "1",
15617 "dns.count.auth_rr": "0",
15618 "dns.count.add_rr": "0",
15620 "dcp.cpp.philips.com: type A, class IN": {
15621 "dns.qry.name": "dcp.cpp.philips.com",
15622 "dns.qry.name.len": "19",
15623 "dns.count.labels": "4",
15624 "dns.qry.type": "1",
15625 "dns.qry.class": "0x00000001"
15629 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
15630 "dns.resp.name": "dcp.cpp.philips.com",
15631 "dns.resp.type": "1",
15632 "dns.resp.class": "0x00000001",
15633 "dns.resp.ttl": "3219",
15634 "dns.resp.len": "4",
15635 "dns.a": "5.79.62.93"
15644 "_index": "packets-2017-10-26",
15645 "_type": "pcap_file",
15650 "frame.encap_type": "1",
15651 "frame.time": "Oct 19, 2017 22:37:52.496004000 PDT",
15652 "frame.offset_shift": "0.000000000",
15653 "frame.time_epoch": "1508477872.496004000",
15654 "frame.time_delta": "7.655864000",
15655 "frame.time_delta_displayed": "270.100551000",
15656 "frame.time_relative": "20160.090800000",
15657 "frame.number": "20012",
15659 "frame.cap_len": "76",
15660 "frame.marked": "0",
15661 "frame.ignored": "0",
15662 "frame.protocols": "eth:ethertype:ip:udp:dns",
15663 "frame.coloring_rule.name": "UDP",
15664 "frame.coloring_rule.string": "udp"
15667 "eth.dst": "b0:b9:8a:73:69:8e",
15669 "eth.dst_resolved": "Netgear_73:69:8e",
15670 "eth.addr": "b0:b9:8a:73:69:8e",
15671 "eth.addr_resolved": "Netgear_73:69:8e",
15675 "eth.src": "00:17:88:69:ee:e4",
15677 "eth.src_resolved": "PhilipsL_69:ee:e4",
15678 "eth.addr": "00:17:88:69:ee:e4",
15679 "eth.addr_resolved": "PhilipsL_69:ee:e4",
15683 "eth.type": "0x00000800"
15687 "ip.hdr_len": "20",
15688 "ip.dsfield": "0x00000000",
15689 "ip.dsfield_tree": {
15690 "ip.dsfield.dscp": "0",
15691 "ip.dsfield.ecn": "0"
15694 "ip.id": "0x00007136",
15695 "ip.flags": "0x00000002",
15697 "ip.flags.rb": "0",
15698 "ip.flags.df": "1",
15701 "ip.frag_offset": "0",
15704 "ip.checksum": "0x00004787",
15705 "ip.checksum.status": "2",
15706 "ip.src": "192.168.0.160",
15707 "ip.addr": "192.168.0.160",
15708 "ip.src_host": "192.168.0.160",
15709 "ip.host": "192.168.0.160",
15710 "ip.dst": "192.168.0.1",
15711 "ip.addr": "192.168.0.1",
15712 "ip.dst_host": "192.168.0.1",
15713 "ip.host": "192.168.0.1",
15714 "Source GeoIP: Unknown": "",
15715 "Destination GeoIP: Unknown": ""
15718 "udp.srcport": "57235",
15719 "udp.dstport": "53",
15720 "udp.port": "57235",
15722 "udp.length": "42",
15723 "udp.checksum": "0x0000796e",
15724 "udp.checksum.status": "2",
15725 "udp.stream": "252"
15728 "dns.response_in": "20013",
15729 "dns.id": "0x000004b6",
15730 "dns.flags": "0x00000100",
15731 "dns.flags_tree": {
15732 "dns.flags.response": "0",
15733 "dns.flags.opcode": "0",
15734 "dns.flags.truncated": "0",
15735 "dns.flags.recdesired": "1",
15736 "dns.flags.z": "0",
15737 "dns.flags.checkdisable": "0"
15739 "dns.count.queries": "1",
15740 "dns.count.answers": "0",
15741 "dns.count.auth_rr": "0",
15742 "dns.count.add_rr": "0",
15744 "www2.meethue.com: type A, class IN": {
15745 "dns.qry.name": "www2.meethue.com",
15746 "dns.qry.name.len": "16",
15747 "dns.count.labels": "3",
15748 "dns.qry.type": "1",
15749 "dns.qry.class": "0x00000001"
15758 "_index": "packets-2017-10-26",
15759 "_type": "pcap_file",
15764 "frame.encap_type": "1",
15765 "frame.time": "Oct 19, 2017 22:37:52.557890000 PDT",
15766 "frame.offset_shift": "0.000000000",
15767 "frame.time_epoch": "1508477872.557890000",
15768 "frame.time_delta": "0.061886000",
15769 "frame.time_delta_displayed": "0.061886000",
15770 "frame.time_relative": "20160.152686000",
15771 "frame.number": "20013",
15772 "frame.len": "467",
15773 "frame.cap_len": "467",
15774 "frame.marked": "0",
15775 "frame.ignored": "0",
15776 "frame.protocols": "eth:ethertype:ip:udp:dns",
15777 "frame.coloring_rule.name": "UDP",
15778 "frame.coloring_rule.string": "udp"
15781 "eth.dst": "00:17:88:69:ee:e4",
15783 "eth.dst_resolved": "PhilipsL_69:ee:e4",
15784 "eth.addr": "00:17:88:69:ee:e4",
15785 "eth.addr_resolved": "PhilipsL_69:ee:e4",
15789 "eth.src": "b0:b9:8a:73:69:8e",
15791 "eth.src_resolved": "Netgear_73:69:8e",
15792 "eth.addr": "b0:b9:8a:73:69:8e",
15793 "eth.addr_resolved": "Netgear_73:69:8e",
15797 "eth.type": "0x00000800"
15801 "ip.hdr_len": "20",
15802 "ip.dsfield": "0x00000000",
15803 "ip.dsfield_tree": {
15804 "ip.dsfield.dscp": "0",
15805 "ip.dsfield.ecn": "0"
15808 "ip.id": "0x00007974",
15809 "ip.flags": "0x00000002",
15811 "ip.flags.rb": "0",
15812 "ip.flags.df": "1",
15815 "ip.frag_offset": "0",
15818 "ip.checksum": "0x00003dc2",
15819 "ip.checksum.status": "2",
15820 "ip.src": "192.168.0.1",
15821 "ip.addr": "192.168.0.1",
15822 "ip.src_host": "192.168.0.1",
15823 "ip.host": "192.168.0.1",
15824 "ip.dst": "192.168.0.160",
15825 "ip.addr": "192.168.0.160",
15826 "ip.dst_host": "192.168.0.160",
15827 "ip.host": "192.168.0.160",
15828 "Source GeoIP: Unknown": "",
15829 "Destination GeoIP: Unknown": ""
15832 "udp.srcport": "53",
15833 "udp.dstport": "57235",
15835 "udp.port": "57235",
15836 "udp.length": "433",
15837 "udp.checksum": "0x000083b4",
15838 "udp.checksum.status": "2",
15839 "udp.stream": "252"
15842 "dns.response_to": "20012",
15843 "dns.time": "0.061886000",
15844 "dns.id": "0x000004b6",
15845 "dns.flags": "0x00008180",
15846 "dns.flags_tree": {
15847 "dns.flags.response": "1",
15848 "dns.flags.opcode": "0",
15849 "dns.flags.authoritative": "0",
15850 "dns.flags.truncated": "0",
15851 "dns.flags.recdesired": "1",
15852 "dns.flags.recavail": "1",
15853 "dns.flags.z": "0",
15854 "dns.flags.authenticated": "0",
15855 "dns.flags.checkdisable": "0",
15856 "dns.flags.rcode": "0"
15858 "dns.count.queries": "1",
15859 "dns.count.answers": "4",
15860 "dns.count.auth_rr": "8",
15861 "dns.count.add_rr": "8",
15863 "www2.meethue.com: type A, class IN": {
15864 "dns.qry.name": "www2.meethue.com",
15865 "dns.qry.name.len": "16",
15866 "dns.count.labels": "3",
15867 "dns.qry.type": "1",
15868 "dns.qry.class": "0x00000001"
15872 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
15873 "dns.resp.name": "www2.meethue.com",
15874 "dns.resp.type": "5",
15875 "dns.resp.class": "0x00000001",
15876 "dns.resp.ttl": "118",
15877 "dns.resp.len": "41",
15878 "dns.cname": "brands.lighting.philips.com.edgekey.net"
15880 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
15881 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
15882 "dns.resp.type": "5",
15883 "dns.resp.class": "0x00000001",
15884 "dns.resp.ttl": "15117",
15885 "dns.resp.len": "22",
15886 "dns.cname": "e15361.b.akamaiedge.net"
15888 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
15889 "dns.resp.name": "e15361.b.akamaiedge.net",
15890 "dns.resp.type": "1",
15891 "dns.resp.class": "0x00000001",
15892 "dns.resp.ttl": "20",
15893 "dns.resp.len": "4",
15894 "dns.a": "173.223.52.112"
15896 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
15897 "dns.resp.name": "e15361.b.akamaiedge.net",
15898 "dns.resp.type": "1",
15899 "dns.resp.class": "0x00000001",
15900 "dns.resp.ttl": "20",
15901 "dns.resp.len": "4",
15902 "dns.a": "173.223.52.125"
15905 "Authoritative nameservers": {
15906 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
15907 "dns.resp.name": "b.akamaiedge.net",
15908 "dns.resp.type": "2",
15909 "dns.resp.class": "0x00000001",
15910 "dns.resp.ttl": "690",
15911 "dns.resp.len": "6",
15912 "dns.ns": "n4b.akamaiedge.net"
15914 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
15915 "dns.resp.name": "b.akamaiedge.net",
15916 "dns.resp.type": "2",
15917 "dns.resp.class": "0x00000001",
15918 "dns.resp.ttl": "690",
15919 "dns.resp.len": "6",
15920 "dns.ns": "n1b.akamaiedge.net"
15922 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
15923 "dns.resp.name": "b.akamaiedge.net",
15924 "dns.resp.type": "2",
15925 "dns.resp.class": "0x00000001",
15926 "dns.resp.ttl": "690",
15927 "dns.resp.len": "6",
15928 "dns.ns": "n2b.akamaiedge.net"
15930 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
15931 "dns.resp.name": "b.akamaiedge.net",
15932 "dns.resp.type": "2",
15933 "dns.resp.class": "0x00000001",
15934 "dns.resp.ttl": "690",
15935 "dns.resp.len": "6",
15936 "dns.ns": "n3b.akamaiedge.net"
15938 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
15939 "dns.resp.name": "b.akamaiedge.net",
15940 "dns.resp.type": "2",
15941 "dns.resp.class": "0x00000001",
15942 "dns.resp.ttl": "690",
15943 "dns.resp.len": "6",
15944 "dns.ns": "n0b.akamaiedge.net"
15946 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
15947 "dns.resp.name": "b.akamaiedge.net",
15948 "dns.resp.type": "2",
15949 "dns.resp.class": "0x00000001",
15950 "dns.resp.ttl": "690",
15951 "dns.resp.len": "6",
15952 "dns.ns": "n6b.akamaiedge.net"
15954 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
15955 "dns.resp.name": "b.akamaiedge.net",
15956 "dns.resp.type": "2",
15957 "dns.resp.class": "0x00000001",
15958 "dns.resp.ttl": "690",
15959 "dns.resp.len": "6",
15960 "dns.ns": "n5b.akamaiedge.net"
15962 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
15963 "dns.resp.name": "b.akamaiedge.net",
15964 "dns.resp.type": "2",
15965 "dns.resp.class": "0x00000001",
15966 "dns.resp.ttl": "690",
15967 "dns.resp.len": "6",
15968 "dns.ns": "n7b.akamaiedge.net"
15971 "Additional records": {
15972 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
15973 "dns.resp.name": "n0b.akamaiedge.net",
15974 "dns.resp.type": "1",
15975 "dns.resp.class": "0x00000001",
15976 "dns.resp.ttl": "4",
15977 "dns.resp.len": "4",
15978 "dns.a": "88.221.81.192"
15980 "n1b.akamaiedge.net: type A, class IN, addr 23.67.56.215": {
15981 "dns.resp.name": "n1b.akamaiedge.net",
15982 "dns.resp.type": "1",
15983 "dns.resp.class": "0x00000001",
15984 "dns.resp.ttl": "6717",
15985 "dns.resp.len": "4",
15986 "dns.a": "23.67.56.215"
15988 "n2b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
15989 "dns.resp.name": "n2b.akamaiedge.net",
15990 "dns.resp.type": "1",
15991 "dns.resp.class": "0x00000001",
15992 "dns.resp.ttl": "7220",
15993 "dns.resp.len": "4",
15994 "dns.a": "204.2.166.158"
15996 "n3b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
15997 "dns.resp.name": "n3b.akamaiedge.net",
15998 "dns.resp.type": "1",
15999 "dns.resp.class": "0x00000001",
16000 "dns.resp.ttl": "3405",
16001 "dns.resp.len": "4",
16002 "dns.a": "204.2.166.150"
16004 "n4b.akamaiedge.net: type A, class IN, addr 165.254.16.92": {
16005 "dns.resp.name": "n4b.akamaiedge.net",
16006 "dns.resp.type": "1",
16007 "dns.resp.class": "0x00000001",
16008 "dns.resp.ttl": "311",
16009 "dns.resp.len": "4",
16010 "dns.a": "165.254.16.92"
16012 "n5b.akamaiedge.net: type A, class IN, addr 198.172.88.206": {
16013 "dns.resp.name": "n5b.akamaiedge.net",
16014 "dns.resp.type": "1",
16015 "dns.resp.class": "0x00000001",
16016 "dns.resp.ttl": "58",
16017 "dns.resp.len": "4",
16018 "dns.a": "198.172.88.206"
16020 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.69": {
16021 "dns.resp.name": "n6b.akamaiedge.net",
16022 "dns.resp.type": "1",
16023 "dns.resp.class": "0x00000001",
16024 "dns.resp.ttl": "3867",
16025 "dns.resp.len": "4",
16026 "dns.a": "173.223.52.69"
16028 "n7b.akamaiedge.net: type A, class IN, addr 198.172.88.204": {
16029 "dns.resp.name": "n7b.akamaiedge.net",
16030 "dns.resp.type": "1",
16031 "dns.resp.class": "0x00000001",
16032 "dns.resp.ttl": "1920",
16033 "dns.resp.len": "4",
16034 "dns.a": "198.172.88.204"
16043 "_index": "packets-2017-10-26",
16044 "_type": "pcap_file",
16049 "frame.encap_type": "1",
16050 "frame.time": "Oct 19, 2017 22:52:52.564075000 PDT",
16051 "frame.offset_shift": "0.000000000",
16052 "frame.time_epoch": "1508478772.564075000",
16053 "frame.time_delta": "2.198143000",
16054 "frame.time_delta_displayed": "900.006185000",
16055 "frame.time_relative": "21060.158871000",
16056 "frame.number": "20790",
16058 "frame.cap_len": "76",
16059 "frame.marked": "0",
16060 "frame.ignored": "0",
16061 "frame.protocols": "eth:ethertype:ip:udp:dns",
16062 "frame.coloring_rule.name": "UDP",
16063 "frame.coloring_rule.string": "udp"
16066 "eth.dst": "b0:b9:8a:73:69:8e",
16068 "eth.dst_resolved": "Netgear_73:69:8e",
16069 "eth.addr": "b0:b9:8a:73:69:8e",
16070 "eth.addr_resolved": "Netgear_73:69:8e",
16074 "eth.src": "00:17:88:69:ee:e4",
16076 "eth.src_resolved": "PhilipsL_69:ee:e4",
16077 "eth.addr": "00:17:88:69:ee:e4",
16078 "eth.addr_resolved": "PhilipsL_69:ee:e4",
16082 "eth.type": "0x00000800"
16086 "ip.hdr_len": "20",
16087 "ip.dsfield": "0x00000000",
16088 "ip.dsfield_tree": {
16089 "ip.dsfield.dscp": "0",
16090 "ip.dsfield.ecn": "0"
16093 "ip.id": "0x0000cae0",
16094 "ip.flags": "0x00000002",
16096 "ip.flags.rb": "0",
16097 "ip.flags.df": "1",
16100 "ip.frag_offset": "0",
16103 "ip.checksum": "0x0000eddc",
16104 "ip.checksum.status": "2",
16105 "ip.src": "192.168.0.160",
16106 "ip.addr": "192.168.0.160",
16107 "ip.src_host": "192.168.0.160",
16108 "ip.host": "192.168.0.160",
16109 "ip.dst": "192.168.0.1",
16110 "ip.addr": "192.168.0.1",
16111 "ip.dst_host": "192.168.0.1",
16112 "ip.host": "192.168.0.1",
16113 "Source GeoIP: Unknown": "",
16114 "Destination GeoIP: Unknown": ""
16117 "udp.srcport": "43240",
16118 "udp.dstport": "53",
16119 "udp.port": "43240",
16121 "udp.length": "42",
16122 "udp.checksum": "0x0000b018",
16123 "udp.checksum.status": "2",
16124 "udp.stream": "258"
16127 "dns.response_in": "20791",
16128 "dns.id": "0x000004b7",
16129 "dns.flags": "0x00000100",
16130 "dns.flags_tree": {
16131 "dns.flags.response": "0",
16132 "dns.flags.opcode": "0",
16133 "dns.flags.truncated": "0",
16134 "dns.flags.recdesired": "1",
16135 "dns.flags.z": "0",
16136 "dns.flags.checkdisable": "0"
16138 "dns.count.queries": "1",
16139 "dns.count.answers": "0",
16140 "dns.count.auth_rr": "0",
16141 "dns.count.add_rr": "0",
16143 "www2.meethue.com: type A, class IN": {
16144 "dns.qry.name": "www2.meethue.com",
16145 "dns.qry.name.len": "16",
16146 "dns.count.labels": "3",
16147 "dns.qry.type": "1",
16148 "dns.qry.class": "0x00000001"
16157 "_index": "packets-2017-10-26",
16158 "_type": "pcap_file",
16163 "frame.encap_type": "1",
16164 "frame.time": "Oct 19, 2017 22:52:52.600980000 PDT",
16165 "frame.offset_shift": "0.000000000",
16166 "frame.time_epoch": "1508478772.600980000",
16167 "frame.time_delta": "0.036905000",
16168 "frame.time_delta_displayed": "0.036905000",
16169 "frame.time_relative": "21060.195776000",
16170 "frame.number": "20791",
16171 "frame.len": "467",
16172 "frame.cap_len": "467",
16173 "frame.marked": "0",
16174 "frame.ignored": "0",
16175 "frame.protocols": "eth:ethertype:ip:udp:dns",
16176 "frame.coloring_rule.name": "UDP",
16177 "frame.coloring_rule.string": "udp"
16180 "eth.dst": "00:17:88:69:ee:e4",
16182 "eth.dst_resolved": "PhilipsL_69:ee:e4",
16183 "eth.addr": "00:17:88:69:ee:e4",
16184 "eth.addr_resolved": "PhilipsL_69:ee:e4",
16188 "eth.src": "b0:b9:8a:73:69:8e",
16190 "eth.src_resolved": "Netgear_73:69:8e",
16191 "eth.addr": "b0:b9:8a:73:69:8e",
16192 "eth.addr_resolved": "Netgear_73:69:8e",
16196 "eth.type": "0x00000800"
16200 "ip.hdr_len": "20",
16201 "ip.dsfield": "0x00000000",
16202 "ip.dsfield_tree": {
16203 "ip.dsfield.dscp": "0",
16204 "ip.dsfield.ecn": "0"
16207 "ip.id": "0x00009731",
16208 "ip.flags": "0x00000002",
16210 "ip.flags.rb": "0",
16211 "ip.flags.df": "1",
16214 "ip.frag_offset": "0",
16217 "ip.checksum": "0x00002005",
16218 "ip.checksum.status": "2",
16219 "ip.src": "192.168.0.1",
16220 "ip.addr": "192.168.0.1",
16221 "ip.src_host": "192.168.0.1",
16222 "ip.host": "192.168.0.1",
16223 "ip.dst": "192.168.0.160",
16224 "ip.addr": "192.168.0.160",
16225 "ip.dst_host": "192.168.0.160",
16226 "ip.host": "192.168.0.160",
16227 "Source GeoIP: Unknown": "",
16228 "Destination GeoIP: Unknown": ""
16231 "udp.srcport": "53",
16232 "udp.dstport": "43240",
16234 "udp.port": "43240",
16235 "udp.length": "433",
16236 "udp.checksum": "0x000083b4",
16237 "udp.checksum.status": "2",
16238 "udp.stream": "258"
16241 "dns.response_to": "20790",
16242 "dns.time": "0.036905000",
16243 "dns.id": "0x000004b7",
16244 "dns.flags": "0x00008180",
16245 "dns.flags_tree": {
16246 "dns.flags.response": "1",
16247 "dns.flags.opcode": "0",
16248 "dns.flags.authoritative": "0",
16249 "dns.flags.truncated": "0",
16250 "dns.flags.recdesired": "1",
16251 "dns.flags.recavail": "1",
16252 "dns.flags.z": "0",
16253 "dns.flags.authenticated": "0",
16254 "dns.flags.checkdisable": "0",
16255 "dns.flags.rcode": "0"
16257 "dns.count.queries": "1",
16258 "dns.count.answers": "4",
16259 "dns.count.auth_rr": "8",
16260 "dns.count.add_rr": "8",
16262 "www2.meethue.com: type A, class IN": {
16263 "dns.qry.name": "www2.meethue.com",
16264 "dns.qry.name.len": "16",
16265 "dns.count.labels": "3",
16266 "dns.qry.type": "1",
16267 "dns.qry.class": "0x00000001"
16271 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
16272 "dns.resp.name": "www2.meethue.com",
16273 "dns.resp.type": "5",
16274 "dns.resp.class": "0x00000001",
16275 "dns.resp.ttl": "118",
16276 "dns.resp.len": "41",
16277 "dns.cname": "brands.lighting.philips.com.edgekey.net"
16279 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
16280 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
16281 "dns.resp.type": "5",
16282 "dns.resp.class": "0x00000001",
16283 "dns.resp.ttl": "14217",
16284 "dns.resp.len": "22",
16285 "dns.cname": "e15361.b.akamaiedge.net"
16287 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
16288 "dns.resp.name": "e15361.b.akamaiedge.net",
16289 "dns.resp.type": "1",
16290 "dns.resp.class": "0x00000001",
16291 "dns.resp.ttl": "20",
16292 "dns.resp.len": "4",
16293 "dns.a": "173.223.52.125"
16295 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
16296 "dns.resp.name": "e15361.b.akamaiedge.net",
16297 "dns.resp.type": "1",
16298 "dns.resp.class": "0x00000001",
16299 "dns.resp.ttl": "20",
16300 "dns.resp.len": "4",
16301 "dns.a": "173.223.52.112"
16304 "Authoritative nameservers": {
16305 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
16306 "dns.resp.name": "b.akamaiedge.net",
16307 "dns.resp.type": "2",
16308 "dns.resp.class": "0x00000001",
16309 "dns.resp.ttl": "790",
16310 "dns.resp.len": "6",
16311 "dns.ns": "n3b.akamaiedge.net"
16313 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
16314 "dns.resp.name": "b.akamaiedge.net",
16315 "dns.resp.type": "2",
16316 "dns.resp.class": "0x00000001",
16317 "dns.resp.ttl": "790",
16318 "dns.resp.len": "6",
16319 "dns.ns": "n5b.akamaiedge.net"
16321 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
16322 "dns.resp.name": "b.akamaiedge.net",
16323 "dns.resp.type": "2",
16324 "dns.resp.class": "0x00000001",
16325 "dns.resp.ttl": "790",
16326 "dns.resp.len": "6",
16327 "dns.ns": "n4b.akamaiedge.net"
16329 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
16330 "dns.resp.name": "b.akamaiedge.net",
16331 "dns.resp.type": "2",
16332 "dns.resp.class": "0x00000001",
16333 "dns.resp.ttl": "790",
16334 "dns.resp.len": "6",
16335 "dns.ns": "n7b.akamaiedge.net"
16337 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
16338 "dns.resp.name": "b.akamaiedge.net",
16339 "dns.resp.type": "2",
16340 "dns.resp.class": "0x00000001",
16341 "dns.resp.ttl": "790",
16342 "dns.resp.len": "6",
16343 "dns.ns": "n6b.akamaiedge.net"
16345 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
16346 "dns.resp.name": "b.akamaiedge.net",
16347 "dns.resp.type": "2",
16348 "dns.resp.class": "0x00000001",
16349 "dns.resp.ttl": "790",
16350 "dns.resp.len": "6",
16351 "dns.ns": "n1b.akamaiedge.net"
16353 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
16354 "dns.resp.name": "b.akamaiedge.net",
16355 "dns.resp.type": "2",
16356 "dns.resp.class": "0x00000001",
16357 "dns.resp.ttl": "790",
16358 "dns.resp.len": "6",
16359 "dns.ns": "n0b.akamaiedge.net"
16361 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
16362 "dns.resp.name": "b.akamaiedge.net",
16363 "dns.resp.type": "2",
16364 "dns.resp.class": "0x00000001",
16365 "dns.resp.ttl": "790",
16366 "dns.resp.len": "6",
16367 "dns.ns": "n2b.akamaiedge.net"
16370 "Additional records": {
16371 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
16372 "dns.resp.name": "n0b.akamaiedge.net",
16373 "dns.resp.type": "1",
16374 "dns.resp.class": "0x00000001",
16375 "dns.resp.ttl": "3106",
16376 "dns.resp.len": "4",
16377 "dns.a": "88.221.81.192"
16379 "n1b.akamaiedge.net: type A, class IN, addr 23.67.56.215": {
16380 "dns.resp.name": "n1b.akamaiedge.net",
16381 "dns.resp.type": "1",
16382 "dns.resp.class": "0x00000001",
16383 "dns.resp.ttl": "5817",
16384 "dns.resp.len": "4",
16385 "dns.a": "23.67.56.215"
16387 "n2b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
16388 "dns.resp.name": "n2b.akamaiedge.net",
16389 "dns.resp.type": "1",
16390 "dns.resp.class": "0x00000001",
16391 "dns.resp.ttl": "6320",
16392 "dns.resp.len": "4",
16393 "dns.a": "204.2.166.158"
16395 "n3b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
16396 "dns.resp.name": "n3b.akamaiedge.net",
16397 "dns.resp.type": "1",
16398 "dns.resp.class": "0x00000001",
16399 "dns.resp.ttl": "2505",
16400 "dns.resp.len": "4",
16401 "dns.a": "204.2.166.150"
16403 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.202": {
16404 "dns.resp.name": "n4b.akamaiedge.net",
16405 "dns.resp.type": "1",
16406 "dns.resp.class": "0x00000001",
16407 "dns.resp.ttl": "5412",
16408 "dns.resp.len": "4",
16409 "dns.a": "198.172.88.202"
16411 "n5b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
16412 "dns.resp.name": "n5b.akamaiedge.net",
16413 "dns.resp.type": "1",
16414 "dns.resp.class": "0x00000001",
16415 "dns.resp.ttl": "7161",
16416 "dns.resp.len": "4",
16417 "dns.a": "173.223.52.70"
16419 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.69": {
16420 "dns.resp.name": "n6b.akamaiedge.net",
16421 "dns.resp.type": "1",
16422 "dns.resp.class": "0x00000001",
16423 "dns.resp.ttl": "2967",
16424 "dns.resp.len": "4",
16425 "dns.a": "173.223.52.69"
16427 "n7b.akamaiedge.net: type A, class IN, addr 198.172.88.204": {
16428 "dns.resp.name": "n7b.akamaiedge.net",
16429 "dns.resp.type": "1",
16430 "dns.resp.class": "0x00000001",
16431 "dns.resp.ttl": "1020",
16432 "dns.resp.len": "4",
16433 "dns.a": "198.172.88.204"
16442 "_index": "packets-2017-10-26",
16443 "_type": "pcap_file",
16448 "frame.encap_type": "1",
16449 "frame.time": "Oct 19, 2017 23:07:52.606357000 PDT",
16450 "frame.offset_shift": "0.000000000",
16451 "frame.time_epoch": "1508479672.606357000",
16452 "frame.time_delta": "1.385883000",
16453 "frame.time_delta_displayed": "900.005377000",
16454 "frame.time_relative": "21960.201153000",
16455 "frame.number": "21562",
16457 "frame.cap_len": "76",
16458 "frame.marked": "0",
16459 "frame.ignored": "0",
16460 "frame.protocols": "eth:ethertype:ip:udp:dns",
16461 "frame.coloring_rule.name": "UDP",
16462 "frame.coloring_rule.string": "udp"
16465 "eth.dst": "b0:b9:8a:73:69:8e",
16467 "eth.dst_resolved": "Netgear_73:69:8e",
16468 "eth.addr": "b0:b9:8a:73:69:8e",
16469 "eth.addr_resolved": "Netgear_73:69:8e",
16473 "eth.src": "00:17:88:69:ee:e4",
16475 "eth.src_resolved": "PhilipsL_69:ee:e4",
16476 "eth.addr": "00:17:88:69:ee:e4",
16477 "eth.addr_resolved": "PhilipsL_69:ee:e4",
16481 "eth.type": "0x00000800"
16485 "ip.hdr_len": "20",
16486 "ip.dsfield": "0x00000000",
16487 "ip.dsfield_tree": {
16488 "ip.dsfield.dscp": "0",
16489 "ip.dsfield.ecn": "0"
16492 "ip.id": "0x00004d98",
16493 "ip.flags": "0x00000002",
16495 "ip.flags.rb": "0",
16496 "ip.flags.df": "1",
16499 "ip.frag_offset": "0",
16502 "ip.checksum": "0x00006b25",
16503 "ip.checksum.status": "2",
16504 "ip.src": "192.168.0.160",
16505 "ip.addr": "192.168.0.160",
16506 "ip.src_host": "192.168.0.160",
16507 "ip.host": "192.168.0.160",
16508 "ip.dst": "192.168.0.1",
16509 "ip.addr": "192.168.0.1",
16510 "ip.dst_host": "192.168.0.1",
16511 "ip.host": "192.168.0.1",
16512 "Source GeoIP: Unknown": "",
16513 "Destination GeoIP: Unknown": ""
16516 "udp.srcport": "53213",
16517 "udp.dstport": "53",
16518 "udp.port": "53213",
16520 "udp.length": "42",
16521 "udp.checksum": "0x00008922",
16522 "udp.checksum.status": "2",
16523 "udp.stream": "264"
16526 "dns.response_in": "21563",
16527 "dns.id": "0x000004b8",
16528 "dns.flags": "0x00000100",
16529 "dns.flags_tree": {
16530 "dns.flags.response": "0",
16531 "dns.flags.opcode": "0",
16532 "dns.flags.truncated": "0",
16533 "dns.flags.recdesired": "1",
16534 "dns.flags.z": "0",
16535 "dns.flags.checkdisable": "0"
16537 "dns.count.queries": "1",
16538 "dns.count.answers": "0",
16539 "dns.count.auth_rr": "0",
16540 "dns.count.add_rr": "0",
16542 "www2.meethue.com: type A, class IN": {
16543 "dns.qry.name": "www2.meethue.com",
16544 "dns.qry.name.len": "16",
16545 "dns.count.labels": "3",
16546 "dns.qry.type": "1",
16547 "dns.qry.class": "0x00000001"
16556 "_index": "packets-2017-10-26",
16557 "_type": "pcap_file",
16562 "frame.encap_type": "1",
16563 "frame.time": "Oct 19, 2017 23:07:52.617193000 PDT",
16564 "frame.offset_shift": "0.000000000",
16565 "frame.time_epoch": "1508479672.617193000",
16566 "frame.time_delta": "0.010836000",
16567 "frame.time_delta_displayed": "0.010836000",
16568 "frame.time_relative": "21960.211989000",
16569 "frame.number": "21563",
16570 "frame.len": "513",
16571 "frame.cap_len": "513",
16572 "frame.marked": "0",
16573 "frame.ignored": "0",
16574 "frame.protocols": "eth:ethertype:ip:udp:dns",
16575 "frame.coloring_rule.name": "UDP",
16576 "frame.coloring_rule.string": "udp"
16579 "eth.dst": "00:17:88:69:ee:e4",
16581 "eth.dst_resolved": "PhilipsL_69:ee:e4",
16582 "eth.addr": "00:17:88:69:ee:e4",
16583 "eth.addr_resolved": "PhilipsL_69:ee:e4",
16587 "eth.src": "b0:b9:8a:73:69:8e",
16589 "eth.src_resolved": "Netgear_73:69:8e",
16590 "eth.addr": "b0:b9:8a:73:69:8e",
16591 "eth.addr_resolved": "Netgear_73:69:8e",
16595 "eth.type": "0x00000800"
16599 "ip.hdr_len": "20",
16600 "ip.dsfield": "0x00000000",
16601 "ip.dsfield_tree": {
16602 "ip.dsfield.dscp": "0",
16603 "ip.dsfield.ecn": "0"
16606 "ip.id": "0x0000db65",
16607 "ip.flags": "0x00000002",
16609 "ip.flags.rb": "0",
16610 "ip.flags.df": "1",
16613 "ip.frag_offset": "0",
16616 "ip.checksum": "0x0000dba2",
16617 "ip.checksum.status": "2",
16618 "ip.src": "192.168.0.1",
16619 "ip.addr": "192.168.0.1",
16620 "ip.src_host": "192.168.0.1",
16621 "ip.host": "192.168.0.1",
16622 "ip.dst": "192.168.0.160",
16623 "ip.addr": "192.168.0.160",
16624 "ip.dst_host": "192.168.0.160",
16625 "ip.host": "192.168.0.160",
16626 "Source GeoIP: Unknown": "",
16627 "Destination GeoIP: Unknown": ""
16630 "udp.srcport": "53",
16631 "udp.dstport": "53213",
16633 "udp.port": "53213",
16634 "udp.length": "479",
16635 "udp.checksum": "0x000083e2",
16636 "udp.checksum.status": "2",
16637 "udp.stream": "264"
16640 "dns.response_to": "21562",
16641 "dns.time": "0.010836000",
16642 "dns.id": "0x000004b8",
16643 "dns.flags": "0x00008180",
16644 "dns.flags_tree": {
16645 "dns.flags.response": "1",
16646 "dns.flags.opcode": "0",
16647 "dns.flags.authoritative": "0",
16648 "dns.flags.truncated": "0",
16649 "dns.flags.recdesired": "1",
16650 "dns.flags.recavail": "1",
16651 "dns.flags.z": "0",
16652 "dns.flags.authenticated": "0",
16653 "dns.flags.checkdisable": "0",
16654 "dns.flags.rcode": "0"
16656 "dns.count.queries": "1",
16657 "dns.count.answers": "4",
16658 "dns.count.auth_rr": "9",
16659 "dns.count.add_rr": "9",
16661 "www2.meethue.com: type A, class IN": {
16662 "dns.qry.name": "www2.meethue.com",
16663 "dns.qry.name.len": "16",
16664 "dns.count.labels": "3",
16665 "dns.qry.type": "1",
16666 "dns.qry.class": "0x00000001"
16670 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
16671 "dns.resp.name": "www2.meethue.com",
16672 "dns.resp.type": "5",
16673 "dns.resp.class": "0x00000001",
16674 "dns.resp.ttl": "118",
16675 "dns.resp.len": "41",
16676 "dns.cname": "brands.lighting.philips.com.edgekey.net"
16678 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
16679 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
16680 "dns.resp.type": "5",
16681 "dns.resp.class": "0x00000001",
16682 "dns.resp.ttl": "13317",
16683 "dns.resp.len": "22",
16684 "dns.cname": "e15361.b.akamaiedge.net"
16686 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
16687 "dns.resp.name": "e15361.b.akamaiedge.net",
16688 "dns.resp.type": "1",
16689 "dns.resp.class": "0x00000001",
16690 "dns.resp.ttl": "20",
16691 "dns.resp.len": "4",
16692 "dns.a": "173.223.52.112"
16694 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
16695 "dns.resp.name": "e15361.b.akamaiedge.net",
16696 "dns.resp.type": "1",
16697 "dns.resp.class": "0x00000001",
16698 "dns.resp.ttl": "20",
16699 "dns.resp.len": "4",
16700 "dns.a": "173.223.52.125"
16703 "Authoritative nameservers": {
16704 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
16705 "dns.resp.name": "b.akamaiedge.net",
16706 "dns.resp.type": "2",
16707 "dns.resp.class": "0x00000001",
16708 "dns.resp.ttl": "3890",
16709 "dns.resp.len": "6",
16710 "dns.ns": "n1b.akamaiedge.net"
16712 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
16713 "dns.resp.name": "b.akamaiedge.net",
16714 "dns.resp.type": "2",
16715 "dns.resp.class": "0x00000001",
16716 "dns.resp.ttl": "3890",
16717 "dns.resp.len": "6",
16718 "dns.ns": "n7b.akamaiedge.net"
16720 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
16721 "dns.resp.name": "b.akamaiedge.net",
16722 "dns.resp.type": "2",
16723 "dns.resp.class": "0x00000001",
16724 "dns.resp.ttl": "3890",
16725 "dns.resp.len": "6",
16726 "dns.ns": "n2b.akamaiedge.net"
16728 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
16729 "dns.resp.name": "b.akamaiedge.net",
16730 "dns.resp.type": "2",
16731 "dns.resp.class": "0x00000001",
16732 "dns.resp.ttl": "3890",
16733 "dns.resp.len": "6",
16734 "dns.ns": "n0b.akamaiedge.net"
16736 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
16737 "dns.resp.name": "b.akamaiedge.net",
16738 "dns.resp.type": "2",
16739 "dns.resp.class": "0x00000001",
16740 "dns.resp.ttl": "3890",
16741 "dns.resp.len": "6",
16742 "dns.ns": "n4b.akamaiedge.net"
16744 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
16745 "dns.resp.name": "b.akamaiedge.net",
16746 "dns.resp.type": "2",
16747 "dns.resp.class": "0x00000001",
16748 "dns.resp.ttl": "3890",
16749 "dns.resp.len": "6",
16750 "dns.ns": "n5b.akamaiedge.net"
16752 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
16753 "dns.resp.name": "b.akamaiedge.net",
16754 "dns.resp.type": "2",
16755 "dns.resp.class": "0x00000001",
16756 "dns.resp.ttl": "3890",
16757 "dns.resp.len": "6",
16758 "dns.ns": "a0b.akamaiedge.net"
16760 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
16761 "dns.resp.name": "b.akamaiedge.net",
16762 "dns.resp.type": "2",
16763 "dns.resp.class": "0x00000001",
16764 "dns.resp.ttl": "3890",
16765 "dns.resp.len": "6",
16766 "dns.ns": "n3b.akamaiedge.net"
16768 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
16769 "dns.resp.name": "b.akamaiedge.net",
16770 "dns.resp.type": "2",
16771 "dns.resp.class": "0x00000001",
16772 "dns.resp.ttl": "3890",
16773 "dns.resp.len": "6",
16774 "dns.ns": "n6b.akamaiedge.net"
16777 "Additional records": {
16778 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
16779 "dns.resp.name": "n0b.akamaiedge.net",
16780 "dns.resp.type": "1",
16781 "dns.resp.class": "0x00000001",
16782 "dns.resp.ttl": "2206",
16783 "dns.resp.len": "4",
16784 "dns.a": "88.221.81.192"
16786 "n1b.akamaiedge.net: type A, class IN, addr 23.67.56.215": {
16787 "dns.resp.name": "n1b.akamaiedge.net",
16788 "dns.resp.type": "1",
16789 "dns.resp.class": "0x00000001",
16790 "dns.resp.ttl": "4917",
16791 "dns.resp.len": "4",
16792 "dns.a": "23.67.56.215"
16794 "n2b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
16795 "dns.resp.name": "n2b.akamaiedge.net",
16796 "dns.resp.type": "1",
16797 "dns.resp.class": "0x00000001",
16798 "dns.resp.ttl": "5420",
16799 "dns.resp.len": "4",
16800 "dns.a": "204.2.166.158"
16802 "n3b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
16803 "dns.resp.name": "n3b.akamaiedge.net",
16804 "dns.resp.type": "1",
16805 "dns.resp.class": "0x00000001",
16806 "dns.resp.ttl": "1605",
16807 "dns.resp.len": "4",
16808 "dns.a": "204.2.166.150"
16810 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.202": {
16811 "dns.resp.name": "n4b.akamaiedge.net",
16812 "dns.resp.type": "1",
16813 "dns.resp.class": "0x00000001",
16814 "dns.resp.ttl": "4512",
16815 "dns.resp.len": "4",
16816 "dns.a": "198.172.88.202"
16818 "n5b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
16819 "dns.resp.name": "n5b.akamaiedge.net",
16820 "dns.resp.type": "1",
16821 "dns.resp.class": "0x00000001",
16822 "dns.resp.ttl": "6261",
16823 "dns.resp.len": "4",
16824 "dns.a": "173.223.52.70"
16826 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.69": {
16827 "dns.resp.name": "n6b.akamaiedge.net",
16828 "dns.resp.type": "1",
16829 "dns.resp.class": "0x00000001",
16830 "dns.resp.ttl": "2067",
16831 "dns.resp.len": "4",
16832 "dns.a": "173.223.52.69"
16834 "n7b.akamaiedge.net: type A, class IN, addr 198.172.88.204": {
16835 "dns.resp.name": "n7b.akamaiedge.net",
16836 "dns.resp.type": "1",
16837 "dns.resp.class": "0x00000001",
16838 "dns.resp.ttl": "120",
16839 "dns.resp.len": "4",
16840 "dns.a": "198.172.88.204"
16842 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
16843 "dns.resp.name": "a0b.akamaiedge.net",
16844 "dns.resp.type": "28",
16845 "dns.resp.class": "0x00000001",
16846 "dns.resp.ttl": "5890",
16847 "dns.resp.len": "16",
16848 "dns.aaaa": "2600:1480:e800::c0"
16857 "_index": "packets-2017-10-26",
16858 "_type": "pcap_file",
16863 "frame.encap_type": "1",
16864 "frame.time": "Oct 19, 2017 23:22:52.625699000 PDT",
16865 "frame.offset_shift": "0.000000000",
16866 "frame.time_epoch": "1508480572.625699000",
16867 "frame.time_delta": "4.403118000",
16868 "frame.time_delta_displayed": "900.008506000",
16869 "frame.time_relative": "22860.220495000",
16870 "frame.number": "22346",
16872 "frame.cap_len": "76",
16873 "frame.marked": "0",
16874 "frame.ignored": "0",
16875 "frame.protocols": "eth:ethertype:ip:udp:dns",
16876 "frame.coloring_rule.name": "UDP",
16877 "frame.coloring_rule.string": "udp"
16880 "eth.dst": "b0:b9:8a:73:69:8e",
16882 "eth.dst_resolved": "Netgear_73:69:8e",
16883 "eth.addr": "b0:b9:8a:73:69:8e",
16884 "eth.addr_resolved": "Netgear_73:69:8e",
16888 "eth.src": "00:17:88:69:ee:e4",
16890 "eth.src_resolved": "PhilipsL_69:ee:e4",
16891 "eth.addr": "00:17:88:69:ee:e4",
16892 "eth.addr_resolved": "PhilipsL_69:ee:e4",
16896 "eth.type": "0x00000800"
16900 "ip.hdr_len": "20",
16901 "ip.dsfield": "0x00000000",
16902 "ip.dsfield_tree": {
16903 "ip.dsfield.dscp": "0",
16904 "ip.dsfield.ecn": "0"
16907 "ip.id": "0x00005937",
16908 "ip.flags": "0x00000002",
16910 "ip.flags.rb": "0",
16911 "ip.flags.df": "1",
16914 "ip.frag_offset": "0",
16917 "ip.checksum": "0x00005f86",
16918 "ip.checksum.status": "2",
16919 "ip.src": "192.168.0.160",
16920 "ip.addr": "192.168.0.160",
16921 "ip.src_host": "192.168.0.160",
16922 "ip.host": "192.168.0.160",
16923 "ip.dst": "192.168.0.1",
16924 "ip.addr": "192.168.0.1",
16925 "ip.dst_host": "192.168.0.1",
16926 "ip.host": "192.168.0.1",
16927 "Source GeoIP: Unknown": "",
16928 "Destination GeoIP: Unknown": ""
16931 "udp.srcport": "33001",
16932 "udp.dstport": "53",
16933 "udp.port": "33001",
16935 "udp.length": "42",
16936 "udp.checksum": "0x0000d815",
16937 "udp.checksum.status": "2",
16938 "udp.stream": "268"
16941 "dns.response_in": "22347",
16942 "dns.id": "0x000004b9",
16943 "dns.flags": "0x00000100",
16944 "dns.flags_tree": {
16945 "dns.flags.response": "0",
16946 "dns.flags.opcode": "0",
16947 "dns.flags.truncated": "0",
16948 "dns.flags.recdesired": "1",
16949 "dns.flags.z": "0",
16950 "dns.flags.checkdisable": "0"
16952 "dns.count.queries": "1",
16953 "dns.count.answers": "0",
16954 "dns.count.auth_rr": "0",
16955 "dns.count.add_rr": "0",
16957 "www2.meethue.com: type A, class IN": {
16958 "dns.qry.name": "www2.meethue.com",
16959 "dns.qry.name.len": "16",
16960 "dns.count.labels": "3",
16961 "dns.qry.type": "1",
16962 "dns.qry.class": "0x00000001"
16971 "_index": "packets-2017-10-26",
16972 "_type": "pcap_file",
16977 "frame.encap_type": "1",
16978 "frame.time": "Oct 19, 2017 23:22:52.650694000 PDT",
16979 "frame.offset_shift": "0.000000000",
16980 "frame.time_epoch": "1508480572.650694000",
16981 "frame.time_delta": "0.024995000",
16982 "frame.time_delta_displayed": "0.024995000",
16983 "frame.time_relative": "22860.245490000",
16984 "frame.number": "22347",
16985 "frame.len": "513",
16986 "frame.cap_len": "513",
16987 "frame.marked": "0",
16988 "frame.ignored": "0",
16989 "frame.protocols": "eth:ethertype:ip:udp:dns",
16990 "frame.coloring_rule.name": "UDP",
16991 "frame.coloring_rule.string": "udp"
16994 "eth.dst": "00:17:88:69:ee:e4",
16996 "eth.dst_resolved": "PhilipsL_69:ee:e4",
16997 "eth.addr": "00:17:88:69:ee:e4",
16998 "eth.addr_resolved": "PhilipsL_69:ee:e4",
17002 "eth.src": "b0:b9:8a:73:69:8e",
17004 "eth.src_resolved": "Netgear_73:69:8e",
17005 "eth.addr": "b0:b9:8a:73:69:8e",
17006 "eth.addr_resolved": "Netgear_73:69:8e",
17010 "eth.type": "0x00000800"
17014 "ip.hdr_len": "20",
17015 "ip.dsfield": "0x00000000",
17016 "ip.dsfield_tree": {
17017 "ip.dsfield.dscp": "0",
17018 "ip.dsfield.ecn": "0"
17021 "ip.id": "0x0000d12d",
17022 "ip.flags": "0x00000002",
17024 "ip.flags.rb": "0",
17025 "ip.flags.df": "1",
17028 "ip.frag_offset": "0",
17031 "ip.checksum": "0x0000e5da",
17032 "ip.checksum.status": "2",
17033 "ip.src": "192.168.0.1",
17034 "ip.addr": "192.168.0.1",
17035 "ip.src_host": "192.168.0.1",
17036 "ip.host": "192.168.0.1",
17037 "ip.dst": "192.168.0.160",
17038 "ip.addr": "192.168.0.160",
17039 "ip.dst_host": "192.168.0.160",
17040 "ip.host": "192.168.0.160",
17041 "Source GeoIP: Unknown": "",
17042 "Destination GeoIP: Unknown": ""
17045 "udp.srcport": "53",
17046 "udp.dstport": "33001",
17048 "udp.port": "33001",
17049 "udp.length": "479",
17050 "udp.checksum": "0x000083e2",
17051 "udp.checksum.status": "2",
17052 "udp.stream": "268"
17055 "dns.response_to": "22346",
17056 "dns.time": "0.024995000",
17057 "dns.id": "0x000004b9",
17058 "dns.flags": "0x00008180",
17059 "dns.flags_tree": {
17060 "dns.flags.response": "1",
17061 "dns.flags.opcode": "0",
17062 "dns.flags.authoritative": "0",
17063 "dns.flags.truncated": "0",
17064 "dns.flags.recdesired": "1",
17065 "dns.flags.recavail": "1",
17066 "dns.flags.z": "0",
17067 "dns.flags.authenticated": "0",
17068 "dns.flags.checkdisable": "0",
17069 "dns.flags.rcode": "0"
17071 "dns.count.queries": "1",
17072 "dns.count.answers": "4",
17073 "dns.count.auth_rr": "9",
17074 "dns.count.add_rr": "9",
17076 "www2.meethue.com: type A, class IN": {
17077 "dns.qry.name": "www2.meethue.com",
17078 "dns.qry.name.len": "16",
17079 "dns.count.labels": "3",
17080 "dns.qry.type": "1",
17081 "dns.qry.class": "0x00000001"
17085 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
17086 "dns.resp.name": "www2.meethue.com",
17087 "dns.resp.type": "5",
17088 "dns.resp.class": "0x00000001",
17089 "dns.resp.ttl": "143",
17090 "dns.resp.len": "41",
17091 "dns.cname": "brands.lighting.philips.com.edgekey.net"
17093 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
17094 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
17095 "dns.resp.type": "5",
17096 "dns.resp.class": "0x00000001",
17097 "dns.resp.ttl": "14058",
17098 "dns.resp.len": "22",
17099 "dns.cname": "e15361.b.akamaiedge.net"
17101 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
17102 "dns.resp.name": "e15361.b.akamaiedge.net",
17103 "dns.resp.type": "1",
17104 "dns.resp.class": "0x00000001",
17105 "dns.resp.ttl": "20",
17106 "dns.resp.len": "4",
17107 "dns.a": "173.223.52.112"
17109 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
17110 "dns.resp.name": "e15361.b.akamaiedge.net",
17111 "dns.resp.type": "1",
17112 "dns.resp.class": "0x00000001",
17113 "dns.resp.ttl": "20",
17114 "dns.resp.len": "4",
17115 "dns.a": "173.223.52.125"
17118 "Authoritative nameservers": {
17119 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
17120 "dns.resp.name": "b.akamaiedge.net",
17121 "dns.resp.type": "2",
17122 "dns.resp.class": "0x00000001",
17123 "dns.resp.ttl": "1074",
17124 "dns.resp.len": "6",
17125 "dns.ns": "n2b.akamaiedge.net"
17127 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
17128 "dns.resp.name": "b.akamaiedge.net",
17129 "dns.resp.type": "2",
17130 "dns.resp.class": "0x00000001",
17131 "dns.resp.ttl": "1074",
17132 "dns.resp.len": "6",
17133 "dns.ns": "n7b.akamaiedge.net"
17135 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
17136 "dns.resp.name": "b.akamaiedge.net",
17137 "dns.resp.type": "2",
17138 "dns.resp.class": "0x00000001",
17139 "dns.resp.ttl": "1074",
17140 "dns.resp.len": "6",
17141 "dns.ns": "n1b.akamaiedge.net"
17143 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
17144 "dns.resp.name": "b.akamaiedge.net",
17145 "dns.resp.type": "2",
17146 "dns.resp.class": "0x00000001",
17147 "dns.resp.ttl": "1074",
17148 "dns.resp.len": "6",
17149 "dns.ns": "n5b.akamaiedge.net"
17151 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
17152 "dns.resp.name": "b.akamaiedge.net",
17153 "dns.resp.type": "2",
17154 "dns.resp.class": "0x00000001",
17155 "dns.resp.ttl": "1074",
17156 "dns.resp.len": "6",
17157 "dns.ns": "a0b.akamaiedge.net"
17159 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
17160 "dns.resp.name": "b.akamaiedge.net",
17161 "dns.resp.type": "2",
17162 "dns.resp.class": "0x00000001",
17163 "dns.resp.ttl": "1074",
17164 "dns.resp.len": "6",
17165 "dns.ns": "n6b.akamaiedge.net"
17167 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
17168 "dns.resp.name": "b.akamaiedge.net",
17169 "dns.resp.type": "2",
17170 "dns.resp.class": "0x00000001",
17171 "dns.resp.ttl": "1074",
17172 "dns.resp.len": "6",
17173 "dns.ns": "n3b.akamaiedge.net"
17175 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
17176 "dns.resp.name": "b.akamaiedge.net",
17177 "dns.resp.type": "2",
17178 "dns.resp.class": "0x00000001",
17179 "dns.resp.ttl": "1074",
17180 "dns.resp.len": "6",
17181 "dns.ns": "n0b.akamaiedge.net"
17183 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
17184 "dns.resp.name": "b.akamaiedge.net",
17185 "dns.resp.type": "2",
17186 "dns.resp.class": "0x00000001",
17187 "dns.resp.ttl": "1074",
17188 "dns.resp.len": "6",
17189 "dns.ns": "n4b.akamaiedge.net"
17192 "Additional records": {
17193 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
17194 "dns.resp.name": "n0b.akamaiedge.net",
17195 "dns.resp.type": "1",
17196 "dns.resp.class": "0x00000001",
17197 "dns.resp.ttl": "3601",
17198 "dns.resp.len": "4",
17199 "dns.a": "88.221.81.192"
17201 "n1b.akamaiedge.net: type A, class IN, addr 198.172.88.208": {
17202 "dns.resp.name": "n1b.akamaiedge.net",
17203 "dns.resp.type": "1",
17204 "dns.resp.class": "0x00000001",
17205 "dns.resp.ttl": "139",
17206 "dns.resp.len": "4",
17207 "dns.a": "198.172.88.208"
17209 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
17210 "dns.resp.name": "n2b.akamaiedge.net",
17211 "dns.resp.type": "1",
17212 "dns.resp.class": "0x00000001",
17213 "dns.resp.ttl": "2915",
17214 "dns.resp.len": "4",
17215 "dns.a": "173.223.52.108"
17217 "n3b.akamaiedge.net: type A, class IN, addr 165.254.134.239": {
17218 "dns.resp.name": "n3b.akamaiedge.net",
17219 "dns.resp.type": "1",
17220 "dns.resp.class": "0x00000001",
17221 "dns.resp.ttl": "2980",
17222 "dns.resp.len": "4",
17223 "dns.a": "165.254.134.239"
17225 "n4b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
17226 "dns.resp.name": "n4b.akamaiedge.net",
17227 "dns.resp.type": "1",
17228 "dns.resp.class": "0x00000001",
17229 "dns.resp.ttl": "1387",
17230 "dns.resp.len": "4",
17231 "dns.a": "173.223.52.70"
17233 "n5b.akamaiedge.net: type A, class IN, addr 96.17.70.191": {
17234 "dns.resp.name": "n5b.akamaiedge.net",
17235 "dns.resp.type": "1",
17236 "dns.resp.class": "0x00000001",
17237 "dns.resp.ttl": "7943",
17238 "dns.resp.len": "4",
17239 "dns.a": "96.17.70.191"
17241 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
17242 "dns.resp.name": "n6b.akamaiedge.net",
17243 "dns.resp.type": "1",
17244 "dns.resp.class": "0x00000001",
17245 "dns.resp.ttl": "3523",
17246 "dns.resp.len": "4",
17247 "dns.a": "173.223.52.70"
17249 "n7b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
17250 "dns.resp.name": "n7b.akamaiedge.net",
17251 "dns.resp.type": "1",
17252 "dns.resp.class": "0x00000001",
17253 "dns.resp.ttl": "5628",
17254 "dns.resp.len": "4",
17255 "dns.a": "204.1.137.41"
17257 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
17258 "dns.resp.name": "a0b.akamaiedge.net",
17259 "dns.resp.type": "28",
17260 "dns.resp.class": "0x00000001",
17261 "dns.resp.ttl": "2078",
17262 "dns.resp.len": "16",
17263 "dns.aaaa": "2600:1480:e800::c0"
17272 "_index": "packets-2017-10-26",
17273 "_type": "pcap_file",
17278 "frame.encap_type": "1",
17279 "frame.time": "Oct 19, 2017 23:33:22.664730000 PDT",
17280 "frame.offset_shift": "0.000000000",
17281 "frame.time_epoch": "1508481202.664730000",
17282 "frame.time_delta": "2.566341000",
17283 "frame.time_delta_displayed": "630.014036000",
17284 "frame.time_relative": "23490.259526000",
17285 "frame.number": "22859",
17287 "frame.cap_len": "79",
17288 "frame.marked": "0",
17289 "frame.ignored": "0",
17290 "frame.protocols": "eth:ethertype:ip:udp:dns",
17291 "frame.coloring_rule.name": "UDP",
17292 "frame.coloring_rule.string": "udp"
17295 "eth.dst": "b0:b9:8a:73:69:8e",
17297 "eth.dst_resolved": "Netgear_73:69:8e",
17298 "eth.addr": "b0:b9:8a:73:69:8e",
17299 "eth.addr_resolved": "Netgear_73:69:8e",
17303 "eth.src": "00:17:88:69:ee:e4",
17305 "eth.src_resolved": "PhilipsL_69:ee:e4",
17306 "eth.addr": "00:17:88:69:ee:e4",
17307 "eth.addr_resolved": "PhilipsL_69:ee:e4",
17311 "eth.type": "0x00000800"
17315 "ip.hdr_len": "20",
17316 "ip.dsfield": "0x00000000",
17317 "ip.dsfield_tree": {
17318 "ip.dsfield.dscp": "0",
17319 "ip.dsfield.ecn": "0"
17322 "ip.id": "0x00007d2e",
17323 "ip.flags": "0x00000002",
17325 "ip.flags.rb": "0",
17326 "ip.flags.df": "1",
17329 "ip.frag_offset": "0",
17332 "ip.checksum": "0x00003b8c",
17333 "ip.checksum.status": "2",
17334 "ip.src": "192.168.0.160",
17335 "ip.addr": "192.168.0.160",
17336 "ip.src_host": "192.168.0.160",
17337 "ip.host": "192.168.0.160",
17338 "ip.dst": "192.168.0.1",
17339 "ip.addr": "192.168.0.1",
17340 "ip.dst_host": "192.168.0.1",
17341 "ip.host": "192.168.0.1",
17342 "Source GeoIP: Unknown": "",
17343 "Destination GeoIP: Unknown": ""
17346 "udp.srcport": "58340",
17347 "udp.dstport": "53",
17348 "udp.port": "58340",
17350 "udp.length": "45",
17351 "udp.checksum": "0x0000dc9e",
17352 "udp.checksum.status": "2",
17353 "udp.stream": "271"
17356 "dns.response_in": "22860",
17357 "dns.id": "0x000004ba",
17358 "dns.flags": "0x00000100",
17359 "dns.flags_tree": {
17360 "dns.flags.response": "0",
17361 "dns.flags.opcode": "0",
17362 "dns.flags.truncated": "0",
17363 "dns.flags.recdesired": "1",
17364 "dns.flags.z": "0",
17365 "dns.flags.checkdisable": "0"
17367 "dns.count.queries": "1",
17368 "dns.count.answers": "0",
17369 "dns.count.auth_rr": "0",
17370 "dns.count.add_rr": "0",
17372 "dcp.cpp.philips.com: type AAAA, class IN": {
17373 "dns.qry.name": "dcp.cpp.philips.com",
17374 "dns.qry.name.len": "19",
17375 "dns.count.labels": "4",
17376 "dns.qry.type": "28",
17377 "dns.qry.class": "0x00000001"
17386 "_index": "packets-2017-10-26",
17387 "_type": "pcap_file",
17392 "frame.encap_type": "1",
17393 "frame.time": "Oct 19, 2017 23:33:22.666597000 PDT",
17394 "frame.offset_shift": "0.000000000",
17395 "frame.time_epoch": "1508481202.666597000",
17396 "frame.time_delta": "0.001867000",
17397 "frame.time_delta_displayed": "0.001867000",
17398 "frame.time_relative": "23490.261393000",
17399 "frame.number": "22860",
17400 "frame.len": "137",
17401 "frame.cap_len": "137",
17402 "frame.marked": "0",
17403 "frame.ignored": "0",
17404 "frame.protocols": "eth:ethertype:ip:udp:dns",
17405 "frame.coloring_rule.name": "UDP",
17406 "frame.coloring_rule.string": "udp"
17409 "eth.dst": "00:17:88:69:ee:e4",
17411 "eth.dst_resolved": "PhilipsL_69:ee:e4",
17412 "eth.addr": "00:17:88:69:ee:e4",
17413 "eth.addr_resolved": "PhilipsL_69:ee:e4",
17417 "eth.src": "b0:b9:8a:73:69:8e",
17419 "eth.src_resolved": "Netgear_73:69:8e",
17420 "eth.addr": "b0:b9:8a:73:69:8e",
17421 "eth.addr_resolved": "Netgear_73:69:8e",
17425 "eth.type": "0x00000800"
17429 "ip.hdr_len": "20",
17430 "ip.dsfield": "0x00000000",
17431 "ip.dsfield_tree": {
17432 "ip.dsfield.dscp": "0",
17433 "ip.dsfield.ecn": "0"
17436 "ip.id": "0x00008ce9",
17437 "ip.flags": "0x00000002",
17439 "ip.flags.rb": "0",
17440 "ip.flags.df": "1",
17443 "ip.frag_offset": "0",
17446 "ip.checksum": "0x00002b97",
17447 "ip.checksum.status": "2",
17448 "ip.src": "192.168.0.1",
17449 "ip.addr": "192.168.0.1",
17450 "ip.src_host": "192.168.0.1",
17451 "ip.host": "192.168.0.1",
17452 "ip.dst": "192.168.0.160",
17453 "ip.addr": "192.168.0.160",
17454 "ip.dst_host": "192.168.0.160",
17455 "ip.host": "192.168.0.160",
17456 "Source GeoIP: Unknown": "",
17457 "Destination GeoIP: Unknown": ""
17460 "udp.srcport": "53",
17461 "udp.dstport": "58340",
17463 "udp.port": "58340",
17464 "udp.length": "103",
17465 "udp.checksum": "0x0000826a",
17466 "udp.checksum.status": "2",
17467 "udp.stream": "271"
17470 "dns.response_to": "22859",
17471 "dns.time": "0.001867000",
17472 "dns.id": "0x000004ba",
17473 "dns.flags": "0x00008180",
17474 "dns.flags_tree": {
17475 "dns.flags.response": "1",
17476 "dns.flags.opcode": "0",
17477 "dns.flags.authoritative": "0",
17478 "dns.flags.truncated": "0",
17479 "dns.flags.recdesired": "1",
17480 "dns.flags.recavail": "1",
17481 "dns.flags.z": "0",
17482 "dns.flags.authenticated": "0",
17483 "dns.flags.checkdisable": "0",
17484 "dns.flags.rcode": "0"
17486 "dns.count.queries": "1",
17487 "dns.count.answers": "0",
17488 "dns.count.auth_rr": "1",
17489 "dns.count.add_rr": "0",
17491 "dcp.cpp.philips.com: type AAAA, class IN": {
17492 "dns.qry.name": "dcp.cpp.philips.com",
17493 "dns.qry.name.len": "19",
17494 "dns.count.labels": "4",
17495 "dns.qry.type": "28",
17496 "dns.qry.class": "0x00000001"
17499 "Authoritative nameservers": {
17500 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
17501 "dns.resp.name": "cpp.philips.com",
17502 "dns.resp.type": "6",
17503 "dns.resp.class": "0x00000001",
17504 "dns.resp.ttl": "3219",
17505 "dns.resp.len": "46",
17506 "dns.soa.mname": "ns1.ext.philips.com",
17507 "dns.soa.rname": "ddi-authority.philips.com",
17508 "dns.soa.serial_number": "387",
17509 "dns.soa.refresh_interval": "1200",
17510 "dns.soa.retry_interval": "300",
17511 "dns.soa.expire_limit": "1209600",
17512 "dns.soa.mininum_ttl": "3600"
17521 "_index": "packets-2017-10-26",
17522 "_type": "pcap_file",
17527 "frame.encap_type": "1",
17528 "frame.time": "Oct 19, 2017 23:33:22.667494000 PDT",
17529 "frame.offset_shift": "0.000000000",
17530 "frame.time_epoch": "1508481202.667494000",
17531 "frame.time_delta": "0.000897000",
17532 "frame.time_delta_displayed": "0.000897000",
17533 "frame.time_relative": "23490.262290000",
17534 "frame.number": "22861",
17536 "frame.cap_len": "79",
17537 "frame.marked": "0",
17538 "frame.ignored": "0",
17539 "frame.protocols": "eth:ethertype:ip:udp:dns",
17540 "frame.coloring_rule.name": "UDP",
17541 "frame.coloring_rule.string": "udp"
17544 "eth.dst": "b0:b9:8a:73:69:8e",
17546 "eth.dst_resolved": "Netgear_73:69:8e",
17547 "eth.addr": "b0:b9:8a:73:69:8e",
17548 "eth.addr_resolved": "Netgear_73:69:8e",
17552 "eth.src": "00:17:88:69:ee:e4",
17554 "eth.src_resolved": "PhilipsL_69:ee:e4",
17555 "eth.addr": "00:17:88:69:ee:e4",
17556 "eth.addr_resolved": "PhilipsL_69:ee:e4",
17560 "eth.type": "0x00000800"
17564 "ip.hdr_len": "20",
17565 "ip.dsfield": "0x00000000",
17566 "ip.dsfield_tree": {
17567 "ip.dsfield.dscp": "0",
17568 "ip.dsfield.ecn": "0"
17571 "ip.id": "0x00007d2f",
17572 "ip.flags": "0x00000002",
17574 "ip.flags.rb": "0",
17575 "ip.flags.df": "1",
17578 "ip.frag_offset": "0",
17581 "ip.checksum": "0x00003b8b",
17582 "ip.checksum.status": "2",
17583 "ip.src": "192.168.0.160",
17584 "ip.addr": "192.168.0.160",
17585 "ip.src_host": "192.168.0.160",
17586 "ip.host": "192.168.0.160",
17587 "ip.dst": "192.168.0.1",
17588 "ip.addr": "192.168.0.1",
17589 "ip.dst_host": "192.168.0.1",
17590 "ip.host": "192.168.0.1",
17591 "Source GeoIP: Unknown": "",
17592 "Destination GeoIP: Unknown": ""
17595 "udp.srcport": "52564",
17596 "udp.dstport": "53",
17597 "udp.port": "52564",
17599 "udp.length": "45",
17600 "udp.checksum": "0x00000e2e",
17601 "udp.checksum.status": "2",
17602 "udp.stream": "272"
17605 "dns.response_in": "22862",
17606 "dns.id": "0x000004bb",
17607 "dns.flags": "0x00000100",
17608 "dns.flags_tree": {
17609 "dns.flags.response": "0",
17610 "dns.flags.opcode": "0",
17611 "dns.flags.truncated": "0",
17612 "dns.flags.recdesired": "1",
17613 "dns.flags.z": "0",
17614 "dns.flags.checkdisable": "0"
17616 "dns.count.queries": "1",
17617 "dns.count.answers": "0",
17618 "dns.count.auth_rr": "0",
17619 "dns.count.add_rr": "0",
17621 "dcp.cpp.philips.com: type A, class IN": {
17622 "dns.qry.name": "dcp.cpp.philips.com",
17623 "dns.qry.name.len": "19",
17624 "dns.count.labels": "4",
17625 "dns.qry.type": "1",
17626 "dns.qry.class": "0x00000001"
17635 "_index": "packets-2017-10-26",
17636 "_type": "pcap_file",
17641 "frame.encap_type": "1",
17642 "frame.time": "Oct 19, 2017 23:33:22.669032000 PDT",
17643 "frame.offset_shift": "0.000000000",
17644 "frame.time_epoch": "1508481202.669032000",
17645 "frame.time_delta": "0.001538000",
17646 "frame.time_delta_displayed": "0.001538000",
17647 "frame.time_relative": "23490.263828000",
17648 "frame.number": "22862",
17649 "frame.len": "269",
17650 "frame.cap_len": "269",
17651 "frame.marked": "0",
17652 "frame.ignored": "0",
17653 "frame.protocols": "eth:ethertype:ip:udp:dns",
17654 "frame.coloring_rule.name": "UDP",
17655 "frame.coloring_rule.string": "udp"
17658 "eth.dst": "00:17:88:69:ee:e4",
17660 "eth.dst_resolved": "PhilipsL_69:ee:e4",
17661 "eth.addr": "00:17:88:69:ee:e4",
17662 "eth.addr_resolved": "PhilipsL_69:ee:e4",
17666 "eth.src": "b0:b9:8a:73:69:8e",
17668 "eth.src_resolved": "Netgear_73:69:8e",
17669 "eth.addr": "b0:b9:8a:73:69:8e",
17670 "eth.addr_resolved": "Netgear_73:69:8e",
17674 "eth.type": "0x00000800"
17678 "ip.hdr_len": "20",
17679 "ip.dsfield": "0x00000000",
17680 "ip.dsfield_tree": {
17681 "ip.dsfield.dscp": "0",
17682 "ip.dsfield.ecn": "0"
17685 "ip.id": "0x00008cea",
17686 "ip.flags": "0x00000002",
17688 "ip.flags.rb": "0",
17689 "ip.flags.df": "1",
17692 "ip.frag_offset": "0",
17695 "ip.checksum": "0x00002b12",
17696 "ip.checksum.status": "2",
17697 "ip.src": "192.168.0.1",
17698 "ip.addr": "192.168.0.1",
17699 "ip.src_host": "192.168.0.1",
17700 "ip.host": "192.168.0.1",
17701 "ip.dst": "192.168.0.160",
17702 "ip.addr": "192.168.0.160",
17703 "ip.dst_host": "192.168.0.160",
17704 "ip.host": "192.168.0.160",
17705 "Source GeoIP: Unknown": "",
17706 "Destination GeoIP: Unknown": ""
17709 "udp.srcport": "53",
17710 "udp.dstport": "52564",
17712 "udp.port": "52564",
17713 "udp.length": "235",
17714 "udp.checksum": "0x000082ee",
17715 "udp.checksum.status": "2",
17716 "udp.stream": "272"
17719 "dns.response_to": "22861",
17720 "dns.time": "0.001538000",
17721 "dns.id": "0x000004bb",
17722 "dns.flags": "0x00008180",
17723 "dns.flags_tree": {
17724 "dns.flags.response": "1",
17725 "dns.flags.opcode": "0",
17726 "dns.flags.authoritative": "0",
17727 "dns.flags.truncated": "0",
17728 "dns.flags.recdesired": "1",
17729 "dns.flags.recavail": "1",
17730 "dns.flags.z": "0",
17731 "dns.flags.authenticated": "0",
17732 "dns.flags.checkdisable": "0",
17733 "dns.flags.rcode": "0"
17735 "dns.count.queries": "1",
17736 "dns.count.answers": "1",
17737 "dns.count.auth_rr": "3",
17738 "dns.count.add_rr": "5",
17740 "dcp.cpp.philips.com: type A, class IN": {
17741 "dns.qry.name": "dcp.cpp.philips.com",
17742 "dns.qry.name.len": "19",
17743 "dns.count.labels": "4",
17744 "dns.qry.type": "1",
17745 "dns.qry.class": "0x00000001"
17749 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
17750 "dns.resp.name": "dcp.cpp.philips.com",
17751 "dns.resp.type": "1",
17752 "dns.resp.class": "0x00000001",
17753 "dns.resp.ttl": "3220",
17754 "dns.resp.len": "4",
17755 "dns.a": "5.79.62.93"
17758 "Authoritative nameservers": {
17759 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
17760 "dns.resp.name": "cpp.philips.com",
17761 "dns.resp.type": "2",
17762 "dns.resp.class": "0x00000001",
17763 "dns.resp.ttl": "688",
17764 "dns.resp.len": "10",
17765 "dns.ns": "ns3.ext.philips.com"
17767 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
17768 "dns.resp.name": "cpp.philips.com",
17769 "dns.resp.type": "2",
17770 "dns.resp.class": "0x00000001",
17771 "dns.resp.ttl": "688",
17772 "dns.resp.len": "6",
17773 "dns.ns": "ns1.ext.philips.com"
17775 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
17776 "dns.resp.name": "cpp.philips.com",
17777 "dns.resp.type": "2",
17778 "dns.resp.class": "0x00000001",
17779 "dns.resp.ttl": "688",
17780 "dns.resp.len": "6",
17781 "dns.ns": "ns2.ext.philips.com"
17784 "Additional records": {
17785 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
17786 "dns.resp.name": "ns2.ext.philips.com",
17787 "dns.resp.type": "1",
17788 "dns.resp.class": "0x00000001",
17789 "dns.resp.ttl": "153574",
17790 "dns.resp.len": "4",
17791 "dns.a": "57.77.21.76"
17793 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
17794 "dns.resp.name": "ns3.ext.philips.com",
17795 "dns.resp.type": "1",
17796 "dns.resp.class": "0x00000001",
17797 "dns.resp.ttl": "153574",
17798 "dns.resp.len": "4",
17799 "dns.a": "57.73.36.68"
17801 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
17802 "dns.resp.name": "ns1.ext.philips.com",
17803 "dns.resp.type": "28",
17804 "dns.resp.class": "0x00000001",
17805 "dns.resp.ttl": "171829",
17806 "dns.resp.len": "16",
17807 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
17809 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
17810 "dns.resp.name": "ns2.ext.philips.com",
17811 "dns.resp.type": "28",
17812 "dns.resp.class": "0x00000001",
17813 "dns.resp.ttl": "43551",
17814 "dns.resp.len": "16",
17815 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
17817 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
17818 "dns.resp.name": "ns3.ext.philips.com",
17819 "dns.resp.type": "28",
17820 "dns.resp.class": "0x00000001",
17821 "dns.resp.ttl": "43551",
17822 "dns.resp.len": "16",
17823 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
17832 "_index": "packets-2017-10-26",
17833 "_type": "pcap_file",
17838 "frame.encap_type": "1",
17839 "frame.time": "Oct 19, 2017 23:33:23.087037000 PDT",
17840 "frame.offset_shift": "0.000000000",
17841 "frame.time_epoch": "1508481203.087037000",
17842 "frame.time_delta": "0.001271000",
17843 "frame.time_delta_displayed": "0.418005000",
17844 "frame.time_relative": "23490.681833000",
17845 "frame.number": "22878",
17847 "frame.cap_len": "79",
17848 "frame.marked": "0",
17849 "frame.ignored": "0",
17850 "frame.protocols": "eth:ethertype:ip:udp:dns",
17851 "frame.coloring_rule.name": "UDP",
17852 "frame.coloring_rule.string": "udp"
17855 "eth.dst": "b0:b9:8a:73:69:8e",
17857 "eth.dst_resolved": "Netgear_73:69:8e",
17858 "eth.addr": "b0:b9:8a:73:69:8e",
17859 "eth.addr_resolved": "Netgear_73:69:8e",
17863 "eth.src": "00:17:88:69:ee:e4",
17865 "eth.src_resolved": "PhilipsL_69:ee:e4",
17866 "eth.addr": "00:17:88:69:ee:e4",
17867 "eth.addr_resolved": "PhilipsL_69:ee:e4",
17871 "eth.type": "0x00000800"
17875 "ip.hdr_len": "20",
17876 "ip.dsfield": "0x00000000",
17877 "ip.dsfield_tree": {
17878 "ip.dsfield.dscp": "0",
17879 "ip.dsfield.ecn": "0"
17882 "ip.id": "0x00007d4c",
17883 "ip.flags": "0x00000002",
17885 "ip.flags.rb": "0",
17886 "ip.flags.df": "1",
17889 "ip.frag_offset": "0",
17892 "ip.checksum": "0x00003b6e",
17893 "ip.checksum.status": "2",
17894 "ip.src": "192.168.0.160",
17895 "ip.addr": "192.168.0.160",
17896 "ip.src_host": "192.168.0.160",
17897 "ip.host": "192.168.0.160",
17898 "ip.dst": "192.168.0.1",
17899 "ip.addr": "192.168.0.1",
17900 "ip.dst_host": "192.168.0.1",
17901 "ip.host": "192.168.0.1",
17902 "Source GeoIP: Unknown": "",
17903 "Destination GeoIP: Unknown": ""
17906 "udp.srcport": "37188",
17907 "udp.dstport": "53",
17908 "udp.port": "37188",
17910 "udp.length": "45",
17911 "udp.checksum": "0x00002f3d",
17912 "udp.checksum.status": "2",
17913 "udp.stream": "273"
17916 "dns.response_in": "22879",
17917 "dns.id": "0x000004bc",
17918 "dns.flags": "0x00000100",
17919 "dns.flags_tree": {
17920 "dns.flags.response": "0",
17921 "dns.flags.opcode": "0",
17922 "dns.flags.truncated": "0",
17923 "dns.flags.recdesired": "1",
17924 "dns.flags.z": "0",
17925 "dns.flags.checkdisable": "0"
17927 "dns.count.queries": "1",
17928 "dns.count.answers": "0",
17929 "dns.count.auth_rr": "0",
17930 "dns.count.add_rr": "0",
17932 "dcp.cpp.philips.com: type AAAA, class IN": {
17933 "dns.qry.name": "dcp.cpp.philips.com",
17934 "dns.qry.name.len": "19",
17935 "dns.count.labels": "4",
17936 "dns.qry.type": "28",
17937 "dns.qry.class": "0x00000001"
17946 "_index": "packets-2017-10-26",
17947 "_type": "pcap_file",
17952 "frame.encap_type": "1",
17953 "frame.time": "Oct 19, 2017 23:33:23.087591000 PDT",
17954 "frame.offset_shift": "0.000000000",
17955 "frame.time_epoch": "1508481203.087591000",
17956 "frame.time_delta": "0.000554000",
17957 "frame.time_delta_displayed": "0.000554000",
17958 "frame.time_relative": "23490.682387000",
17959 "frame.number": "22879",
17961 "frame.cap_len": "79",
17962 "frame.marked": "0",
17963 "frame.ignored": "0",
17964 "frame.protocols": "eth:ethertype:ip:udp:dns",
17965 "frame.coloring_rule.name": "UDP",
17966 "frame.coloring_rule.string": "udp"
17969 "eth.dst": "00:17:88:69:ee:e4",
17971 "eth.dst_resolved": "PhilipsL_69:ee:e4",
17972 "eth.addr": "00:17:88:69:ee:e4",
17973 "eth.addr_resolved": "PhilipsL_69:ee:e4",
17977 "eth.src": "b0:b9:8a:73:69:8e",
17979 "eth.src_resolved": "Netgear_73:69:8e",
17980 "eth.addr": "b0:b9:8a:73:69:8e",
17981 "eth.addr_resolved": "Netgear_73:69:8e",
17985 "eth.type": "0x00000800"
17989 "ip.hdr_len": "20",
17990 "ip.dsfield": "0x00000000",
17991 "ip.dsfield_tree": {
17992 "ip.dsfield.dscp": "0",
17993 "ip.dsfield.ecn": "0"
17996 "ip.id": "0x00008d00",
17997 "ip.flags": "0x00000002",
17999 "ip.flags.rb": "0",
18000 "ip.flags.df": "1",
18003 "ip.frag_offset": "0",
18006 "ip.checksum": "0x00002bba",
18007 "ip.checksum.status": "2",
18008 "ip.src": "192.168.0.1",
18009 "ip.addr": "192.168.0.1",
18010 "ip.src_host": "192.168.0.1",
18011 "ip.host": "192.168.0.1",
18012 "ip.dst": "192.168.0.160",
18013 "ip.addr": "192.168.0.160",
18014 "ip.dst_host": "192.168.0.160",
18015 "ip.host": "192.168.0.160",
18016 "Source GeoIP: Unknown": "",
18017 "Destination GeoIP: Unknown": ""
18020 "udp.srcport": "53",
18021 "udp.dstport": "37188",
18023 "udp.port": "37188",
18024 "udp.length": "45",
18025 "udp.checksum": "0x00008230",
18026 "udp.checksum.status": "2",
18027 "udp.stream": "273"
18030 "dns.response_to": "22878",
18031 "dns.time": "0.000554000",
18032 "dns.id": "0x000004bc",
18033 "dns.flags": "0x00008180",
18034 "dns.flags_tree": {
18035 "dns.flags.response": "1",
18036 "dns.flags.opcode": "0",
18037 "dns.flags.authoritative": "0",
18038 "dns.flags.truncated": "0",
18039 "dns.flags.recdesired": "1",
18040 "dns.flags.recavail": "1",
18041 "dns.flags.z": "0",
18042 "dns.flags.authenticated": "0",
18043 "dns.flags.checkdisable": "0",
18044 "dns.flags.rcode": "0"
18046 "dns.count.queries": "1",
18047 "dns.count.answers": "0",
18048 "dns.count.auth_rr": "0",
18049 "dns.count.add_rr": "0",
18051 "dcp.cpp.philips.com: type AAAA, class IN": {
18052 "dns.qry.name": "dcp.cpp.philips.com",
18053 "dns.qry.name.len": "19",
18054 "dns.count.labels": "4",
18055 "dns.qry.type": "28",
18056 "dns.qry.class": "0x00000001"
18065 "_index": "packets-2017-10-26",
18066 "_type": "pcap_file",
18071 "frame.encap_type": "1",
18072 "frame.time": "Oct 19, 2017 23:33:23.088490000 PDT",
18073 "frame.offset_shift": "0.000000000",
18074 "frame.time_epoch": "1508481203.088490000",
18075 "frame.time_delta": "0.000899000",
18076 "frame.time_delta_displayed": "0.000899000",
18077 "frame.time_relative": "23490.683286000",
18078 "frame.number": "22880",
18080 "frame.cap_len": "79",
18081 "frame.marked": "0",
18082 "frame.ignored": "0",
18083 "frame.protocols": "eth:ethertype:ip:udp:dns",
18084 "frame.coloring_rule.name": "UDP",
18085 "frame.coloring_rule.string": "udp"
18088 "eth.dst": "b0:b9:8a:73:69:8e",
18090 "eth.dst_resolved": "Netgear_73:69:8e",
18091 "eth.addr": "b0:b9:8a:73:69:8e",
18092 "eth.addr_resolved": "Netgear_73:69:8e",
18096 "eth.src": "00:17:88:69:ee:e4",
18098 "eth.src_resolved": "PhilipsL_69:ee:e4",
18099 "eth.addr": "00:17:88:69:ee:e4",
18100 "eth.addr_resolved": "PhilipsL_69:ee:e4",
18104 "eth.type": "0x00000800"
18108 "ip.hdr_len": "20",
18109 "ip.dsfield": "0x00000000",
18110 "ip.dsfield_tree": {
18111 "ip.dsfield.dscp": "0",
18112 "ip.dsfield.ecn": "0"
18115 "ip.id": "0x00007d4d",
18116 "ip.flags": "0x00000002",
18118 "ip.flags.rb": "0",
18119 "ip.flags.df": "1",
18122 "ip.frag_offset": "0",
18125 "ip.checksum": "0x00003b6d",
18126 "ip.checksum.status": "2",
18127 "ip.src": "192.168.0.160",
18128 "ip.addr": "192.168.0.160",
18129 "ip.src_host": "192.168.0.160",
18130 "ip.host": "192.168.0.160",
18131 "ip.dst": "192.168.0.1",
18132 "ip.addr": "192.168.0.1",
18133 "ip.dst_host": "192.168.0.1",
18134 "ip.host": "192.168.0.1",
18135 "Source GeoIP: Unknown": "",
18136 "Destination GeoIP: Unknown": ""
18139 "udp.srcport": "57857",
18140 "udp.dstport": "53",
18141 "udp.port": "57857",
18143 "udp.length": "45",
18144 "udp.checksum": "0x0000f97e",
18145 "udp.checksum.status": "2",
18146 "udp.stream": "274"
18149 "dns.response_in": "22881",
18150 "dns.id": "0x000004bd",
18151 "dns.flags": "0x00000100",
18152 "dns.flags_tree": {
18153 "dns.flags.response": "0",
18154 "dns.flags.opcode": "0",
18155 "dns.flags.truncated": "0",
18156 "dns.flags.recdesired": "1",
18157 "dns.flags.z": "0",
18158 "dns.flags.checkdisable": "0"
18160 "dns.count.queries": "1",
18161 "dns.count.answers": "0",
18162 "dns.count.auth_rr": "0",
18163 "dns.count.add_rr": "0",
18165 "dcp.cpp.philips.com: type A, class IN": {
18166 "dns.qry.name": "dcp.cpp.philips.com",
18167 "dns.qry.name.len": "19",
18168 "dns.count.labels": "4",
18169 "dns.qry.type": "1",
18170 "dns.qry.class": "0x00000001"
18179 "_index": "packets-2017-10-26",
18180 "_type": "pcap_file",
18185 "frame.encap_type": "1",
18186 "frame.time": "Oct 19, 2017 23:33:23.089060000 PDT",
18187 "frame.offset_shift": "0.000000000",
18188 "frame.time_epoch": "1508481203.089060000",
18189 "frame.time_delta": "0.000570000",
18190 "frame.time_delta_displayed": "0.000570000",
18191 "frame.time_relative": "23490.683856000",
18192 "frame.number": "22881",
18194 "frame.cap_len": "95",
18195 "frame.marked": "0",
18196 "frame.ignored": "0",
18197 "frame.protocols": "eth:ethertype:ip:udp:dns",
18198 "frame.coloring_rule.name": "UDP",
18199 "frame.coloring_rule.string": "udp"
18202 "eth.dst": "00:17:88:69:ee:e4",
18204 "eth.dst_resolved": "PhilipsL_69:ee:e4",
18205 "eth.addr": "00:17:88:69:ee:e4",
18206 "eth.addr_resolved": "PhilipsL_69:ee:e4",
18210 "eth.src": "b0:b9:8a:73:69:8e",
18212 "eth.src_resolved": "Netgear_73:69:8e",
18213 "eth.addr": "b0:b9:8a:73:69:8e",
18214 "eth.addr_resolved": "Netgear_73:69:8e",
18218 "eth.type": "0x00000800"
18222 "ip.hdr_len": "20",
18223 "ip.dsfield": "0x00000000",
18224 "ip.dsfield_tree": {
18225 "ip.dsfield.dscp": "0",
18226 "ip.dsfield.ecn": "0"
18229 "ip.id": "0x00008d01",
18230 "ip.flags": "0x00000002",
18232 "ip.flags.rb": "0",
18233 "ip.flags.df": "1",
18236 "ip.frag_offset": "0",
18239 "ip.checksum": "0x00002ba9",
18240 "ip.checksum.status": "2",
18241 "ip.src": "192.168.0.1",
18242 "ip.addr": "192.168.0.1",
18243 "ip.src_host": "192.168.0.1",
18244 "ip.host": "192.168.0.1",
18245 "ip.dst": "192.168.0.160",
18246 "ip.addr": "192.168.0.160",
18247 "ip.dst_host": "192.168.0.160",
18248 "ip.host": "192.168.0.160",
18249 "Source GeoIP: Unknown": "",
18250 "Destination GeoIP: Unknown": ""
18253 "udp.srcport": "53",
18254 "udp.dstport": "57857",
18256 "udp.port": "57857",
18257 "udp.length": "61",
18258 "udp.checksum": "0x00008240",
18259 "udp.checksum.status": "2",
18260 "udp.stream": "274"
18263 "dns.response_to": "22880",
18264 "dns.time": "0.000570000",
18265 "dns.id": "0x000004bd",
18266 "dns.flags": "0x00008180",
18267 "dns.flags_tree": {
18268 "dns.flags.response": "1",
18269 "dns.flags.opcode": "0",
18270 "dns.flags.authoritative": "0",
18271 "dns.flags.truncated": "0",
18272 "dns.flags.recdesired": "1",
18273 "dns.flags.recavail": "1",
18274 "dns.flags.z": "0",
18275 "dns.flags.authenticated": "0",
18276 "dns.flags.checkdisable": "0",
18277 "dns.flags.rcode": "0"
18279 "dns.count.queries": "1",
18280 "dns.count.answers": "1",
18281 "dns.count.auth_rr": "0",
18282 "dns.count.add_rr": "0",
18284 "dcp.cpp.philips.com: type A, class IN": {
18285 "dns.qry.name": "dcp.cpp.philips.com",
18286 "dns.qry.name.len": "19",
18287 "dns.count.labels": "4",
18288 "dns.qry.type": "1",
18289 "dns.qry.class": "0x00000001"
18293 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
18294 "dns.resp.name": "dcp.cpp.philips.com",
18295 "dns.resp.type": "1",
18296 "dns.resp.class": "0x00000001",
18297 "dns.resp.ttl": "3219",
18298 "dns.resp.len": "4",
18299 "dns.a": "5.79.62.93"
18308 "_index": "packets-2017-10-26",
18309 "_type": "pcap_file",
18314 "frame.encap_type": "1",
18315 "frame.time": "Oct 19, 2017 23:37:52.675652000 PDT",
18316 "frame.offset_shift": "0.000000000",
18317 "frame.time_epoch": "1508481472.675652000",
18318 "frame.time_delta": "1.044735000",
18319 "frame.time_delta_displayed": "269.586592000",
18320 "frame.time_relative": "23760.270448000",
18321 "frame.number": "23158",
18323 "frame.cap_len": "76",
18324 "frame.marked": "0",
18325 "frame.ignored": "0",
18326 "frame.protocols": "eth:ethertype:ip:udp:dns",
18327 "frame.coloring_rule.name": "UDP",
18328 "frame.coloring_rule.string": "udp"
18331 "eth.dst": "b0:b9:8a:73:69:8e",
18333 "eth.dst_resolved": "Netgear_73:69:8e",
18334 "eth.addr": "b0:b9:8a:73:69:8e",
18335 "eth.addr_resolved": "Netgear_73:69:8e",
18339 "eth.src": "00:17:88:69:ee:e4",
18341 "eth.src_resolved": "PhilipsL_69:ee:e4",
18342 "eth.addr": "00:17:88:69:ee:e4",
18343 "eth.addr_resolved": "PhilipsL_69:ee:e4",
18347 "eth.type": "0x00000800"
18351 "ip.hdr_len": "20",
18352 "ip.dsfield": "0x00000000",
18353 "ip.dsfield_tree": {
18354 "ip.dsfield.dscp": "0",
18355 "ip.dsfield.ecn": "0"
18358 "ip.id": "0x00009f5f",
18359 "ip.flags": "0x00000002",
18361 "ip.flags.rb": "0",
18362 "ip.flags.df": "1",
18365 "ip.frag_offset": "0",
18368 "ip.checksum": "0x0000195e",
18369 "ip.checksum.status": "2",
18370 "ip.src": "192.168.0.160",
18371 "ip.addr": "192.168.0.160",
18372 "ip.src_host": "192.168.0.160",
18373 "ip.host": "192.168.0.160",
18374 "ip.dst": "192.168.0.1",
18375 "ip.addr": "192.168.0.1",
18376 "ip.dst_host": "192.168.0.1",
18377 "ip.host": "192.168.0.1",
18378 "Source GeoIP: Unknown": "",
18379 "Destination GeoIP: Unknown": ""
18382 "udp.srcport": "41570",
18383 "udp.dstport": "53",
18384 "udp.port": "41570",
18386 "udp.length": "42",
18387 "udp.checksum": "0x0000b697",
18388 "udp.checksum.status": "2",
18389 "udp.stream": "280"
18392 "dns.response_in": "23159",
18393 "dns.id": "0x000004be",
18394 "dns.flags": "0x00000100",
18395 "dns.flags_tree": {
18396 "dns.flags.response": "0",
18397 "dns.flags.opcode": "0",
18398 "dns.flags.truncated": "0",
18399 "dns.flags.recdesired": "1",
18400 "dns.flags.z": "0",
18401 "dns.flags.checkdisable": "0"
18403 "dns.count.queries": "1",
18404 "dns.count.answers": "0",
18405 "dns.count.auth_rr": "0",
18406 "dns.count.add_rr": "0",
18408 "www2.meethue.com: type A, class IN": {
18409 "dns.qry.name": "www2.meethue.com",
18410 "dns.qry.name.len": "16",
18411 "dns.count.labels": "3",
18412 "dns.qry.type": "1",
18413 "dns.qry.class": "0x00000001"
18422 "_index": "packets-2017-10-26",
18423 "_type": "pcap_file",
18428 "frame.encap_type": "1",
18429 "frame.time": "Oct 19, 2017 23:37:52.686467000 PDT",
18430 "frame.offset_shift": "0.000000000",
18431 "frame.time_epoch": "1508481472.686467000",
18432 "frame.time_delta": "0.010815000",
18433 "frame.time_delta_displayed": "0.010815000",
18434 "frame.time_relative": "23760.281263000",
18435 "frame.number": "23159",
18436 "frame.len": "513",
18437 "frame.cap_len": "513",
18438 "frame.marked": "0",
18439 "frame.ignored": "0",
18440 "frame.protocols": "eth:ethertype:ip:udp:dns",
18441 "frame.coloring_rule.name": "UDP",
18442 "frame.coloring_rule.string": "udp"
18445 "eth.dst": "00:17:88:69:ee:e4",
18447 "eth.dst_resolved": "PhilipsL_69:ee:e4",
18448 "eth.addr": "00:17:88:69:ee:e4",
18449 "eth.addr_resolved": "PhilipsL_69:ee:e4",
18453 "eth.src": "b0:b9:8a:73:69:8e",
18455 "eth.src_resolved": "Netgear_73:69:8e",
18456 "eth.addr": "b0:b9:8a:73:69:8e",
18457 "eth.addr_resolved": "Netgear_73:69:8e",
18461 "eth.type": "0x00000800"
18465 "ip.hdr_len": "20",
18466 "ip.dsfield": "0x00000000",
18467 "ip.dsfield_tree": {
18468 "ip.dsfield.dscp": "0",
18469 "ip.dsfield.ecn": "0"
18472 "ip.id": "0x0000db55",
18473 "ip.flags": "0x00000002",
18475 "ip.flags.rb": "0",
18476 "ip.flags.df": "1",
18479 "ip.frag_offset": "0",
18482 "ip.checksum": "0x0000dbb2",
18483 "ip.checksum.status": "2",
18484 "ip.src": "192.168.0.1",
18485 "ip.addr": "192.168.0.1",
18486 "ip.src_host": "192.168.0.1",
18487 "ip.host": "192.168.0.1",
18488 "ip.dst": "192.168.0.160",
18489 "ip.addr": "192.168.0.160",
18490 "ip.dst_host": "192.168.0.160",
18491 "ip.host": "192.168.0.160",
18492 "Source GeoIP: Unknown": "",
18493 "Destination GeoIP: Unknown": ""
18496 "udp.srcport": "53",
18497 "udp.dstport": "41570",
18499 "udp.port": "41570",
18500 "udp.length": "479",
18501 "udp.checksum": "0x000083e2",
18502 "udp.checksum.status": "2",
18503 "udp.stream": "280"
18506 "dns.response_to": "23158",
18507 "dns.time": "0.010815000",
18508 "dns.id": "0x000004be",
18509 "dns.flags": "0x00008180",
18510 "dns.flags_tree": {
18511 "dns.flags.response": "1",
18512 "dns.flags.opcode": "0",
18513 "dns.flags.authoritative": "0",
18514 "dns.flags.truncated": "0",
18515 "dns.flags.recdesired": "1",
18516 "dns.flags.recavail": "1",
18517 "dns.flags.z": "0",
18518 "dns.flags.authenticated": "0",
18519 "dns.flags.checkdisable": "0",
18520 "dns.flags.rcode": "0"
18522 "dns.count.queries": "1",
18523 "dns.count.answers": "4",
18524 "dns.count.auth_rr": "9",
18525 "dns.count.add_rr": "9",
18527 "www2.meethue.com: type A, class IN": {
18528 "dns.qry.name": "www2.meethue.com",
18529 "dns.qry.name.len": "16",
18530 "dns.count.labels": "3",
18531 "dns.qry.type": "1",
18532 "dns.qry.class": "0x00000001"
18536 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
18537 "dns.resp.name": "www2.meethue.com",
18538 "dns.resp.type": "5",
18539 "dns.resp.class": "0x00000001",
18540 "dns.resp.ttl": "143",
18541 "dns.resp.len": "41",
18542 "dns.cname": "brands.lighting.philips.com.edgekey.net"
18544 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
18545 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
18546 "dns.resp.type": "5",
18547 "dns.resp.class": "0x00000001",
18548 "dns.resp.ttl": "13158",
18549 "dns.resp.len": "22",
18550 "dns.cname": "e15361.b.akamaiedge.net"
18552 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
18553 "dns.resp.name": "e15361.b.akamaiedge.net",
18554 "dns.resp.type": "1",
18555 "dns.resp.class": "0x00000001",
18556 "dns.resp.ttl": "20",
18557 "dns.resp.len": "4",
18558 "dns.a": "173.223.52.112"
18560 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
18561 "dns.resp.name": "e15361.b.akamaiedge.net",
18562 "dns.resp.type": "1",
18563 "dns.resp.class": "0x00000001",
18564 "dns.resp.ttl": "20",
18565 "dns.resp.len": "4",
18566 "dns.a": "173.223.52.125"
18569 "Authoritative nameservers": {
18570 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
18571 "dns.resp.name": "b.akamaiedge.net",
18572 "dns.resp.type": "2",
18573 "dns.resp.class": "0x00000001",
18574 "dns.resp.ttl": "174",
18575 "dns.resp.len": "6",
18576 "dns.ns": "n7b.akamaiedge.net"
18578 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
18579 "dns.resp.name": "b.akamaiedge.net",
18580 "dns.resp.type": "2",
18581 "dns.resp.class": "0x00000001",
18582 "dns.resp.ttl": "174",
18583 "dns.resp.len": "6",
18584 "dns.ns": "n4b.akamaiedge.net"
18586 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
18587 "dns.resp.name": "b.akamaiedge.net",
18588 "dns.resp.type": "2",
18589 "dns.resp.class": "0x00000001",
18590 "dns.resp.ttl": "174",
18591 "dns.resp.len": "6",
18592 "dns.ns": "n6b.akamaiedge.net"
18594 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
18595 "dns.resp.name": "b.akamaiedge.net",
18596 "dns.resp.type": "2",
18597 "dns.resp.class": "0x00000001",
18598 "dns.resp.ttl": "174",
18599 "dns.resp.len": "6",
18600 "dns.ns": "n3b.akamaiedge.net"
18602 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
18603 "dns.resp.name": "b.akamaiedge.net",
18604 "dns.resp.type": "2",
18605 "dns.resp.class": "0x00000001",
18606 "dns.resp.ttl": "174",
18607 "dns.resp.len": "6",
18608 "dns.ns": "a0b.akamaiedge.net"
18610 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
18611 "dns.resp.name": "b.akamaiedge.net",
18612 "dns.resp.type": "2",
18613 "dns.resp.class": "0x00000001",
18614 "dns.resp.ttl": "174",
18615 "dns.resp.len": "6",
18616 "dns.ns": "n0b.akamaiedge.net"
18618 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
18619 "dns.resp.name": "b.akamaiedge.net",
18620 "dns.resp.type": "2",
18621 "dns.resp.class": "0x00000001",
18622 "dns.resp.ttl": "174",
18623 "dns.resp.len": "6",
18624 "dns.ns": "n1b.akamaiedge.net"
18626 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
18627 "dns.resp.name": "b.akamaiedge.net",
18628 "dns.resp.type": "2",
18629 "dns.resp.class": "0x00000001",
18630 "dns.resp.ttl": "174",
18631 "dns.resp.len": "6",
18632 "dns.ns": "n5b.akamaiedge.net"
18634 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
18635 "dns.resp.name": "b.akamaiedge.net",
18636 "dns.resp.type": "2",
18637 "dns.resp.class": "0x00000001",
18638 "dns.resp.ttl": "174",
18639 "dns.resp.len": "6",
18640 "dns.ns": "n2b.akamaiedge.net"
18643 "Additional records": {
18644 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
18645 "dns.resp.name": "n0b.akamaiedge.net",
18646 "dns.resp.type": "1",
18647 "dns.resp.class": "0x00000001",
18648 "dns.resp.ttl": "2701",
18649 "dns.resp.len": "4",
18650 "dns.a": "88.221.81.192"
18652 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.131": {
18653 "dns.resp.name": "n1b.akamaiedge.net",
18654 "dns.resp.type": "1",
18655 "dns.resp.class": "0x00000001",
18656 "dns.resp.ttl": "7242",
18657 "dns.resp.len": "4",
18658 "dns.a": "173.223.52.131"
18660 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
18661 "dns.resp.name": "n2b.akamaiedge.net",
18662 "dns.resp.type": "1",
18663 "dns.resp.class": "0x00000001",
18664 "dns.resp.ttl": "2015",
18665 "dns.resp.len": "4",
18666 "dns.a": "173.223.52.108"
18668 "n3b.akamaiedge.net: type A, class IN, addr 165.254.134.239": {
18669 "dns.resp.name": "n3b.akamaiedge.net",
18670 "dns.resp.type": "1",
18671 "dns.resp.class": "0x00000001",
18672 "dns.resp.ttl": "2080",
18673 "dns.resp.len": "4",
18674 "dns.a": "165.254.134.239"
18676 "n4b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
18677 "dns.resp.name": "n4b.akamaiedge.net",
18678 "dns.resp.type": "1",
18679 "dns.resp.class": "0x00000001",
18680 "dns.resp.ttl": "487",
18681 "dns.resp.len": "4",
18682 "dns.a": "173.223.52.70"
18684 "n5b.akamaiedge.net: type A, class IN, addr 96.17.70.191": {
18685 "dns.resp.name": "n5b.akamaiedge.net",
18686 "dns.resp.type": "1",
18687 "dns.resp.class": "0x00000001",
18688 "dns.resp.ttl": "7043",
18689 "dns.resp.len": "4",
18690 "dns.a": "96.17.70.191"
18692 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
18693 "dns.resp.name": "n6b.akamaiedge.net",
18694 "dns.resp.type": "1",
18695 "dns.resp.class": "0x00000001",
18696 "dns.resp.ttl": "2623",
18697 "dns.resp.len": "4",
18698 "dns.a": "173.223.52.70"
18700 "n7b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
18701 "dns.resp.name": "n7b.akamaiedge.net",
18702 "dns.resp.type": "1",
18703 "dns.resp.class": "0x00000001",
18704 "dns.resp.ttl": "4728",
18705 "dns.resp.len": "4",
18706 "dns.a": "204.1.137.41"
18708 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
18709 "dns.resp.name": "a0b.akamaiedge.net",
18710 "dns.resp.type": "28",
18711 "dns.resp.class": "0x00000001",
18712 "dns.resp.ttl": "1178",
18713 "dns.resp.len": "16",
18714 "dns.aaaa": "2600:1480:e800::c0"
18723 "_index": "packets-2017-10-26",
18724 "_type": "pcap_file",
18729 "frame.encap_type": "1",
18730 "frame.time": "Oct 19, 2017 23:52:52.690665000 PDT",
18731 "frame.offset_shift": "0.000000000",
18732 "frame.time_epoch": "1508482372.690665000",
18733 "frame.time_delta": "0.322371000",
18734 "frame.time_delta_displayed": "900.004198000",
18735 "frame.time_relative": "24660.285461000",
18736 "frame.number": "23918",
18738 "frame.cap_len": "76",
18739 "frame.marked": "0",
18740 "frame.ignored": "0",
18741 "frame.protocols": "eth:ethertype:ip:udp:dns",
18742 "frame.coloring_rule.name": "UDP",
18743 "frame.coloring_rule.string": "udp"
18746 "eth.dst": "b0:b9:8a:73:69:8e",
18748 "eth.dst_resolved": "Netgear_73:69:8e",
18749 "eth.addr": "b0:b9:8a:73:69:8e",
18750 "eth.addr_resolved": "Netgear_73:69:8e",
18754 "eth.src": "00:17:88:69:ee:e4",
18756 "eth.src_resolved": "PhilipsL_69:ee:e4",
18757 "eth.addr": "00:17:88:69:ee:e4",
18758 "eth.addr_resolved": "PhilipsL_69:ee:e4",
18762 "eth.type": "0x00000800"
18766 "ip.hdr_len": "20",
18767 "ip.dsfield": "0x00000000",
18768 "ip.dsfield_tree": {
18769 "ip.dsfield.dscp": "0",
18770 "ip.dsfield.ecn": "0"
18773 "ip.id": "0x00009671",
18774 "ip.flags": "0x00000002",
18776 "ip.flags.rb": "0",
18777 "ip.flags.df": "1",
18780 "ip.frag_offset": "0",
18783 "ip.checksum": "0x0000224c",
18784 "ip.checksum.status": "2",
18785 "ip.src": "192.168.0.160",
18786 "ip.addr": "192.168.0.160",
18787 "ip.src_host": "192.168.0.160",
18788 "ip.host": "192.168.0.160",
18789 "ip.dst": "192.168.0.1",
18790 "ip.addr": "192.168.0.1",
18791 "ip.dst_host": "192.168.0.1",
18792 "ip.host": "192.168.0.1",
18793 "Source GeoIP: Unknown": "",
18794 "Destination GeoIP: Unknown": ""
18797 "udp.srcport": "42853",
18798 "udp.dstport": "53",
18799 "udp.port": "42853",
18801 "udp.length": "42",
18802 "udp.checksum": "0x0000b193",
18803 "udp.checksum.status": "2",
18804 "udp.stream": "284"
18807 "dns.response_in": "23919",
18808 "dns.id": "0x000004bf",
18809 "dns.flags": "0x00000100",
18810 "dns.flags_tree": {
18811 "dns.flags.response": "0",
18812 "dns.flags.opcode": "0",
18813 "dns.flags.truncated": "0",
18814 "dns.flags.recdesired": "1",
18815 "dns.flags.z": "0",
18816 "dns.flags.checkdisable": "0"
18818 "dns.count.queries": "1",
18819 "dns.count.answers": "0",
18820 "dns.count.auth_rr": "0",
18821 "dns.count.add_rr": "0",
18823 "www2.meethue.com: type A, class IN": {
18824 "dns.qry.name": "www2.meethue.com",
18825 "dns.qry.name.len": "16",
18826 "dns.count.labels": "3",
18827 "dns.qry.type": "1",
18828 "dns.qry.class": "0x00000001"
18837 "_index": "packets-2017-10-26",
18838 "_type": "pcap_file",
18843 "frame.encap_type": "1",
18844 "frame.time": "Oct 19, 2017 23:52:52.711241000 PDT",
18845 "frame.offset_shift": "0.000000000",
18846 "frame.time_epoch": "1508482372.711241000",
18847 "frame.time_delta": "0.020576000",
18848 "frame.time_delta_displayed": "0.020576000",
18849 "frame.time_relative": "24660.306037000",
18850 "frame.number": "23919",
18851 "frame.len": "513",
18852 "frame.cap_len": "513",
18853 "frame.marked": "0",
18854 "frame.ignored": "0",
18855 "frame.protocols": "eth:ethertype:ip:udp:dns",
18856 "frame.coloring_rule.name": "UDP",
18857 "frame.coloring_rule.string": "udp"
18860 "eth.dst": "00:17:88:69:ee:e4",
18862 "eth.dst_resolved": "PhilipsL_69:ee:e4",
18863 "eth.addr": "00:17:88:69:ee:e4",
18864 "eth.addr_resolved": "PhilipsL_69:ee:e4",
18868 "eth.src": "b0:b9:8a:73:69:8e",
18870 "eth.src_resolved": "Netgear_73:69:8e",
18871 "eth.addr": "b0:b9:8a:73:69:8e",
18872 "eth.addr_resolved": "Netgear_73:69:8e",
18876 "eth.type": "0x00000800"
18880 "ip.hdr_len": "20",
18881 "ip.dsfield": "0x00000000",
18882 "ip.dsfield_tree": {
18883 "ip.dsfield.dscp": "0",
18884 "ip.dsfield.ecn": "0"
18887 "ip.id": "0x00001d6b",
18888 "ip.flags": "0x00000002",
18890 "ip.flags.rb": "0",
18891 "ip.flags.df": "1",
18894 "ip.frag_offset": "0",
18897 "ip.checksum": "0x0000999d",
18898 "ip.checksum.status": "2",
18899 "ip.src": "192.168.0.1",
18900 "ip.addr": "192.168.0.1",
18901 "ip.src_host": "192.168.0.1",
18902 "ip.host": "192.168.0.1",
18903 "ip.dst": "192.168.0.160",
18904 "ip.addr": "192.168.0.160",
18905 "ip.dst_host": "192.168.0.160",
18906 "ip.host": "192.168.0.160",
18907 "Source GeoIP: Unknown": "",
18908 "Destination GeoIP: Unknown": ""
18911 "udp.srcport": "53",
18912 "udp.dstport": "42853",
18914 "udp.port": "42853",
18915 "udp.length": "479",
18916 "udp.checksum": "0x000083e2",
18917 "udp.checksum.status": "2",
18918 "udp.stream": "284"
18921 "dns.response_to": "23918",
18922 "dns.time": "0.020576000",
18923 "dns.id": "0x000004bf",
18924 "dns.flags": "0x00008180",
18925 "dns.flags_tree": {
18926 "dns.flags.response": "1",
18927 "dns.flags.opcode": "0",
18928 "dns.flags.authoritative": "0",
18929 "dns.flags.truncated": "0",
18930 "dns.flags.recdesired": "1",
18931 "dns.flags.recavail": "1",
18932 "dns.flags.z": "0",
18933 "dns.flags.authenticated": "0",
18934 "dns.flags.checkdisable": "0",
18935 "dns.flags.rcode": "0"
18937 "dns.count.queries": "1",
18938 "dns.count.answers": "4",
18939 "dns.count.auth_rr": "9",
18940 "dns.count.add_rr": "9",
18942 "www2.meethue.com: type A, class IN": {
18943 "dns.qry.name": "www2.meethue.com",
18944 "dns.qry.name.len": "16",
18945 "dns.count.labels": "3",
18946 "dns.qry.type": "1",
18947 "dns.qry.class": "0x00000001"
18951 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
18952 "dns.resp.name": "www2.meethue.com",
18953 "dns.resp.type": "5",
18954 "dns.resp.class": "0x00000001",
18955 "dns.resp.ttl": "119",
18956 "dns.resp.len": "41",
18957 "dns.cname": "brands.lighting.philips.com.edgekey.net"
18959 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
18960 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
18961 "dns.resp.type": "5",
18962 "dns.resp.class": "0x00000001",
18963 "dns.resp.ttl": "10617",
18964 "dns.resp.len": "22",
18965 "dns.cname": "e15361.b.akamaiedge.net"
18967 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
18968 "dns.resp.name": "e15361.b.akamaiedge.net",
18969 "dns.resp.type": "1",
18970 "dns.resp.class": "0x00000001",
18971 "dns.resp.ttl": "20",
18972 "dns.resp.len": "4",
18973 "dns.a": "173.223.52.125"
18975 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
18976 "dns.resp.name": "e15361.b.akamaiedge.net",
18977 "dns.resp.type": "1",
18978 "dns.resp.class": "0x00000001",
18979 "dns.resp.ttl": "20",
18980 "dns.resp.len": "4",
18981 "dns.a": "173.223.52.112"
18984 "Authoritative nameservers": {
18985 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
18986 "dns.resp.name": "b.akamaiedge.net",
18987 "dns.resp.type": "2",
18988 "dns.resp.class": "0x00000001",
18989 "dns.resp.ttl": "1190",
18990 "dns.resp.len": "6",
18991 "dns.ns": "n0b.akamaiedge.net"
18993 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
18994 "dns.resp.name": "b.akamaiedge.net",
18995 "dns.resp.type": "2",
18996 "dns.resp.class": "0x00000001",
18997 "dns.resp.ttl": "1190",
18998 "dns.resp.len": "6",
18999 "dns.ns": "a0b.akamaiedge.net"
19001 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
19002 "dns.resp.name": "b.akamaiedge.net",
19003 "dns.resp.type": "2",
19004 "dns.resp.class": "0x00000001",
19005 "dns.resp.ttl": "1190",
19006 "dns.resp.len": "6",
19007 "dns.ns": "n7b.akamaiedge.net"
19009 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
19010 "dns.resp.name": "b.akamaiedge.net",
19011 "dns.resp.type": "2",
19012 "dns.resp.class": "0x00000001",
19013 "dns.resp.ttl": "1190",
19014 "dns.resp.len": "6",
19015 "dns.ns": "n4b.akamaiedge.net"
19017 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
19018 "dns.resp.name": "b.akamaiedge.net",
19019 "dns.resp.type": "2",
19020 "dns.resp.class": "0x00000001",
19021 "dns.resp.ttl": "1190",
19022 "dns.resp.len": "6",
19023 "dns.ns": "n6b.akamaiedge.net"
19025 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
19026 "dns.resp.name": "b.akamaiedge.net",
19027 "dns.resp.type": "2",
19028 "dns.resp.class": "0x00000001",
19029 "dns.resp.ttl": "1190",
19030 "dns.resp.len": "6",
19031 "dns.ns": "n2b.akamaiedge.net"
19033 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
19034 "dns.resp.name": "b.akamaiedge.net",
19035 "dns.resp.type": "2",
19036 "dns.resp.class": "0x00000001",
19037 "dns.resp.ttl": "1190",
19038 "dns.resp.len": "6",
19039 "dns.ns": "n1b.akamaiedge.net"
19041 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
19042 "dns.resp.name": "b.akamaiedge.net",
19043 "dns.resp.type": "2",
19044 "dns.resp.class": "0x00000001",
19045 "dns.resp.ttl": "1190",
19046 "dns.resp.len": "6",
19047 "dns.ns": "n3b.akamaiedge.net"
19049 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
19050 "dns.resp.name": "b.akamaiedge.net",
19051 "dns.resp.type": "2",
19052 "dns.resp.class": "0x00000001",
19053 "dns.resp.ttl": "1190",
19054 "dns.resp.len": "6",
19055 "dns.ns": "n5b.akamaiedge.net"
19058 "Additional records": {
19059 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
19060 "dns.resp.name": "n0b.akamaiedge.net",
19061 "dns.resp.type": "1",
19062 "dns.resp.class": "0x00000001",
19063 "dns.resp.ttl": "3509",
19064 "dns.resp.len": "4",
19065 "dns.a": "88.221.81.192"
19067 "n1b.akamaiedge.net: type A, class IN, addr 23.67.56.215": {
19068 "dns.resp.name": "n1b.akamaiedge.net",
19069 "dns.resp.type": "1",
19070 "dns.resp.class": "0x00000001",
19071 "dns.resp.ttl": "2217",
19072 "dns.resp.len": "4",
19073 "dns.a": "23.67.56.215"
19075 "n2b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
19076 "dns.resp.name": "n2b.akamaiedge.net",
19077 "dns.resp.type": "1",
19078 "dns.resp.class": "0x00000001",
19079 "dns.resp.ttl": "2720",
19080 "dns.resp.len": "4",
19081 "dns.a": "204.2.166.158"
19083 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
19084 "dns.resp.name": "n3b.akamaiedge.net",
19085 "dns.resp.type": "1",
19086 "dns.resp.class": "0x00000001",
19087 "dns.resp.ttl": "2912",
19088 "dns.resp.len": "4",
19089 "dns.a": "173.223.52.108"
19091 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.202": {
19092 "dns.resp.name": "n4b.akamaiedge.net",
19093 "dns.resp.type": "1",
19094 "dns.resp.class": "0x00000001",
19095 "dns.resp.ttl": "1812",
19096 "dns.resp.len": "4",
19097 "dns.a": "198.172.88.202"
19099 "n5b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
19100 "dns.resp.name": "n5b.akamaiedge.net",
19101 "dns.resp.type": "1",
19102 "dns.resp.class": "0x00000001",
19103 "dns.resp.ttl": "3561",
19104 "dns.resp.len": "4",
19105 "dns.a": "173.223.52.70"
19107 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
19108 "dns.resp.name": "n6b.akamaiedge.net",
19109 "dns.resp.type": "1",
19110 "dns.resp.class": "0x00000001",
19111 "dns.resp.ttl": "3369",
19112 "dns.resp.len": "4",
19113 "dns.a": "173.223.52.109"
19115 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.246": {
19116 "dns.resp.name": "n7b.akamaiedge.net",
19117 "dns.resp.type": "1",
19118 "dns.resp.class": "0x00000001",
19119 "dns.resp.ttl": "3423",
19120 "dns.resp.len": "4",
19121 "dns.a": "165.254.134.246"
19123 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
19124 "dns.resp.name": "a0b.akamaiedge.net",
19125 "dns.resp.type": "28",
19126 "dns.resp.class": "0x00000001",
19127 "dns.resp.ttl": "3190",
19128 "dns.resp.len": "16",
19129 "dns.aaaa": "2600:1480:e800::c0"
19138 "_index": "packets-2017-10-26",
19139 "_type": "pcap_file",
19144 "frame.encap_type": "1",
19145 "frame.time": "Oct 20, 2017 00:07:52.715432000 PDT",
19146 "frame.offset_shift": "0.000000000",
19147 "frame.time_epoch": "1508483272.715432000",
19148 "frame.time_delta": "0.798629000",
19149 "frame.time_delta_displayed": "900.004191000",
19150 "frame.time_relative": "25560.310228000",
19151 "frame.number": "24682",
19153 "frame.cap_len": "76",
19154 "frame.marked": "0",
19155 "frame.ignored": "0",
19156 "frame.protocols": "eth:ethertype:ip:udp:dns",
19157 "frame.coloring_rule.name": "UDP",
19158 "frame.coloring_rule.string": "udp"
19161 "eth.dst": "b0:b9:8a:73:69:8e",
19163 "eth.dst_resolved": "Netgear_73:69:8e",
19164 "eth.addr": "b0:b9:8a:73:69:8e",
19165 "eth.addr_resolved": "Netgear_73:69:8e",
19169 "eth.src": "00:17:88:69:ee:e4",
19171 "eth.src_resolved": "PhilipsL_69:ee:e4",
19172 "eth.addr": "00:17:88:69:ee:e4",
19173 "eth.addr_resolved": "PhilipsL_69:ee:e4",
19177 "eth.type": "0x00000800"
19181 "ip.hdr_len": "20",
19182 "ip.dsfield": "0x00000000",
19183 "ip.dsfield_tree": {
19184 "ip.dsfield.dscp": "0",
19185 "ip.dsfield.ecn": "0"
19188 "ip.id": "0x0000a08f",
19189 "ip.flags": "0x00000002",
19191 "ip.flags.rb": "0",
19192 "ip.flags.df": "1",
19195 "ip.frag_offset": "0",
19198 "ip.checksum": "0x0000182e",
19199 "ip.checksum.status": "2",
19200 "ip.src": "192.168.0.160",
19201 "ip.addr": "192.168.0.160",
19202 "ip.src_host": "192.168.0.160",
19203 "ip.host": "192.168.0.160",
19204 "ip.dst": "192.168.0.1",
19205 "ip.addr": "192.168.0.1",
19206 "ip.dst_host": "192.168.0.1",
19207 "ip.host": "192.168.0.1",
19208 "Source GeoIP: Unknown": "",
19209 "Destination GeoIP: Unknown": ""
19212 "udp.srcport": "53913",
19213 "udp.dstport": "53",
19214 "udp.port": "53913",
19216 "udp.length": "42",
19217 "udp.checksum": "0x0000865e",
19218 "udp.checksum.status": "2",
19219 "udp.stream": "288"
19222 "dns.response_in": "24683",
19223 "dns.id": "0x000004c0",
19224 "dns.flags": "0x00000100",
19225 "dns.flags_tree": {
19226 "dns.flags.response": "0",
19227 "dns.flags.opcode": "0",
19228 "dns.flags.truncated": "0",
19229 "dns.flags.recdesired": "1",
19230 "dns.flags.z": "0",
19231 "dns.flags.checkdisable": "0"
19233 "dns.count.queries": "1",
19234 "dns.count.answers": "0",
19235 "dns.count.auth_rr": "0",
19236 "dns.count.add_rr": "0",
19238 "www2.meethue.com: type A, class IN": {
19239 "dns.qry.name": "www2.meethue.com",
19240 "dns.qry.name.len": "16",
19241 "dns.count.labels": "3",
19242 "dns.qry.type": "1",
19243 "dns.qry.class": "0x00000001"
19252 "_index": "packets-2017-10-26",
19253 "_type": "pcap_file",
19258 "frame.encap_type": "1",
19259 "frame.time": "Oct 20, 2017 00:07:52.722880000 PDT",
19260 "frame.offset_shift": "0.000000000",
19261 "frame.time_epoch": "1508483272.722880000",
19262 "frame.time_delta": "0.007448000",
19263 "frame.time_delta_displayed": "0.007448000",
19264 "frame.time_relative": "25560.317676000",
19265 "frame.number": "24683",
19266 "frame.len": "467",
19267 "frame.cap_len": "467",
19268 "frame.marked": "0",
19269 "frame.ignored": "0",
19270 "frame.protocols": "eth:ethertype:ip:udp:dns",
19271 "frame.coloring_rule.name": "UDP",
19272 "frame.coloring_rule.string": "udp"
19275 "eth.dst": "00:17:88:69:ee:e4",
19277 "eth.dst_resolved": "PhilipsL_69:ee:e4",
19278 "eth.addr": "00:17:88:69:ee:e4",
19279 "eth.addr_resolved": "PhilipsL_69:ee:e4",
19283 "eth.src": "b0:b9:8a:73:69:8e",
19285 "eth.src_resolved": "Netgear_73:69:8e",
19286 "eth.addr": "b0:b9:8a:73:69:8e",
19287 "eth.addr_resolved": "Netgear_73:69:8e",
19291 "eth.type": "0x00000800"
19295 "ip.hdr_len": "20",
19296 "ip.dsfield": "0x00000000",
19297 "ip.dsfield_tree": {
19298 "ip.dsfield.dscp": "0",
19299 "ip.dsfield.ecn": "0"
19302 "ip.id": "0x000067fe",
19303 "ip.flags": "0x00000002",
19305 "ip.flags.rb": "0",
19306 "ip.flags.df": "1",
19309 "ip.frag_offset": "0",
19312 "ip.checksum": "0x00004f38",
19313 "ip.checksum.status": "2",
19314 "ip.src": "192.168.0.1",
19315 "ip.addr": "192.168.0.1",
19316 "ip.src_host": "192.168.0.1",
19317 "ip.host": "192.168.0.1",
19318 "ip.dst": "192.168.0.160",
19319 "ip.addr": "192.168.0.160",
19320 "ip.dst_host": "192.168.0.160",
19321 "ip.host": "192.168.0.160",
19322 "Source GeoIP: Unknown": "",
19323 "Destination GeoIP: Unknown": ""
19326 "udp.srcport": "53",
19327 "udp.dstport": "53913",
19329 "udp.port": "53913",
19330 "udp.length": "433",
19331 "udp.checksum": "0x000083b4",
19332 "udp.checksum.status": "2",
19333 "udp.stream": "288"
19336 "dns.response_to": "24682",
19337 "dns.time": "0.007448000",
19338 "dns.id": "0x000004c0",
19339 "dns.flags": "0x00008180",
19340 "dns.flags_tree": {
19341 "dns.flags.response": "1",
19342 "dns.flags.opcode": "0",
19343 "dns.flags.authoritative": "0",
19344 "dns.flags.truncated": "0",
19345 "dns.flags.recdesired": "1",
19346 "dns.flags.recavail": "1",
19347 "dns.flags.z": "0",
19348 "dns.flags.authenticated": "0",
19349 "dns.flags.checkdisable": "0",
19350 "dns.flags.rcode": "0"
19352 "dns.count.queries": "1",
19353 "dns.count.answers": "4",
19354 "dns.count.auth_rr": "8",
19355 "dns.count.add_rr": "8",
19357 "www2.meethue.com: type A, class IN": {
19358 "dns.qry.name": "www2.meethue.com",
19359 "dns.qry.name.len": "16",
19360 "dns.count.labels": "3",
19361 "dns.qry.type": "1",
19362 "dns.qry.class": "0x00000001"
19366 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
19367 "dns.resp.name": "www2.meethue.com",
19368 "dns.resp.type": "5",
19369 "dns.resp.class": "0x00000001",
19370 "dns.resp.ttl": "143",
19371 "dns.resp.len": "41",
19372 "dns.cname": "brands.lighting.philips.com.edgekey.net"
19374 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
19375 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
19376 "dns.resp.type": "5",
19377 "dns.resp.class": "0x00000001",
19378 "dns.resp.ttl": "11358",
19379 "dns.resp.len": "22",
19380 "dns.cname": "e15361.b.akamaiedge.net"
19382 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
19383 "dns.resp.name": "e15361.b.akamaiedge.net",
19384 "dns.resp.type": "1",
19385 "dns.resp.class": "0x00000001",
19386 "dns.resp.ttl": "20",
19387 "dns.resp.len": "4",
19388 "dns.a": "173.223.52.112"
19390 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
19391 "dns.resp.name": "e15361.b.akamaiedge.net",
19392 "dns.resp.type": "1",
19393 "dns.resp.class": "0x00000001",
19394 "dns.resp.ttl": "20",
19395 "dns.resp.len": "4",
19396 "dns.a": "173.223.52.125"
19399 "Authoritative nameservers": {
19400 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
19401 "dns.resp.name": "b.akamaiedge.net",
19402 "dns.resp.type": "2",
19403 "dns.resp.class": "0x00000001",
19404 "dns.resp.ttl": "374",
19405 "dns.resp.len": "6",
19406 "dns.ns": "n2b.akamaiedge.net"
19408 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
19409 "dns.resp.name": "b.akamaiedge.net",
19410 "dns.resp.type": "2",
19411 "dns.resp.class": "0x00000001",
19412 "dns.resp.ttl": "374",
19413 "dns.resp.len": "6",
19414 "dns.ns": "n6b.akamaiedge.net"
19416 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
19417 "dns.resp.name": "b.akamaiedge.net",
19418 "dns.resp.type": "2",
19419 "dns.resp.class": "0x00000001",
19420 "dns.resp.ttl": "374",
19421 "dns.resp.len": "6",
19422 "dns.ns": "n1b.akamaiedge.net"
19424 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
19425 "dns.resp.name": "b.akamaiedge.net",
19426 "dns.resp.type": "2",
19427 "dns.resp.class": "0x00000001",
19428 "dns.resp.ttl": "374",
19429 "dns.resp.len": "6",
19430 "dns.ns": "n3b.akamaiedge.net"
19432 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
19433 "dns.resp.name": "b.akamaiedge.net",
19434 "dns.resp.type": "2",
19435 "dns.resp.class": "0x00000001",
19436 "dns.resp.ttl": "374",
19437 "dns.resp.len": "6",
19438 "dns.ns": "n5b.akamaiedge.net"
19440 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
19441 "dns.resp.name": "b.akamaiedge.net",
19442 "dns.resp.type": "2",
19443 "dns.resp.class": "0x00000001",
19444 "dns.resp.ttl": "374",
19445 "dns.resp.len": "6",
19446 "dns.ns": "n7b.akamaiedge.net"
19448 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
19449 "dns.resp.name": "b.akamaiedge.net",
19450 "dns.resp.type": "2",
19451 "dns.resp.class": "0x00000001",
19452 "dns.resp.ttl": "374",
19453 "dns.resp.len": "6",
19454 "dns.ns": "n0b.akamaiedge.net"
19456 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
19457 "dns.resp.name": "b.akamaiedge.net",
19458 "dns.resp.type": "2",
19459 "dns.resp.class": "0x00000001",
19460 "dns.resp.ttl": "374",
19461 "dns.resp.len": "6",
19462 "dns.ns": "n4b.akamaiedge.net"
19465 "Additional records": {
19466 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
19467 "dns.resp.name": "n0b.akamaiedge.net",
19468 "dns.resp.type": "1",
19469 "dns.resp.class": "0x00000001",
19470 "dns.resp.ttl": "901",
19471 "dns.resp.len": "4",
19472 "dns.a": "88.221.81.192"
19474 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.131": {
19475 "dns.resp.name": "n1b.akamaiedge.net",
19476 "dns.resp.type": "1",
19477 "dns.resp.class": "0x00000001",
19478 "dns.resp.ttl": "5442",
19479 "dns.resp.len": "4",
19480 "dns.a": "173.223.52.131"
19482 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
19483 "dns.resp.name": "n2b.akamaiedge.net",
19484 "dns.resp.type": "1",
19485 "dns.resp.class": "0x00000001",
19486 "dns.resp.ttl": "215",
19487 "dns.resp.len": "4",
19488 "dns.a": "173.223.52.108"
19490 "n3b.akamaiedge.net: type A, class IN, addr 165.254.134.239": {
19491 "dns.resp.name": "n3b.akamaiedge.net",
19492 "dns.resp.type": "1",
19493 "dns.resp.class": "0x00000001",
19494 "dns.resp.ttl": "280",
19495 "dns.resp.len": "4",
19496 "dns.a": "165.254.134.239"
19498 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
19499 "dns.resp.name": "n4b.akamaiedge.net",
19500 "dns.resp.type": "1",
19501 "dns.resp.class": "0x00000001",
19502 "dns.resp.ttl": "4688",
19503 "dns.resp.len": "4",
19504 "dns.a": "96.17.70.177"
19506 "n5b.akamaiedge.net: type A, class IN, addr 96.17.70.191": {
19507 "dns.resp.name": "n5b.akamaiedge.net",
19508 "dns.resp.type": "1",
19509 "dns.resp.class": "0x00000001",
19510 "dns.resp.ttl": "5243",
19511 "dns.resp.len": "4",
19512 "dns.a": "96.17.70.191"
19514 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
19515 "dns.resp.name": "n6b.akamaiedge.net",
19516 "dns.resp.type": "1",
19517 "dns.resp.class": "0x00000001",
19518 "dns.resp.ttl": "823",
19519 "dns.resp.len": "4",
19520 "dns.a": "173.223.52.70"
19522 "n7b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
19523 "dns.resp.name": "n7b.akamaiedge.net",
19524 "dns.resp.type": "1",
19525 "dns.resp.class": "0x00000001",
19526 "dns.resp.ttl": "2928",
19527 "dns.resp.len": "4",
19528 "dns.a": "204.1.137.41"
19537 "_index": "packets-2017-10-26",
19538 "_type": "pcap_file",
19543 "frame.encap_type": "1",
19544 "frame.time": "Oct 20, 2017 00:12:04.696340000 PDT",
19545 "frame.offset_shift": "0.000000000",
19546 "frame.time_epoch": "1508483524.696340000",
19547 "frame.time_delta": "0.145443000",
19548 "frame.time_delta_displayed": "251.973460000",
19549 "frame.time_relative": "25812.291136000",
19550 "frame.number": "24953",
19552 "frame.cap_len": "83",
19553 "frame.marked": "0",
19554 "frame.ignored": "0",
19555 "frame.protocols": "eth:ethertype:ip:udp:dns",
19556 "frame.coloring_rule.name": "UDP",
19557 "frame.coloring_rule.string": "udp"
19560 "eth.dst": "b0:b9:8a:73:69:8e",
19562 "eth.dst_resolved": "Netgear_73:69:8e",
19563 "eth.addr": "b0:b9:8a:73:69:8e",
19564 "eth.addr_resolved": "Netgear_73:69:8e",
19568 "eth.src": "00:17:88:69:ee:e4",
19570 "eth.src_resolved": "PhilipsL_69:ee:e4",
19571 "eth.addr": "00:17:88:69:ee:e4",
19572 "eth.addr_resolved": "PhilipsL_69:ee:e4",
19576 "eth.type": "0x00000800"
19580 "ip.hdr_len": "20",
19581 "ip.dsfield": "0x00000000",
19582 "ip.dsfield_tree": {
19583 "ip.dsfield.dscp": "0",
19584 "ip.dsfield.ecn": "0"
19587 "ip.id": "0x0000a209",
19588 "ip.flags": "0x00000002",
19590 "ip.flags.rb": "0",
19591 "ip.flags.df": "1",
19594 "ip.frag_offset": "0",
19597 "ip.checksum": "0x000016ad",
19598 "ip.checksum.status": "2",
19599 "ip.src": "192.168.0.160",
19600 "ip.addr": "192.168.0.160",
19601 "ip.src_host": "192.168.0.160",
19602 "ip.host": "192.168.0.160",
19603 "ip.dst": "192.168.0.1",
19604 "ip.addr": "192.168.0.1",
19605 "ip.dst_host": "192.168.0.1",
19606 "ip.host": "192.168.0.1",
19607 "Source GeoIP: Unknown": "",
19608 "Destination GeoIP: Unknown": ""
19611 "udp.srcport": "49770",
19612 "udp.dstport": "53",
19613 "udp.port": "49770",
19615 "udp.length": "49",
19616 "udp.checksum": "0x0000cac1",
19617 "udp.checksum.status": "2",
19618 "udp.stream": "293"
19621 "dns.response_in": "24954",
19622 "dns.id": "0x00000043",
19623 "dns.flags": "0x00000100",
19624 "dns.flags_tree": {
19625 "dns.flags.response": "0",
19626 "dns.flags.opcode": "0",
19627 "dns.flags.truncated": "0",
19628 "dns.flags.recdesired": "1",
19629 "dns.flags.z": "0",
19630 "dns.flags.checkdisable": "0"
19632 "dns.count.queries": "1",
19633 "dns.count.answers": "0",
19634 "dns.count.auth_rr": "0",
19635 "dns.count.add_rr": "0",
19637 "diagnostics.meethue.com: type A, class IN": {
19638 "dns.qry.name": "diagnostics.meethue.com",
19639 "dns.qry.name.len": "23",
19640 "dns.count.labels": "3",
19641 "dns.qry.type": "1",
19642 "dns.qry.class": "0x00000001"
19651 "_index": "packets-2017-10-26",
19652 "_type": "pcap_file",
19657 "frame.encap_type": "1",
19658 "frame.time": "Oct 20, 2017 00:12:04.767719000 PDT",
19659 "frame.offset_shift": "0.000000000",
19660 "frame.time_epoch": "1508483524.767719000",
19661 "frame.time_delta": "0.071379000",
19662 "frame.time_delta_displayed": "0.071379000",
19663 "frame.time_relative": "25812.362515000",
19664 "frame.number": "24954",
19665 "frame.len": "297",
19666 "frame.cap_len": "297",
19667 "frame.marked": "0",
19668 "frame.ignored": "0",
19669 "frame.protocols": "eth:ethertype:ip:udp:dns",
19670 "frame.coloring_rule.name": "UDP",
19671 "frame.coloring_rule.string": "udp"
19674 "eth.dst": "00:17:88:69:ee:e4",
19676 "eth.dst_resolved": "PhilipsL_69:ee:e4",
19677 "eth.addr": "00:17:88:69:ee:e4",
19678 "eth.addr_resolved": "PhilipsL_69:ee:e4",
19682 "eth.src": "b0:b9:8a:73:69:8e",
19684 "eth.src_resolved": "Netgear_73:69:8e",
19685 "eth.addr": "b0:b9:8a:73:69:8e",
19686 "eth.addr_resolved": "Netgear_73:69:8e",
19690 "eth.type": "0x00000800"
19694 "ip.hdr_len": "20",
19695 "ip.dsfield": "0x00000000",
19696 "ip.dsfield_tree": {
19697 "ip.dsfield.dscp": "0",
19698 "ip.dsfield.ecn": "0"
19701 "ip.id": "0x00008814",
19702 "ip.flags": "0x00000002",
19704 "ip.flags.rb": "0",
19705 "ip.flags.df": "1",
19708 "ip.frag_offset": "0",
19711 "ip.checksum": "0x00002fcc",
19712 "ip.checksum.status": "2",
19713 "ip.src": "192.168.0.1",
19714 "ip.addr": "192.168.0.1",
19715 "ip.src_host": "192.168.0.1",
19716 "ip.host": "192.168.0.1",
19717 "ip.dst": "192.168.0.160",
19718 "ip.addr": "192.168.0.160",
19719 "ip.dst_host": "192.168.0.160",
19720 "ip.host": "192.168.0.160",
19721 "Source GeoIP: Unknown": "",
19722 "Destination GeoIP: Unknown": ""
19725 "udp.srcport": "53",
19726 "udp.dstport": "49770",
19728 "udp.port": "49770",
19729 "udp.length": "263",
19730 "udp.checksum": "0x0000830a",
19731 "udp.checksum.status": "2",
19732 "udp.stream": "293"
19735 "dns.response_to": "24953",
19736 "dns.time": "0.071379000",
19737 "dns.id": "0x00000043",
19738 "dns.flags": "0x00008180",
19739 "dns.flags_tree": {
19740 "dns.flags.response": "1",
19741 "dns.flags.opcode": "0",
19742 "dns.flags.authoritative": "0",
19743 "dns.flags.truncated": "0",
19744 "dns.flags.recdesired": "1",
19745 "dns.flags.recavail": "1",
19746 "dns.flags.z": "0",
19747 "dns.flags.authenticated": "0",
19748 "dns.flags.checkdisable": "0",
19749 "dns.flags.rcode": "0"
19751 "dns.count.queries": "1",
19752 "dns.count.answers": "1",
19753 "dns.count.auth_rr": "3",
19754 "dns.count.add_rr": "6",
19756 "diagnostics.meethue.com: type A, class IN": {
19757 "dns.qry.name": "diagnostics.meethue.com",
19758 "dns.qry.name.len": "23",
19759 "dns.count.labels": "3",
19760 "dns.qry.type": "1",
19761 "dns.qry.class": "0x00000001"
19765 "diagnostics.meethue.com: type A, class IN, addr 130.211.67.12": {
19766 "dns.resp.name": "diagnostics.meethue.com",
19767 "dns.resp.type": "1",
19768 "dns.resp.class": "0x00000001",
19769 "dns.resp.ttl": "300",
19770 "dns.resp.len": "4",
19771 "dns.a": "130.211.67.12"
19774 "Authoritative nameservers": {
19775 "meethue.com: type NS, class IN, ns ns3.ext.philips.com": {
19776 "dns.resp.name": "meethue.com",
19777 "dns.resp.type": "2",
19778 "dns.resp.class": "0x00000001",
19779 "dns.resp.ttl": "1704",
19780 "dns.resp.len": "18",
19781 "dns.ns": "ns3.ext.philips.com"
19783 "meethue.com: type NS, class IN, ns ns1.ext.philips.com": {
19784 "dns.resp.name": "meethue.com",
19785 "dns.resp.type": "2",
19786 "dns.resp.class": "0x00000001",
19787 "dns.resp.ttl": "1704",
19788 "dns.resp.len": "6",
19789 "dns.ns": "ns1.ext.philips.com"
19791 "meethue.com: type NS, class IN, ns ns2.ext.philips.com": {
19792 "dns.resp.name": "meethue.com",
19793 "dns.resp.type": "2",
19794 "dns.resp.class": "0x00000001",
19795 "dns.resp.ttl": "1704",
19796 "dns.resp.len": "6",
19797 "dns.ns": "ns2.ext.philips.com"
19800 "Additional records": {
19801 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
19802 "dns.resp.name": "ns1.ext.philips.com",
19803 "dns.resp.type": "1",
19804 "dns.resp.class": "0x00000001",
19805 "dns.resp.ttl": "131086",
19806 "dns.resp.len": "4",
19807 "dns.a": "57.67.40.20"
19809 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
19810 "dns.resp.name": "ns2.ext.philips.com",
19811 "dns.resp.type": "1",
19812 "dns.resp.class": "0x00000001",
19813 "dns.resp.ttl": "155804",
19814 "dns.resp.len": "4",
19815 "dns.a": "57.77.21.76"
19817 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
19818 "dns.resp.name": "ns3.ext.philips.com",
19819 "dns.resp.type": "1",
19820 "dns.resp.class": "0x00000001",
19821 "dns.resp.ttl": "155804",
19822 "dns.resp.len": "4",
19823 "dns.a": "57.73.36.68"
19825 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
19826 "dns.resp.name": "ns1.ext.philips.com",
19827 "dns.resp.type": "28",
19828 "dns.resp.class": "0x00000001",
19829 "dns.resp.ttl": "134705",
19830 "dns.resp.len": "16",
19831 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
19833 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
19834 "dns.resp.name": "ns2.ext.philips.com",
19835 "dns.resp.type": "28",
19836 "dns.resp.class": "0x00000001",
19837 "dns.resp.ttl": "127278",
19838 "dns.resp.len": "16",
19839 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
19841 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
19842 "dns.resp.name": "ns3.ext.philips.com",
19843 "dns.resp.type": "28",
19844 "dns.resp.class": "0x00000001",
19845 "dns.resp.ttl": "127278",
19846 "dns.resp.len": "16",
19847 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
19856 "_index": "packets-2017-10-26",
19857 "_type": "pcap_file",
19862 "frame.encap_type": "1",
19863 "frame.time": "Oct 20, 2017 00:22:52.727669000 PDT",
19864 "frame.offset_shift": "0.000000000",
19865 "frame.time_epoch": "1508484172.727669000",
19866 "frame.time_delta": "3.871548000",
19867 "frame.time_delta_displayed": "647.959950000",
19868 "frame.time_relative": "26460.322465000",
19869 "frame.number": "25506",
19871 "frame.cap_len": "76",
19872 "frame.marked": "0",
19873 "frame.ignored": "0",
19874 "frame.protocols": "eth:ethertype:ip:udp:dns",
19875 "frame.coloring_rule.name": "UDP",
19876 "frame.coloring_rule.string": "udp"
19879 "eth.dst": "b0:b9:8a:73:69:8e",
19881 "eth.dst_resolved": "Netgear_73:69:8e",
19882 "eth.addr": "b0:b9:8a:73:69:8e",
19883 "eth.addr_resolved": "Netgear_73:69:8e",
19887 "eth.src": "00:17:88:69:ee:e4",
19889 "eth.src_resolved": "PhilipsL_69:ee:e4",
19890 "eth.addr": "00:17:88:69:ee:e4",
19891 "eth.addr_resolved": "PhilipsL_69:ee:e4",
19895 "eth.type": "0x00000800"
19899 "ip.hdr_len": "20",
19900 "ip.dsfield": "0x00000000",
19901 "ip.dsfield_tree": {
19902 "ip.dsfield.dscp": "0",
19903 "ip.dsfield.ecn": "0"
19906 "ip.id": "0x000042c9",
19907 "ip.flags": "0x00000002",
19909 "ip.flags.rb": "0",
19910 "ip.flags.df": "1",
19913 "ip.frag_offset": "0",
19916 "ip.checksum": "0x000075f4",
19917 "ip.checksum.status": "2",
19918 "ip.src": "192.168.0.160",
19919 "ip.addr": "192.168.0.160",
19920 "ip.src_host": "192.168.0.160",
19921 "ip.host": "192.168.0.160",
19922 "ip.dst": "192.168.0.1",
19923 "ip.addr": "192.168.0.1",
19924 "ip.dst_host": "192.168.0.1",
19925 "ip.host": "192.168.0.1",
19926 "Source GeoIP: Unknown": "",
19927 "Destination GeoIP: Unknown": ""
19930 "udp.srcport": "55301",
19931 "udp.dstport": "53",
19932 "udp.port": "55301",
19934 "udp.length": "42",
19935 "udp.checksum": "0x000080f1",
19936 "udp.checksum.status": "2",
19937 "udp.stream": "295"
19940 "dns.response_in": "25507",
19941 "dns.id": "0x000004c1",
19942 "dns.flags": "0x00000100",
19943 "dns.flags_tree": {
19944 "dns.flags.response": "0",
19945 "dns.flags.opcode": "0",
19946 "dns.flags.truncated": "0",
19947 "dns.flags.recdesired": "1",
19948 "dns.flags.z": "0",
19949 "dns.flags.checkdisable": "0"
19951 "dns.count.queries": "1",
19952 "dns.count.answers": "0",
19953 "dns.count.auth_rr": "0",
19954 "dns.count.add_rr": "0",
19956 "www2.meethue.com: type A, class IN": {
19957 "dns.qry.name": "www2.meethue.com",
19958 "dns.qry.name.len": "16",
19959 "dns.count.labels": "3",
19960 "dns.qry.type": "1",
19961 "dns.qry.class": "0x00000001"
19970 "_index": "packets-2017-10-26",
19971 "_type": "pcap_file",
19976 "frame.encap_type": "1",
19977 "frame.time": "Oct 20, 2017 00:22:52.765073000 PDT",
19978 "frame.offset_shift": "0.000000000",
19979 "frame.time_epoch": "1508484172.765073000",
19980 "frame.time_delta": "0.037404000",
19981 "frame.time_delta_displayed": "0.037404000",
19982 "frame.time_relative": "26460.359869000",
19983 "frame.number": "25507",
19984 "frame.len": "513",
19985 "frame.cap_len": "513",
19986 "frame.marked": "0",
19987 "frame.ignored": "0",
19988 "frame.protocols": "eth:ethertype:ip:udp:dns",
19989 "frame.coloring_rule.name": "UDP",
19990 "frame.coloring_rule.string": "udp"
19993 "eth.dst": "00:17:88:69:ee:e4",
19995 "eth.dst_resolved": "PhilipsL_69:ee:e4",
19996 "eth.addr": "00:17:88:69:ee:e4",
19997 "eth.addr_resolved": "PhilipsL_69:ee:e4",
20001 "eth.src": "b0:b9:8a:73:69:8e",
20003 "eth.src_resolved": "Netgear_73:69:8e",
20004 "eth.addr": "b0:b9:8a:73:69:8e",
20005 "eth.addr_resolved": "Netgear_73:69:8e",
20009 "eth.type": "0x00000800"
20013 "ip.hdr_len": "20",
20014 "ip.dsfield": "0x00000000",
20015 "ip.dsfield_tree": {
20016 "ip.dsfield.dscp": "0",
20017 "ip.dsfield.ecn": "0"
20020 "ip.id": "0x00000318",
20021 "ip.flags": "0x00000002",
20023 "ip.flags.rb": "0",
20024 "ip.flags.df": "1",
20027 "ip.frag_offset": "0",
20030 "ip.checksum": "0x0000b3f0",
20031 "ip.checksum.status": "2",
20032 "ip.src": "192.168.0.1",
20033 "ip.addr": "192.168.0.1",
20034 "ip.src_host": "192.168.0.1",
20035 "ip.host": "192.168.0.1",
20036 "ip.dst": "192.168.0.160",
20037 "ip.addr": "192.168.0.160",
20038 "ip.dst_host": "192.168.0.160",
20039 "ip.host": "192.168.0.160",
20040 "Source GeoIP: Unknown": "",
20041 "Destination GeoIP: Unknown": ""
20044 "udp.srcport": "53",
20045 "udp.dstport": "55301",
20047 "udp.port": "55301",
20048 "udp.length": "479",
20049 "udp.checksum": "0x000083e2",
20050 "udp.checksum.status": "2",
20051 "udp.stream": "295"
20054 "dns.response_to": "25506",
20055 "dns.time": "0.037404000",
20056 "dns.id": "0x000004c1",
20057 "dns.flags": "0x00008180",
20058 "dns.flags_tree": {
20059 "dns.flags.response": "1",
20060 "dns.flags.opcode": "0",
20061 "dns.flags.authoritative": "0",
20062 "dns.flags.truncated": "0",
20063 "dns.flags.recdesired": "1",
20064 "dns.flags.recavail": "1",
20065 "dns.flags.z": "0",
20066 "dns.flags.authenticated": "0",
20067 "dns.flags.checkdisable": "0",
20068 "dns.flags.rcode": "0"
20070 "dns.count.queries": "1",
20071 "dns.count.answers": "4",
20072 "dns.count.auth_rr": "9",
20073 "dns.count.add_rr": "9",
20075 "www2.meethue.com: type A, class IN": {
20076 "dns.qry.name": "www2.meethue.com",
20077 "dns.qry.name.len": "16",
20078 "dns.count.labels": "3",
20079 "dns.qry.type": "1",
20080 "dns.qry.class": "0x00000001"
20084 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
20085 "dns.resp.name": "www2.meethue.com",
20086 "dns.resp.type": "5",
20087 "dns.resp.class": "0x00000001",
20088 "dns.resp.ttl": "119",
20089 "dns.resp.len": "41",
20090 "dns.cname": "brands.lighting.philips.com.edgekey.net"
20092 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
20093 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
20094 "dns.resp.type": "5",
20095 "dns.resp.class": "0x00000001",
20096 "dns.resp.ttl": "8817",
20097 "dns.resp.len": "22",
20098 "dns.cname": "e15361.b.akamaiedge.net"
20100 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
20101 "dns.resp.name": "e15361.b.akamaiedge.net",
20102 "dns.resp.type": "1",
20103 "dns.resp.class": "0x00000001",
20104 "dns.resp.ttl": "20",
20105 "dns.resp.len": "4",
20106 "dns.a": "173.223.52.112"
20108 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
20109 "dns.resp.name": "e15361.b.akamaiedge.net",
20110 "dns.resp.type": "1",
20111 "dns.resp.class": "0x00000001",
20112 "dns.resp.ttl": "20",
20113 "dns.resp.len": "4",
20114 "dns.a": "173.223.52.125"
20117 "Authoritative nameservers": {
20118 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
20119 "dns.resp.name": "b.akamaiedge.net",
20120 "dns.resp.type": "2",
20121 "dns.resp.class": "0x00000001",
20122 "dns.resp.ttl": "3390",
20123 "dns.resp.len": "6",
20124 "dns.ns": "n3b.akamaiedge.net"
20126 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
20127 "dns.resp.name": "b.akamaiedge.net",
20128 "dns.resp.type": "2",
20129 "dns.resp.class": "0x00000001",
20130 "dns.resp.ttl": "3390",
20131 "dns.resp.len": "6",
20132 "dns.ns": "n7b.akamaiedge.net"
20134 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
20135 "dns.resp.name": "b.akamaiedge.net",
20136 "dns.resp.type": "2",
20137 "dns.resp.class": "0x00000001",
20138 "dns.resp.ttl": "3390",
20139 "dns.resp.len": "6",
20140 "dns.ns": "n1b.akamaiedge.net"
20142 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
20143 "dns.resp.name": "b.akamaiedge.net",
20144 "dns.resp.type": "2",
20145 "dns.resp.class": "0x00000001",
20146 "dns.resp.ttl": "3390",
20147 "dns.resp.len": "6",
20148 "dns.ns": "n5b.akamaiedge.net"
20150 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
20151 "dns.resp.name": "b.akamaiedge.net",
20152 "dns.resp.type": "2",
20153 "dns.resp.class": "0x00000001",
20154 "dns.resp.ttl": "3390",
20155 "dns.resp.len": "6",
20156 "dns.ns": "n6b.akamaiedge.net"
20158 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
20159 "dns.resp.name": "b.akamaiedge.net",
20160 "dns.resp.type": "2",
20161 "dns.resp.class": "0x00000001",
20162 "dns.resp.ttl": "3390",
20163 "dns.resp.len": "6",
20164 "dns.ns": "n4b.akamaiedge.net"
20166 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
20167 "dns.resp.name": "b.akamaiedge.net",
20168 "dns.resp.type": "2",
20169 "dns.resp.class": "0x00000001",
20170 "dns.resp.ttl": "3390",
20171 "dns.resp.len": "6",
20172 "dns.ns": "a0b.akamaiedge.net"
20174 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
20175 "dns.resp.name": "b.akamaiedge.net",
20176 "dns.resp.type": "2",
20177 "dns.resp.class": "0x00000001",
20178 "dns.resp.ttl": "3390",
20179 "dns.resp.len": "6",
20180 "dns.ns": "n0b.akamaiedge.net"
20182 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
20183 "dns.resp.name": "b.akamaiedge.net",
20184 "dns.resp.type": "2",
20185 "dns.resp.class": "0x00000001",
20186 "dns.resp.ttl": "3390",
20187 "dns.resp.len": "6",
20188 "dns.ns": "n2b.akamaiedge.net"
20191 "Additional records": {
20192 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
20193 "dns.resp.name": "n0b.akamaiedge.net",
20194 "dns.resp.type": "1",
20195 "dns.resp.class": "0x00000001",
20196 "dns.resp.ttl": "1709",
20197 "dns.resp.len": "4",
20198 "dns.a": "88.221.81.192"
20200 "n1b.akamaiedge.net: type A, class IN, addr 23.67.56.215": {
20201 "dns.resp.name": "n1b.akamaiedge.net",
20202 "dns.resp.type": "1",
20203 "dns.resp.class": "0x00000001",
20204 "dns.resp.ttl": "417",
20205 "dns.resp.len": "4",
20206 "dns.a": "23.67.56.215"
20208 "n2b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
20209 "dns.resp.name": "n2b.akamaiedge.net",
20210 "dns.resp.type": "1",
20211 "dns.resp.class": "0x00000001",
20212 "dns.resp.ttl": "920",
20213 "dns.resp.len": "4",
20214 "dns.a": "204.2.166.158"
20216 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
20217 "dns.resp.name": "n3b.akamaiedge.net",
20218 "dns.resp.type": "1",
20219 "dns.resp.class": "0x00000001",
20220 "dns.resp.ttl": "1112",
20221 "dns.resp.len": "4",
20222 "dns.a": "173.223.52.108"
20224 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.202": {
20225 "dns.resp.name": "n4b.akamaiedge.net",
20226 "dns.resp.type": "1",
20227 "dns.resp.class": "0x00000001",
20228 "dns.resp.ttl": "12",
20229 "dns.resp.len": "4",
20230 "dns.a": "198.172.88.202"
20232 "n5b.akamaiedge.net: type A, class IN, addr 173.223.52.70": {
20233 "dns.resp.name": "n5b.akamaiedge.net",
20234 "dns.resp.type": "1",
20235 "dns.resp.class": "0x00000001",
20236 "dns.resp.ttl": "1761",
20237 "dns.resp.len": "4",
20238 "dns.a": "173.223.52.70"
20240 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
20241 "dns.resp.name": "n6b.akamaiedge.net",
20242 "dns.resp.type": "1",
20243 "dns.resp.class": "0x00000001",
20244 "dns.resp.ttl": "1569",
20245 "dns.resp.len": "4",
20246 "dns.a": "173.223.52.109"
20248 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.246": {
20249 "dns.resp.name": "n7b.akamaiedge.net",
20250 "dns.resp.type": "1",
20251 "dns.resp.class": "0x00000001",
20252 "dns.resp.ttl": "1623",
20253 "dns.resp.len": "4",
20254 "dns.a": "165.254.134.246"
20256 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
20257 "dns.resp.name": "a0b.akamaiedge.net",
20258 "dns.resp.type": "28",
20259 "dns.resp.class": "0x00000001",
20260 "dns.resp.ttl": "1390",
20261 "dns.resp.len": "16",
20262 "dns.aaaa": "2600:1480:e800::c0"
20271 "_index": "packets-2017-10-26",
20272 "_type": "pcap_file",
20277 "frame.encap_type": "1",
20278 "frame.time": "Oct 20, 2017 00:33:23.301033000 PDT",
20279 "frame.offset_shift": "0.000000000",
20280 "frame.time_epoch": "1508484803.301033000",
20281 "frame.time_delta": "0.159453000",
20282 "frame.time_delta_displayed": "630.535960000",
20283 "frame.time_relative": "27090.895829000",
20284 "frame.number": "26095",
20286 "frame.cap_len": "79",
20287 "frame.marked": "0",
20288 "frame.ignored": "0",
20289 "frame.protocols": "eth:ethertype:ip:udp:dns",
20290 "frame.coloring_rule.name": "UDP",
20291 "frame.coloring_rule.string": "udp"
20294 "eth.dst": "b0:b9:8a:73:69:8e",
20296 "eth.dst_resolved": "Netgear_73:69:8e",
20297 "eth.addr": "b0:b9:8a:73:69:8e",
20298 "eth.addr_resolved": "Netgear_73:69:8e",
20302 "eth.src": "00:17:88:69:ee:e4",
20304 "eth.src_resolved": "PhilipsL_69:ee:e4",
20305 "eth.addr": "00:17:88:69:ee:e4",
20306 "eth.addr_resolved": "PhilipsL_69:ee:e4",
20310 "eth.type": "0x00000800"
20314 "ip.hdr_len": "20",
20315 "ip.dsfield": "0x00000000",
20316 "ip.dsfield_tree": {
20317 "ip.dsfield.dscp": "0",
20318 "ip.dsfield.ecn": "0"
20321 "ip.id": "0x0000aa78",
20322 "ip.flags": "0x00000002",
20324 "ip.flags.rb": "0",
20325 "ip.flags.df": "1",
20328 "ip.frag_offset": "0",
20331 "ip.checksum": "0x00000e42",
20332 "ip.checksum.status": "2",
20333 "ip.src": "192.168.0.160",
20334 "ip.addr": "192.168.0.160",
20335 "ip.src_host": "192.168.0.160",
20336 "ip.host": "192.168.0.160",
20337 "ip.dst": "192.168.0.1",
20338 "ip.addr": "192.168.0.1",
20339 "ip.dst_host": "192.168.0.1",
20340 "ip.host": "192.168.0.1",
20341 "Source GeoIP: Unknown": "",
20342 "Destination GeoIP: Unknown": ""
20345 "udp.srcport": "60609",
20346 "udp.dstport": "53",
20347 "udp.port": "60609",
20349 "udp.length": "45",
20350 "udp.checksum": "0x0000d3b9",
20351 "udp.checksum.status": "2",
20352 "udp.stream": "299"
20355 "dns.response_in": "26096",
20356 "dns.id": "0x000004c2",
20357 "dns.flags": "0x00000100",
20358 "dns.flags_tree": {
20359 "dns.flags.response": "0",
20360 "dns.flags.opcode": "0",
20361 "dns.flags.truncated": "0",
20362 "dns.flags.recdesired": "1",
20363 "dns.flags.z": "0",
20364 "dns.flags.checkdisable": "0"
20366 "dns.count.queries": "1",
20367 "dns.count.answers": "0",
20368 "dns.count.auth_rr": "0",
20369 "dns.count.add_rr": "0",
20371 "dcp.cpp.philips.com: type AAAA, class IN": {
20372 "dns.qry.name": "dcp.cpp.philips.com",
20373 "dns.qry.name.len": "19",
20374 "dns.count.labels": "4",
20375 "dns.qry.type": "28",
20376 "dns.qry.class": "0x00000001"
20385 "_index": "packets-2017-10-26",
20386 "_type": "pcap_file",
20391 "frame.encap_type": "1",
20392 "frame.time": "Oct 20, 2017 00:33:23.303089000 PDT",
20393 "frame.offset_shift": "0.000000000",
20394 "frame.time_epoch": "1508484803.303089000",
20395 "frame.time_delta": "0.002056000",
20396 "frame.time_delta_displayed": "0.002056000",
20397 "frame.time_relative": "27090.897885000",
20398 "frame.number": "26096",
20399 "frame.len": "137",
20400 "frame.cap_len": "137",
20401 "frame.marked": "0",
20402 "frame.ignored": "0",
20403 "frame.protocols": "eth:ethertype:ip:udp:dns",
20404 "frame.coloring_rule.name": "UDP",
20405 "frame.coloring_rule.string": "udp"
20408 "eth.dst": "00:17:88:69:ee:e4",
20410 "eth.dst_resolved": "PhilipsL_69:ee:e4",
20411 "eth.addr": "00:17:88:69:ee:e4",
20412 "eth.addr_resolved": "PhilipsL_69:ee:e4",
20416 "eth.src": "b0:b9:8a:73:69:8e",
20418 "eth.src_resolved": "Netgear_73:69:8e",
20419 "eth.addr": "b0:b9:8a:73:69:8e",
20420 "eth.addr_resolved": "Netgear_73:69:8e",
20424 "eth.type": "0x00000800"
20428 "ip.hdr_len": "20",
20429 "ip.dsfield": "0x00000000",
20430 "ip.dsfield_tree": {
20431 "ip.dsfield.dscp": "0",
20432 "ip.dsfield.ecn": "0"
20435 "ip.id": "0x0000a9d2",
20436 "ip.flags": "0x00000002",
20438 "ip.flags.rb": "0",
20439 "ip.flags.df": "1",
20442 "ip.frag_offset": "0",
20445 "ip.checksum": "0x00000eae",
20446 "ip.checksum.status": "2",
20447 "ip.src": "192.168.0.1",
20448 "ip.addr": "192.168.0.1",
20449 "ip.src_host": "192.168.0.1",
20450 "ip.host": "192.168.0.1",
20451 "ip.dst": "192.168.0.160",
20452 "ip.addr": "192.168.0.160",
20453 "ip.dst_host": "192.168.0.160",
20454 "ip.host": "192.168.0.160",
20455 "Source GeoIP: Unknown": "",
20456 "Destination GeoIP: Unknown": ""
20459 "udp.srcport": "53",
20460 "udp.dstport": "60609",
20462 "udp.port": "60609",
20463 "udp.length": "103",
20464 "udp.checksum": "0x0000826a",
20465 "udp.checksum.status": "2",
20466 "udp.stream": "299"
20469 "dns.response_to": "26095",
20470 "dns.time": "0.002056000",
20471 "dns.id": "0x000004c2",
20472 "dns.flags": "0x00008180",
20473 "dns.flags_tree": {
20474 "dns.flags.response": "1",
20475 "dns.flags.opcode": "0",
20476 "dns.flags.authoritative": "0",
20477 "dns.flags.truncated": "0",
20478 "dns.flags.recdesired": "1",
20479 "dns.flags.recavail": "1",
20480 "dns.flags.z": "0",
20481 "dns.flags.authenticated": "0",
20482 "dns.flags.checkdisable": "0",
20483 "dns.flags.rcode": "0"
20485 "dns.count.queries": "1",
20486 "dns.count.answers": "0",
20487 "dns.count.auth_rr": "1",
20488 "dns.count.add_rr": "0",
20490 "dcp.cpp.philips.com: type AAAA, class IN": {
20491 "dns.qry.name": "dcp.cpp.philips.com",
20492 "dns.qry.name.len": "19",
20493 "dns.count.labels": "4",
20494 "dns.qry.type": "28",
20495 "dns.qry.class": "0x00000001"
20498 "Authoritative nameservers": {
20499 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
20500 "dns.resp.name": "cpp.philips.com",
20501 "dns.resp.type": "6",
20502 "dns.resp.class": "0x00000001",
20503 "dns.resp.ttl": "3219",
20504 "dns.resp.len": "46",
20505 "dns.soa.mname": "ns1.ext.philips.com",
20506 "dns.soa.rname": "ddi-authority.philips.com",
20507 "dns.soa.serial_number": "387",
20508 "dns.soa.refresh_interval": "1200",
20509 "dns.soa.retry_interval": "300",
20510 "dns.soa.expire_limit": "1209600",
20511 "dns.soa.mininum_ttl": "3600"
20520 "_index": "packets-2017-10-26",
20521 "_type": "pcap_file",
20526 "frame.encap_type": "1",
20527 "frame.time": "Oct 20, 2017 00:33:23.303940000 PDT",
20528 "frame.offset_shift": "0.000000000",
20529 "frame.time_epoch": "1508484803.303940000",
20530 "frame.time_delta": "0.000851000",
20531 "frame.time_delta_displayed": "0.000851000",
20532 "frame.time_relative": "27090.898736000",
20533 "frame.number": "26097",
20535 "frame.cap_len": "79",
20536 "frame.marked": "0",
20537 "frame.ignored": "0",
20538 "frame.protocols": "eth:ethertype:ip:udp:dns",
20539 "frame.coloring_rule.name": "UDP",
20540 "frame.coloring_rule.string": "udp"
20543 "eth.dst": "b0:b9:8a:73:69:8e",
20545 "eth.dst_resolved": "Netgear_73:69:8e",
20546 "eth.addr": "b0:b9:8a:73:69:8e",
20547 "eth.addr_resolved": "Netgear_73:69:8e",
20551 "eth.src": "00:17:88:69:ee:e4",
20553 "eth.src_resolved": "PhilipsL_69:ee:e4",
20554 "eth.addr": "00:17:88:69:ee:e4",
20555 "eth.addr_resolved": "PhilipsL_69:ee:e4",
20559 "eth.type": "0x00000800"
20563 "ip.hdr_len": "20",
20564 "ip.dsfield": "0x00000000",
20565 "ip.dsfield_tree": {
20566 "ip.dsfield.dscp": "0",
20567 "ip.dsfield.ecn": "0"
20570 "ip.id": "0x0000aa79",
20571 "ip.flags": "0x00000002",
20573 "ip.flags.rb": "0",
20574 "ip.flags.df": "1",
20577 "ip.frag_offset": "0",
20580 "ip.checksum": "0x00000e41",
20581 "ip.checksum.status": "2",
20582 "ip.src": "192.168.0.160",
20583 "ip.addr": "192.168.0.160",
20584 "ip.src_host": "192.168.0.160",
20585 "ip.host": "192.168.0.160",
20586 "ip.dst": "192.168.0.1",
20587 "ip.addr": "192.168.0.1",
20588 "ip.dst_host": "192.168.0.1",
20589 "ip.host": "192.168.0.1",
20590 "Source GeoIP: Unknown": "",
20591 "Destination GeoIP: Unknown": ""
20594 "udp.srcport": "45112",
20595 "udp.dstport": "53",
20596 "udp.port": "45112",
20598 "udp.length": "45",
20599 "udp.checksum": "0x00002b42",
20600 "udp.checksum.status": "2",
20601 "udp.stream": "300"
20604 "dns.response_in": "26098",
20605 "dns.id": "0x000004c3",
20606 "dns.flags": "0x00000100",
20607 "dns.flags_tree": {
20608 "dns.flags.response": "0",
20609 "dns.flags.opcode": "0",
20610 "dns.flags.truncated": "0",
20611 "dns.flags.recdesired": "1",
20612 "dns.flags.z": "0",
20613 "dns.flags.checkdisable": "0"
20615 "dns.count.queries": "1",
20616 "dns.count.answers": "0",
20617 "dns.count.auth_rr": "0",
20618 "dns.count.add_rr": "0",
20620 "dcp.cpp.philips.com: type A, class IN": {
20621 "dns.qry.name": "dcp.cpp.philips.com",
20622 "dns.qry.name.len": "19",
20623 "dns.count.labels": "4",
20624 "dns.qry.type": "1",
20625 "dns.qry.class": "0x00000001"
20634 "_index": "packets-2017-10-26",
20635 "_type": "pcap_file",
20640 "frame.encap_type": "1",
20641 "frame.time": "Oct 20, 2017 00:33:23.305709000 PDT",
20642 "frame.offset_shift": "0.000000000",
20643 "frame.time_epoch": "1508484803.305709000",
20644 "frame.time_delta": "0.001769000",
20645 "frame.time_delta_displayed": "0.001769000",
20646 "frame.time_relative": "27090.900505000",
20647 "frame.number": "26098",
20648 "frame.len": "269",
20649 "frame.cap_len": "269",
20650 "frame.marked": "0",
20651 "frame.ignored": "0",
20652 "frame.protocols": "eth:ethertype:ip:udp:dns",
20653 "frame.coloring_rule.name": "UDP",
20654 "frame.coloring_rule.string": "udp"
20657 "eth.dst": "00:17:88:69:ee:e4",
20659 "eth.dst_resolved": "PhilipsL_69:ee:e4",
20660 "eth.addr": "00:17:88:69:ee:e4",
20661 "eth.addr_resolved": "PhilipsL_69:ee:e4",
20665 "eth.src": "b0:b9:8a:73:69:8e",
20667 "eth.src_resolved": "Netgear_73:69:8e",
20668 "eth.addr": "b0:b9:8a:73:69:8e",
20669 "eth.addr_resolved": "Netgear_73:69:8e",
20673 "eth.type": "0x00000800"
20677 "ip.hdr_len": "20",
20678 "ip.dsfield": "0x00000000",
20679 "ip.dsfield_tree": {
20680 "ip.dsfield.dscp": "0",
20681 "ip.dsfield.ecn": "0"
20684 "ip.id": "0x0000a9d3",
20685 "ip.flags": "0x00000002",
20687 "ip.flags.rb": "0",
20688 "ip.flags.df": "1",
20691 "ip.frag_offset": "0",
20694 "ip.checksum": "0x00000e29",
20695 "ip.checksum.status": "2",
20696 "ip.src": "192.168.0.1",
20697 "ip.addr": "192.168.0.1",
20698 "ip.src_host": "192.168.0.1",
20699 "ip.host": "192.168.0.1",
20700 "ip.dst": "192.168.0.160",
20701 "ip.addr": "192.168.0.160",
20702 "ip.dst_host": "192.168.0.160",
20703 "ip.host": "192.168.0.160",
20704 "Source GeoIP: Unknown": "",
20705 "Destination GeoIP: Unknown": ""
20708 "udp.srcport": "53",
20709 "udp.dstport": "45112",
20711 "udp.port": "45112",
20712 "udp.length": "235",
20713 "udp.checksum": "0x000082ee",
20714 "udp.checksum.status": "2",
20715 "udp.stream": "300"
20718 "dns.response_to": "26097",
20719 "dns.time": "0.001769000",
20720 "dns.id": "0x000004c3",
20721 "dns.flags": "0x00008180",
20722 "dns.flags_tree": {
20723 "dns.flags.response": "1",
20724 "dns.flags.opcode": "0",
20725 "dns.flags.authoritative": "0",
20726 "dns.flags.truncated": "0",
20727 "dns.flags.recdesired": "1",
20728 "dns.flags.recavail": "1",
20729 "dns.flags.z": "0",
20730 "dns.flags.authenticated": "0",
20731 "dns.flags.checkdisable": "0",
20732 "dns.flags.rcode": "0"
20734 "dns.count.queries": "1",
20735 "dns.count.answers": "1",
20736 "dns.count.auth_rr": "3",
20737 "dns.count.add_rr": "5",
20739 "dcp.cpp.philips.com: type A, class IN": {
20740 "dns.qry.name": "dcp.cpp.philips.com",
20741 "dns.qry.name.len": "19",
20742 "dns.count.labels": "4",
20743 "dns.qry.type": "1",
20744 "dns.qry.class": "0x00000001"
20748 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
20749 "dns.resp.name": "dcp.cpp.philips.com",
20750 "dns.resp.type": "1",
20751 "dns.resp.class": "0x00000001",
20752 "dns.resp.ttl": "3219",
20753 "dns.resp.len": "4",
20754 "dns.a": "5.79.62.93"
20757 "Authoritative nameservers": {
20758 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
20759 "dns.resp.name": "cpp.philips.com",
20760 "dns.resp.type": "2",
20761 "dns.resp.class": "0x00000001",
20762 "dns.resp.ttl": "689",
20763 "dns.resp.len": "10",
20764 "dns.ns": "ns3.ext.philips.com"
20766 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
20767 "dns.resp.name": "cpp.philips.com",
20768 "dns.resp.type": "2",
20769 "dns.resp.class": "0x00000001",
20770 "dns.resp.ttl": "689",
20771 "dns.resp.len": "6",
20772 "dns.ns": "ns1.ext.philips.com"
20774 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
20775 "dns.resp.name": "cpp.philips.com",
20776 "dns.resp.type": "2",
20777 "dns.resp.class": "0x00000001",
20778 "dns.resp.ttl": "689",
20779 "dns.resp.len": "6",
20780 "dns.ns": "ns2.ext.philips.com"
20783 "Additional records": {
20784 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
20785 "dns.resp.name": "ns2.ext.philips.com",
20786 "dns.resp.type": "1",
20787 "dns.resp.class": "0x00000001",
20788 "dns.resp.ttl": "149973",
20789 "dns.resp.len": "4",
20790 "dns.a": "57.77.21.76"
20792 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
20793 "dns.resp.name": "ns3.ext.philips.com",
20794 "dns.resp.type": "1",
20795 "dns.resp.class": "0x00000001",
20796 "dns.resp.ttl": "149973",
20797 "dns.resp.len": "4",
20798 "dns.a": "57.73.36.68"
20800 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
20801 "dns.resp.name": "ns1.ext.philips.com",
20802 "dns.resp.type": "28",
20803 "dns.resp.class": "0x00000001",
20804 "dns.resp.ttl": "168228",
20805 "dns.resp.len": "16",
20806 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
20808 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
20809 "dns.resp.name": "ns2.ext.philips.com",
20810 "dns.resp.type": "28",
20811 "dns.resp.class": "0x00000001",
20812 "dns.resp.ttl": "39950",
20813 "dns.resp.len": "16",
20814 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
20816 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
20817 "dns.resp.name": "ns3.ext.philips.com",
20818 "dns.resp.type": "28",
20819 "dns.resp.class": "0x00000001",
20820 "dns.resp.ttl": "39950",
20821 "dns.resp.len": "16",
20822 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
20831 "_index": "packets-2017-10-26",
20832 "_type": "pcap_file",
20837 "frame.encap_type": "1",
20838 "frame.time": "Oct 20, 2017 00:33:23.726935000 PDT",
20839 "frame.offset_shift": "0.000000000",
20840 "frame.time_epoch": "1508484803.726935000",
20841 "frame.time_delta": "0.001538000",
20842 "frame.time_delta_displayed": "0.421226000",
20843 "frame.time_relative": "27091.321731000",
20844 "frame.number": "26114",
20846 "frame.cap_len": "79",
20847 "frame.marked": "0",
20848 "frame.ignored": "0",
20849 "frame.protocols": "eth:ethertype:ip:udp:dns",
20850 "frame.coloring_rule.name": "UDP",
20851 "frame.coloring_rule.string": "udp"
20854 "eth.dst": "b0:b9:8a:73:69:8e",
20856 "eth.dst_resolved": "Netgear_73:69:8e",
20857 "eth.addr": "b0:b9:8a:73:69:8e",
20858 "eth.addr_resolved": "Netgear_73:69:8e",
20862 "eth.src": "00:17:88:69:ee:e4",
20864 "eth.src_resolved": "PhilipsL_69:ee:e4",
20865 "eth.addr": "00:17:88:69:ee:e4",
20866 "eth.addr_resolved": "PhilipsL_69:ee:e4",
20870 "eth.type": "0x00000800"
20874 "ip.hdr_len": "20",
20875 "ip.dsfield": "0x00000000",
20876 "ip.dsfield_tree": {
20877 "ip.dsfield.dscp": "0",
20878 "ip.dsfield.ecn": "0"
20881 "ip.id": "0x0000aaa1",
20882 "ip.flags": "0x00000002",
20884 "ip.flags.rb": "0",
20885 "ip.flags.df": "1",
20888 "ip.frag_offset": "0",
20891 "ip.checksum": "0x00000e19",
20892 "ip.checksum.status": "2",
20893 "ip.src": "192.168.0.160",
20894 "ip.addr": "192.168.0.160",
20895 "ip.src_host": "192.168.0.160",
20896 "ip.host": "192.168.0.160",
20897 "ip.dst": "192.168.0.1",
20898 "ip.addr": "192.168.0.1",
20899 "ip.dst_host": "192.168.0.1",
20900 "ip.host": "192.168.0.1",
20901 "Source GeoIP: Unknown": "",
20902 "Destination GeoIP: Unknown": ""
20905 "udp.srcport": "47836",
20906 "udp.dstport": "53",
20907 "udp.port": "47836",
20909 "udp.length": "45",
20910 "udp.checksum": "0x0000059d",
20911 "udp.checksum.status": "2",
20912 "udp.stream": "301"
20915 "dns.response_in": "26115",
20916 "dns.id": "0x000004c4",
20917 "dns.flags": "0x00000100",
20918 "dns.flags_tree": {
20919 "dns.flags.response": "0",
20920 "dns.flags.opcode": "0",
20921 "dns.flags.truncated": "0",
20922 "dns.flags.recdesired": "1",
20923 "dns.flags.z": "0",
20924 "dns.flags.checkdisable": "0"
20926 "dns.count.queries": "1",
20927 "dns.count.answers": "0",
20928 "dns.count.auth_rr": "0",
20929 "dns.count.add_rr": "0",
20931 "dcp.cpp.philips.com: type AAAA, class IN": {
20932 "dns.qry.name": "dcp.cpp.philips.com",
20933 "dns.qry.name.len": "19",
20934 "dns.count.labels": "4",
20935 "dns.qry.type": "28",
20936 "dns.qry.class": "0x00000001"
20945 "_index": "packets-2017-10-26",
20946 "_type": "pcap_file",
20951 "frame.encap_type": "1",
20952 "frame.time": "Oct 20, 2017 00:33:23.727513000 PDT",
20953 "frame.offset_shift": "0.000000000",
20954 "frame.time_epoch": "1508484803.727513000",
20955 "frame.time_delta": "0.000578000",
20956 "frame.time_delta_displayed": "0.000578000",
20957 "frame.time_relative": "27091.322309000",
20958 "frame.number": "26115",
20960 "frame.cap_len": "79",
20961 "frame.marked": "0",
20962 "frame.ignored": "0",
20963 "frame.protocols": "eth:ethertype:ip:udp:dns",
20964 "frame.coloring_rule.name": "UDP",
20965 "frame.coloring_rule.string": "udp"
20968 "eth.dst": "00:17:88:69:ee:e4",
20970 "eth.dst_resolved": "PhilipsL_69:ee:e4",
20971 "eth.addr": "00:17:88:69:ee:e4",
20972 "eth.addr_resolved": "PhilipsL_69:ee:e4",
20976 "eth.src": "b0:b9:8a:73:69:8e",
20978 "eth.src_resolved": "Netgear_73:69:8e",
20979 "eth.addr": "b0:b9:8a:73:69:8e",
20980 "eth.addr_resolved": "Netgear_73:69:8e",
20984 "eth.type": "0x00000800"
20988 "ip.hdr_len": "20",
20989 "ip.dsfield": "0x00000000",
20990 "ip.dsfield_tree": {
20991 "ip.dsfield.dscp": "0",
20992 "ip.dsfield.ecn": "0"
20995 "ip.id": "0x0000a9f1",
20996 "ip.flags": "0x00000002",
20998 "ip.flags.rb": "0",
20999 "ip.flags.df": "1",
21002 "ip.frag_offset": "0",
21005 "ip.checksum": "0x00000ec9",
21006 "ip.checksum.status": "2",
21007 "ip.src": "192.168.0.1",
21008 "ip.addr": "192.168.0.1",
21009 "ip.src_host": "192.168.0.1",
21010 "ip.host": "192.168.0.1",
21011 "ip.dst": "192.168.0.160",
21012 "ip.addr": "192.168.0.160",
21013 "ip.dst_host": "192.168.0.160",
21014 "ip.host": "192.168.0.160",
21015 "Source GeoIP: Unknown": "",
21016 "Destination GeoIP: Unknown": ""
21019 "udp.srcport": "53",
21020 "udp.dstport": "47836",
21022 "udp.port": "47836",
21023 "udp.length": "45",
21024 "udp.checksum": "0x00008230",
21025 "udp.checksum.status": "2",
21026 "udp.stream": "301"
21029 "dns.response_to": "26114",
21030 "dns.time": "0.000578000",
21031 "dns.id": "0x000004c4",
21032 "dns.flags": "0x00008180",
21033 "dns.flags_tree": {
21034 "dns.flags.response": "1",
21035 "dns.flags.opcode": "0",
21036 "dns.flags.authoritative": "0",
21037 "dns.flags.truncated": "0",
21038 "dns.flags.recdesired": "1",
21039 "dns.flags.recavail": "1",
21040 "dns.flags.z": "0",
21041 "dns.flags.authenticated": "0",
21042 "dns.flags.checkdisable": "0",
21043 "dns.flags.rcode": "0"
21045 "dns.count.queries": "1",
21046 "dns.count.answers": "0",
21047 "dns.count.auth_rr": "0",
21048 "dns.count.add_rr": "0",
21050 "dcp.cpp.philips.com: type AAAA, class IN": {
21051 "dns.qry.name": "dcp.cpp.philips.com",
21052 "dns.qry.name.len": "19",
21053 "dns.count.labels": "4",
21054 "dns.qry.type": "28",
21055 "dns.qry.class": "0x00000001"
21064 "_index": "packets-2017-10-26",
21065 "_type": "pcap_file",
21070 "frame.encap_type": "1",
21071 "frame.time": "Oct 20, 2017 00:33:23.728355000 PDT",
21072 "frame.offset_shift": "0.000000000",
21073 "frame.time_epoch": "1508484803.728355000",
21074 "frame.time_delta": "0.000842000",
21075 "frame.time_delta_displayed": "0.000842000",
21076 "frame.time_relative": "27091.323151000",
21077 "frame.number": "26116",
21079 "frame.cap_len": "79",
21080 "frame.marked": "0",
21081 "frame.ignored": "0",
21082 "frame.protocols": "eth:ethertype:ip:udp:dns",
21083 "frame.coloring_rule.name": "UDP",
21084 "frame.coloring_rule.string": "udp"
21087 "eth.dst": "b0:b9:8a:73:69:8e",
21089 "eth.dst_resolved": "Netgear_73:69:8e",
21090 "eth.addr": "b0:b9:8a:73:69:8e",
21091 "eth.addr_resolved": "Netgear_73:69:8e",
21095 "eth.src": "00:17:88:69:ee:e4",
21097 "eth.src_resolved": "PhilipsL_69:ee:e4",
21098 "eth.addr": "00:17:88:69:ee:e4",
21099 "eth.addr_resolved": "PhilipsL_69:ee:e4",
21103 "eth.type": "0x00000800"
21107 "ip.hdr_len": "20",
21108 "ip.dsfield": "0x00000000",
21109 "ip.dsfield_tree": {
21110 "ip.dsfield.dscp": "0",
21111 "ip.dsfield.ecn": "0"
21114 "ip.id": "0x0000aaa2",
21115 "ip.flags": "0x00000002",
21117 "ip.flags.rb": "0",
21118 "ip.flags.df": "1",
21121 "ip.frag_offset": "0",
21124 "ip.checksum": "0x00000e18",
21125 "ip.checksum.status": "2",
21126 "ip.src": "192.168.0.160",
21127 "ip.addr": "192.168.0.160",
21128 "ip.src_host": "192.168.0.160",
21129 "ip.host": "192.168.0.160",
21130 "ip.dst": "192.168.0.1",
21131 "ip.addr": "192.168.0.1",
21132 "ip.dst_host": "192.168.0.1",
21133 "ip.host": "192.168.0.1",
21134 "Source GeoIP: Unknown": "",
21135 "Destination GeoIP: Unknown": ""
21138 "udp.srcport": "59436",
21139 "udp.dstport": "53",
21140 "udp.port": "59436",
21142 "udp.length": "45",
21143 "udp.checksum": "0x0000f34b",
21144 "udp.checksum.status": "2",
21145 "udp.stream": "302"
21148 "dns.response_in": "26117",
21149 "dns.id": "0x000004c5",
21150 "dns.flags": "0x00000100",
21151 "dns.flags_tree": {
21152 "dns.flags.response": "0",
21153 "dns.flags.opcode": "0",
21154 "dns.flags.truncated": "0",
21155 "dns.flags.recdesired": "1",
21156 "dns.flags.z": "0",
21157 "dns.flags.checkdisable": "0"
21159 "dns.count.queries": "1",
21160 "dns.count.answers": "0",
21161 "dns.count.auth_rr": "0",
21162 "dns.count.add_rr": "0",
21164 "dcp.cpp.philips.com: type A, class IN": {
21165 "dns.qry.name": "dcp.cpp.philips.com",
21166 "dns.qry.name.len": "19",
21167 "dns.count.labels": "4",
21168 "dns.qry.type": "1",
21169 "dns.qry.class": "0x00000001"
21178 "_index": "packets-2017-10-26",
21179 "_type": "pcap_file",
21184 "frame.encap_type": "1",
21185 "frame.time": "Oct 20, 2017 00:33:23.728777000 PDT",
21186 "frame.offset_shift": "0.000000000",
21187 "frame.time_epoch": "1508484803.728777000",
21188 "frame.time_delta": "0.000422000",
21189 "frame.time_delta_displayed": "0.000422000",
21190 "frame.time_relative": "27091.323573000",
21191 "frame.number": "26117",
21193 "frame.cap_len": "95",
21194 "frame.marked": "0",
21195 "frame.ignored": "0",
21196 "frame.protocols": "eth:ethertype:ip:udp:dns",
21197 "frame.coloring_rule.name": "UDP",
21198 "frame.coloring_rule.string": "udp"
21201 "eth.dst": "00:17:88:69:ee:e4",
21203 "eth.dst_resolved": "PhilipsL_69:ee:e4",
21204 "eth.addr": "00:17:88:69:ee:e4",
21205 "eth.addr_resolved": "PhilipsL_69:ee:e4",
21209 "eth.src": "b0:b9:8a:73:69:8e",
21211 "eth.src_resolved": "Netgear_73:69:8e",
21212 "eth.addr": "b0:b9:8a:73:69:8e",
21213 "eth.addr_resolved": "Netgear_73:69:8e",
21217 "eth.type": "0x00000800"
21221 "ip.hdr_len": "20",
21222 "ip.dsfield": "0x00000000",
21223 "ip.dsfield_tree": {
21224 "ip.dsfield.dscp": "0",
21225 "ip.dsfield.ecn": "0"
21228 "ip.id": "0x0000a9f2",
21229 "ip.flags": "0x00000002",
21231 "ip.flags.rb": "0",
21232 "ip.flags.df": "1",
21235 "ip.frag_offset": "0",
21238 "ip.checksum": "0x00000eb8",
21239 "ip.checksum.status": "2",
21240 "ip.src": "192.168.0.1",
21241 "ip.addr": "192.168.0.1",
21242 "ip.src_host": "192.168.0.1",
21243 "ip.host": "192.168.0.1",
21244 "ip.dst": "192.168.0.160",
21245 "ip.addr": "192.168.0.160",
21246 "ip.dst_host": "192.168.0.160",
21247 "ip.host": "192.168.0.160",
21248 "Source GeoIP: Unknown": "",
21249 "Destination GeoIP: Unknown": ""
21252 "udp.srcport": "53",
21253 "udp.dstport": "59436",
21255 "udp.port": "59436",
21256 "udp.length": "61",
21257 "udp.checksum": "0x00008240",
21258 "udp.checksum.status": "2",
21259 "udp.stream": "302"
21262 "dns.response_to": "26116",
21263 "dns.time": "0.000422000",
21264 "dns.id": "0x000004c5",
21265 "dns.flags": "0x00008180",
21266 "dns.flags_tree": {
21267 "dns.flags.response": "1",
21268 "dns.flags.opcode": "0",
21269 "dns.flags.authoritative": "0",
21270 "dns.flags.truncated": "0",
21271 "dns.flags.recdesired": "1",
21272 "dns.flags.recavail": "1",
21273 "dns.flags.z": "0",
21274 "dns.flags.authenticated": "0",
21275 "dns.flags.checkdisable": "0",
21276 "dns.flags.rcode": "0"
21278 "dns.count.queries": "1",
21279 "dns.count.answers": "1",
21280 "dns.count.auth_rr": "0",
21281 "dns.count.add_rr": "0",
21283 "dcp.cpp.philips.com: type A, class IN": {
21284 "dns.qry.name": "dcp.cpp.philips.com",
21285 "dns.qry.name.len": "19",
21286 "dns.count.labels": "4",
21287 "dns.qry.type": "1",
21288 "dns.qry.class": "0x00000001"
21292 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
21293 "dns.resp.name": "dcp.cpp.philips.com",
21294 "dns.resp.type": "1",
21295 "dns.resp.class": "0x00000001",
21296 "dns.resp.ttl": "3219",
21297 "dns.resp.len": "4",
21298 "dns.a": "5.79.62.93"
21307 "_index": "packets-2017-10-26",
21308 "_type": "pcap_file",
21313 "frame.encap_type": "1",
21314 "frame.time": "Oct 20, 2017 00:37:52.772955000 PDT",
21315 "frame.offset_shift": "0.000000000",
21316 "frame.time_epoch": "1508485072.772955000",
21317 "frame.time_delta": "1.222355000",
21318 "frame.time_delta_displayed": "269.044178000",
21319 "frame.time_relative": "27360.367751000",
21320 "frame.number": "26369",
21322 "frame.cap_len": "76",
21323 "frame.marked": "0",
21324 "frame.ignored": "0",
21325 "frame.protocols": "eth:ethertype:ip:udp:dns",
21326 "frame.coloring_rule.name": "UDP",
21327 "frame.coloring_rule.string": "udp"
21330 "eth.dst": "b0:b9:8a:73:69:8e",
21332 "eth.dst_resolved": "Netgear_73:69:8e",
21333 "eth.addr": "b0:b9:8a:73:69:8e",
21334 "eth.addr_resolved": "Netgear_73:69:8e",
21338 "eth.src": "00:17:88:69:ee:e4",
21340 "eth.src_resolved": "PhilipsL_69:ee:e4",
21341 "eth.addr": "00:17:88:69:ee:e4",
21342 "eth.addr_resolved": "PhilipsL_69:ee:e4",
21346 "eth.type": "0x00000800"
21350 "ip.hdr_len": "20",
21351 "ip.dsfield": "0x00000000",
21352 "ip.dsfield_tree": {
21353 "ip.dsfield.dscp": "0",
21354 "ip.dsfield.ecn": "0"
21357 "ip.id": "0x0000ce92",
21358 "ip.flags": "0x00000002",
21360 "ip.flags.rb": "0",
21361 "ip.flags.df": "1",
21364 "ip.frag_offset": "0",
21367 "ip.checksum": "0x0000ea2a",
21368 "ip.checksum.status": "2",
21369 "ip.src": "192.168.0.160",
21370 "ip.addr": "192.168.0.160",
21371 "ip.src_host": "192.168.0.160",
21372 "ip.host": "192.168.0.160",
21373 "ip.dst": "192.168.0.1",
21374 "ip.addr": "192.168.0.1",
21375 "ip.dst_host": "192.168.0.1",
21376 "ip.host": "192.168.0.1",
21377 "Source GeoIP: Unknown": "",
21378 "Destination GeoIP: Unknown": ""
21381 "udp.srcport": "45574",
21382 "udp.dstport": "53",
21383 "udp.port": "45574",
21385 "udp.length": "42",
21386 "udp.checksum": "0x0000a6eb",
21387 "udp.checksum.status": "2",
21388 "udp.stream": "304"
21391 "dns.response_in": "26370",
21392 "dns.id": "0x000004c6",
21393 "dns.flags": "0x00000100",
21394 "dns.flags_tree": {
21395 "dns.flags.response": "0",
21396 "dns.flags.opcode": "0",
21397 "dns.flags.truncated": "0",
21398 "dns.flags.recdesired": "1",
21399 "dns.flags.z": "0",
21400 "dns.flags.checkdisable": "0"
21402 "dns.count.queries": "1",
21403 "dns.count.answers": "0",
21404 "dns.count.auth_rr": "0",
21405 "dns.count.add_rr": "0",
21407 "www2.meethue.com: type A, class IN": {
21408 "dns.qry.name": "www2.meethue.com",
21409 "dns.qry.name.len": "16",
21410 "dns.count.labels": "3",
21411 "dns.qry.type": "1",
21412 "dns.qry.class": "0x00000001"
21421 "_index": "packets-2017-10-26",
21422 "_type": "pcap_file",
21427 "frame.encap_type": "1",
21428 "frame.time": "Oct 20, 2017 00:37:52.788820000 PDT",
21429 "frame.offset_shift": "0.000000000",
21430 "frame.time_epoch": "1508485072.788820000",
21431 "frame.time_delta": "0.015865000",
21432 "frame.time_delta_displayed": "0.015865000",
21433 "frame.time_relative": "27360.383616000",
21434 "frame.number": "26370",
21435 "frame.len": "513",
21436 "frame.cap_len": "513",
21437 "frame.marked": "0",
21438 "frame.ignored": "0",
21439 "frame.protocols": "eth:ethertype:ip:udp:dns",
21440 "frame.coloring_rule.name": "UDP",
21441 "frame.coloring_rule.string": "udp"
21444 "eth.dst": "00:17:88:69:ee:e4",
21446 "eth.dst_resolved": "PhilipsL_69:ee:e4",
21447 "eth.addr": "00:17:88:69:ee:e4",
21448 "eth.addr_resolved": "PhilipsL_69:ee:e4",
21452 "eth.src": "b0:b9:8a:73:69:8e",
21454 "eth.src_resolved": "Netgear_73:69:8e",
21455 "eth.addr": "b0:b9:8a:73:69:8e",
21456 "eth.addr_resolved": "Netgear_73:69:8e",
21460 "eth.type": "0x00000800"
21464 "ip.hdr_len": "20",
21465 "ip.dsfield": "0x00000000",
21466 "ip.dsfield_tree": {
21467 "ip.dsfield.dscp": "0",
21468 "ip.dsfield.ecn": "0"
21471 "ip.id": "0x0000cb7f",
21472 "ip.flags": "0x00000002",
21474 "ip.flags.rb": "0",
21475 "ip.flags.df": "1",
21478 "ip.frag_offset": "0",
21481 "ip.checksum": "0x0000eb88",
21482 "ip.checksum.status": "2",
21483 "ip.src": "192.168.0.1",
21484 "ip.addr": "192.168.0.1",
21485 "ip.src_host": "192.168.0.1",
21486 "ip.host": "192.168.0.1",
21487 "ip.dst": "192.168.0.160",
21488 "ip.addr": "192.168.0.160",
21489 "ip.dst_host": "192.168.0.160",
21490 "ip.host": "192.168.0.160",
21491 "Source GeoIP: Unknown": "",
21492 "Destination GeoIP: Unknown": ""
21495 "udp.srcport": "53",
21496 "udp.dstport": "45574",
21498 "udp.port": "45574",
21499 "udp.length": "479",
21500 "udp.checksum": "0x000083e2",
21501 "udp.checksum.status": "2",
21502 "udp.stream": "304"
21505 "dns.response_to": "26369",
21506 "dns.time": "0.015865000",
21507 "dns.id": "0x000004c6",
21508 "dns.flags": "0x00008180",
21509 "dns.flags_tree": {
21510 "dns.flags.response": "1",
21511 "dns.flags.opcode": "0",
21512 "dns.flags.authoritative": "0",
21513 "dns.flags.truncated": "0",
21514 "dns.flags.recdesired": "1",
21515 "dns.flags.recavail": "1",
21516 "dns.flags.z": "0",
21517 "dns.flags.authenticated": "0",
21518 "dns.flags.checkdisable": "0",
21519 "dns.flags.rcode": "0"
21521 "dns.count.queries": "1",
21522 "dns.count.answers": "4",
21523 "dns.count.auth_rr": "9",
21524 "dns.count.add_rr": "9",
21526 "www2.meethue.com: type A, class IN": {
21527 "dns.qry.name": "www2.meethue.com",
21528 "dns.qry.name.len": "16",
21529 "dns.count.labels": "3",
21530 "dns.qry.type": "1",
21531 "dns.qry.class": "0x00000001"
21535 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
21536 "dns.resp.name": "www2.meethue.com",
21537 "dns.resp.type": "5",
21538 "dns.resp.class": "0x00000001",
21539 "dns.resp.ttl": "144",
21540 "dns.resp.len": "41",
21541 "dns.cname": "brands.lighting.philips.com.edgekey.net"
21543 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
21544 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
21545 "dns.resp.type": "5",
21546 "dns.resp.class": "0x00000001",
21547 "dns.resp.ttl": "9558",
21548 "dns.resp.len": "22",
21549 "dns.cname": "e15361.b.akamaiedge.net"
21551 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
21552 "dns.resp.name": "e15361.b.akamaiedge.net",
21553 "dns.resp.type": "1",
21554 "dns.resp.class": "0x00000001",
21555 "dns.resp.ttl": "20",
21556 "dns.resp.len": "4",
21557 "dns.a": "184.84.242.42"
21559 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
21560 "dns.resp.name": "e15361.b.akamaiedge.net",
21561 "dns.resp.type": "1",
21562 "dns.resp.class": "0x00000001",
21563 "dns.resp.ttl": "20",
21564 "dns.resp.len": "4",
21565 "dns.a": "184.84.242.27"
21568 "Authoritative nameservers": {
21569 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
21570 "dns.resp.name": "b.akamaiedge.net",
21571 "dns.resp.type": "2",
21572 "dns.resp.class": "0x00000001",
21573 "dns.resp.ttl": "2574",
21574 "dns.resp.len": "6",
21575 "dns.ns": "a0b.akamaiedge.net"
21577 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
21578 "dns.resp.name": "b.akamaiedge.net",
21579 "dns.resp.type": "2",
21580 "dns.resp.class": "0x00000001",
21581 "dns.resp.ttl": "2574",
21582 "dns.resp.len": "6",
21583 "dns.ns": "n1b.akamaiedge.net"
21585 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
21586 "dns.resp.name": "b.akamaiedge.net",
21587 "dns.resp.type": "2",
21588 "dns.resp.class": "0x00000001",
21589 "dns.resp.ttl": "2574",
21590 "dns.resp.len": "6",
21591 "dns.ns": "n3b.akamaiedge.net"
21593 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
21594 "dns.resp.name": "b.akamaiedge.net",
21595 "dns.resp.type": "2",
21596 "dns.resp.class": "0x00000001",
21597 "dns.resp.ttl": "2574",
21598 "dns.resp.len": "6",
21599 "dns.ns": "n2b.akamaiedge.net"
21601 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
21602 "dns.resp.name": "b.akamaiedge.net",
21603 "dns.resp.type": "2",
21604 "dns.resp.class": "0x00000001",
21605 "dns.resp.ttl": "2574",
21606 "dns.resp.len": "6",
21607 "dns.ns": "n7b.akamaiedge.net"
21609 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
21610 "dns.resp.name": "b.akamaiedge.net",
21611 "dns.resp.type": "2",
21612 "dns.resp.class": "0x00000001",
21613 "dns.resp.ttl": "2574",
21614 "dns.resp.len": "6",
21615 "dns.ns": "n5b.akamaiedge.net"
21617 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
21618 "dns.resp.name": "b.akamaiedge.net",
21619 "dns.resp.type": "2",
21620 "dns.resp.class": "0x00000001",
21621 "dns.resp.ttl": "2574",
21622 "dns.resp.len": "6",
21623 "dns.ns": "n4b.akamaiedge.net"
21625 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
21626 "dns.resp.name": "b.akamaiedge.net",
21627 "dns.resp.type": "2",
21628 "dns.resp.class": "0x00000001",
21629 "dns.resp.ttl": "2574",
21630 "dns.resp.len": "6",
21631 "dns.ns": "n6b.akamaiedge.net"
21633 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
21634 "dns.resp.name": "b.akamaiedge.net",
21635 "dns.resp.type": "2",
21636 "dns.resp.class": "0x00000001",
21637 "dns.resp.ttl": "2574",
21638 "dns.resp.len": "6",
21639 "dns.ns": "n0b.akamaiedge.net"
21642 "Additional records": {
21643 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
21644 "dns.resp.name": "n0b.akamaiedge.net",
21645 "dns.resp.type": "1",
21646 "dns.resp.class": "0x00000001",
21647 "dns.resp.ttl": "3102",
21648 "dns.resp.len": "4",
21649 "dns.a": "88.221.81.192"
21651 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.131": {
21652 "dns.resp.name": "n1b.akamaiedge.net",
21653 "dns.resp.type": "1",
21654 "dns.resp.class": "0x00000001",
21655 "dns.resp.ttl": "3642",
21656 "dns.resp.len": "4",
21657 "dns.a": "173.223.52.131"
21659 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.94": {
21660 "dns.resp.name": "n2b.akamaiedge.net",
21661 "dns.resp.type": "1",
21662 "dns.resp.class": "0x00000001",
21663 "dns.resp.ttl": "6416",
21664 "dns.resp.len": "4",
21665 "dns.a": "165.254.16.94"
21667 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.176": {
21668 "dns.resp.name": "n3b.akamaiedge.net",
21669 "dns.resp.type": "1",
21670 "dns.resp.class": "0x00000001",
21671 "dns.resp.ttl": "2481",
21672 "dns.resp.len": "4",
21673 "dns.a": "96.17.70.176"
21675 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
21676 "dns.resp.name": "n4b.akamaiedge.net",
21677 "dns.resp.type": "1",
21678 "dns.resp.class": "0x00000001",
21679 "dns.resp.ttl": "2888",
21680 "dns.resp.len": "4",
21681 "dns.a": "96.17.70.177"
21683 "n5b.akamaiedge.net: type A, class IN, addr 96.17.70.191": {
21684 "dns.resp.name": "n5b.akamaiedge.net",
21685 "dns.resp.type": "1",
21686 "dns.resp.class": "0x00000001",
21687 "dns.resp.ttl": "3443",
21688 "dns.resp.len": "4",
21689 "dns.a": "96.17.70.191"
21691 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
21692 "dns.resp.name": "n6b.akamaiedge.net",
21693 "dns.resp.type": "1",
21694 "dns.resp.class": "0x00000001",
21695 "dns.resp.ttl": "3024",
21696 "dns.resp.len": "4",
21697 "dns.a": "96.17.70.177"
21699 "n7b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
21700 "dns.resp.name": "n7b.akamaiedge.net",
21701 "dns.resp.type": "1",
21702 "dns.resp.class": "0x00000001",
21703 "dns.resp.ttl": "1128",
21704 "dns.resp.len": "4",
21705 "dns.a": "204.1.137.41"
21707 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
21708 "dns.resp.name": "a0b.akamaiedge.net",
21709 "dns.resp.type": "28",
21710 "dns.resp.class": "0x00000001",
21711 "dns.resp.ttl": "4574",
21712 "dns.resp.len": "16",
21713 "dns.aaaa": "2600:1480:e800::c0"
21722 "_index": "packets-2017-10-26",
21723 "_type": "pcap_file",
21728 "frame.encap_type": "1",
21729 "frame.time": "Oct 20, 2017 00:52:52.797929000 PDT",
21730 "frame.offset_shift": "0.000000000",
21731 "frame.time_epoch": "1508485972.797929000",
21732 "frame.time_delta": "1.729711000",
21733 "frame.time_delta_displayed": "900.009109000",
21734 "frame.time_relative": "28260.392725000",
21735 "frame.number": "27288",
21737 "frame.cap_len": "76",
21738 "frame.marked": "0",
21739 "frame.ignored": "0",
21740 "frame.protocols": "eth:ethertype:ip:udp:dns",
21741 "frame.coloring_rule.name": "UDP",
21742 "frame.coloring_rule.string": "udp"
21745 "eth.dst": "b0:b9:8a:73:69:8e",
21747 "eth.dst_resolved": "Netgear_73:69:8e",
21748 "eth.addr": "b0:b9:8a:73:69:8e",
21749 "eth.addr_resolved": "Netgear_73:69:8e",
21753 "eth.src": "00:17:88:69:ee:e4",
21755 "eth.src_resolved": "PhilipsL_69:ee:e4",
21756 "eth.addr": "00:17:88:69:ee:e4",
21757 "eth.addr_resolved": "PhilipsL_69:ee:e4",
21761 "eth.type": "0x00000800"
21765 "ip.hdr_len": "20",
21766 "ip.dsfield": "0x00000000",
21767 "ip.dsfield_tree": {
21768 "ip.dsfield.dscp": "0",
21769 "ip.dsfield.ecn": "0"
21772 "ip.id": "0x0000fdad",
21773 "ip.flags": "0x00000002",
21775 "ip.flags.rb": "0",
21776 "ip.flags.df": "1",
21779 "ip.frag_offset": "0",
21782 "ip.checksum": "0x0000bb0f",
21783 "ip.checksum.status": "2",
21784 "ip.src": "192.168.0.160",
21785 "ip.addr": "192.168.0.160",
21786 "ip.src_host": "192.168.0.160",
21787 "ip.host": "192.168.0.160",
21788 "ip.dst": "192.168.0.1",
21789 "ip.addr": "192.168.0.1",
21790 "ip.dst_host": "192.168.0.1",
21791 "ip.host": "192.168.0.1",
21792 "Source GeoIP: Unknown": "",
21793 "Destination GeoIP: Unknown": ""
21796 "udp.srcport": "57726",
21797 "udp.dstport": "53",
21798 "udp.port": "57726",
21800 "udp.length": "42",
21801 "udp.checksum": "0x00007772",
21802 "udp.checksum.status": "2",
21803 "udp.stream": "311"
21806 "dns.response_in": "27289",
21807 "dns.id": "0x000004c7",
21808 "dns.flags": "0x00000100",
21809 "dns.flags_tree": {
21810 "dns.flags.response": "0",
21811 "dns.flags.opcode": "0",
21812 "dns.flags.truncated": "0",
21813 "dns.flags.recdesired": "1",
21814 "dns.flags.z": "0",
21815 "dns.flags.checkdisable": "0"
21817 "dns.count.queries": "1",
21818 "dns.count.answers": "0",
21819 "dns.count.auth_rr": "0",
21820 "dns.count.add_rr": "0",
21822 "www2.meethue.com: type A, class IN": {
21823 "dns.qry.name": "www2.meethue.com",
21824 "dns.qry.name.len": "16",
21825 "dns.count.labels": "3",
21826 "dns.qry.type": "1",
21827 "dns.qry.class": "0x00000001"
21836 "_index": "packets-2017-10-26",
21837 "_type": "pcap_file",
21842 "frame.encap_type": "1",
21843 "frame.time": "Oct 20, 2017 00:52:52.808637000 PDT",
21844 "frame.offset_shift": "0.000000000",
21845 "frame.time_epoch": "1508485972.808637000",
21846 "frame.time_delta": "0.010708000",
21847 "frame.time_delta_displayed": "0.010708000",
21848 "frame.time_relative": "28260.403433000",
21849 "frame.number": "27289",
21850 "frame.len": "513",
21851 "frame.cap_len": "513",
21852 "frame.marked": "0",
21853 "frame.ignored": "0",
21854 "frame.protocols": "eth:ethertype:ip:udp:dns",
21855 "frame.coloring_rule.name": "UDP",
21856 "frame.coloring_rule.string": "udp"
21859 "eth.dst": "00:17:88:69:ee:e4",
21861 "eth.dst_resolved": "PhilipsL_69:ee:e4",
21862 "eth.addr": "00:17:88:69:ee:e4",
21863 "eth.addr_resolved": "PhilipsL_69:ee:e4",
21867 "eth.src": "b0:b9:8a:73:69:8e",
21869 "eth.src_resolved": "Netgear_73:69:8e",
21870 "eth.addr": "b0:b9:8a:73:69:8e",
21871 "eth.addr_resolved": "Netgear_73:69:8e",
21875 "eth.type": "0x00000800"
21879 "ip.hdr_len": "20",
21880 "ip.dsfield": "0x00000000",
21881 "ip.dsfield_tree": {
21882 "ip.dsfield.dscp": "0",
21883 "ip.dsfield.ecn": "0"
21886 "ip.id": "0x0000efa6",
21887 "ip.flags": "0x00000002",
21889 "ip.flags.rb": "0",
21890 "ip.flags.df": "1",
21893 "ip.frag_offset": "0",
21896 "ip.checksum": "0x0000c761",
21897 "ip.checksum.status": "2",
21898 "ip.src": "192.168.0.1",
21899 "ip.addr": "192.168.0.1",
21900 "ip.src_host": "192.168.0.1",
21901 "ip.host": "192.168.0.1",
21902 "ip.dst": "192.168.0.160",
21903 "ip.addr": "192.168.0.160",
21904 "ip.dst_host": "192.168.0.160",
21905 "ip.host": "192.168.0.160",
21906 "Source GeoIP: Unknown": "",
21907 "Destination GeoIP: Unknown": ""
21910 "udp.srcport": "53",
21911 "udp.dstport": "57726",
21913 "udp.port": "57726",
21914 "udp.length": "479",
21915 "udp.checksum": "0x000083e2",
21916 "udp.checksum.status": "2",
21917 "udp.stream": "311"
21920 "dns.response_to": "27288",
21921 "dns.time": "0.010708000",
21922 "dns.id": "0x000004c7",
21923 "dns.flags": "0x00008180",
21924 "dns.flags_tree": {
21925 "dns.flags.response": "1",
21926 "dns.flags.opcode": "0",
21927 "dns.flags.authoritative": "0",
21928 "dns.flags.truncated": "0",
21929 "dns.flags.recdesired": "1",
21930 "dns.flags.recavail": "1",
21931 "dns.flags.z": "0",
21932 "dns.flags.authenticated": "0",
21933 "dns.flags.checkdisable": "0",
21934 "dns.flags.rcode": "0"
21936 "dns.count.queries": "1",
21937 "dns.count.answers": "4",
21938 "dns.count.auth_rr": "9",
21939 "dns.count.add_rr": "9",
21941 "www2.meethue.com: type A, class IN": {
21942 "dns.qry.name": "www2.meethue.com",
21943 "dns.qry.name.len": "16",
21944 "dns.count.labels": "3",
21945 "dns.qry.type": "1",
21946 "dns.qry.class": "0x00000001"
21950 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
21951 "dns.resp.name": "www2.meethue.com",
21952 "dns.resp.type": "5",
21953 "dns.resp.class": "0x00000001",
21954 "dns.resp.ttl": "144",
21955 "dns.resp.len": "41",
21956 "dns.cname": "brands.lighting.philips.com.edgekey.net"
21958 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
21959 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
21960 "dns.resp.type": "5",
21961 "dns.resp.class": "0x00000001",
21962 "dns.resp.ttl": "8658",
21963 "dns.resp.len": "22",
21964 "dns.cname": "e15361.b.akamaiedge.net"
21966 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
21967 "dns.resp.name": "e15361.b.akamaiedge.net",
21968 "dns.resp.type": "1",
21969 "dns.resp.class": "0x00000001",
21970 "dns.resp.ttl": "20",
21971 "dns.resp.len": "4",
21972 "dns.a": "184.84.242.42"
21974 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
21975 "dns.resp.name": "e15361.b.akamaiedge.net",
21976 "dns.resp.type": "1",
21977 "dns.resp.class": "0x00000001",
21978 "dns.resp.ttl": "20",
21979 "dns.resp.len": "4",
21980 "dns.a": "184.84.242.27"
21983 "Authoritative nameservers": {
21984 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
21985 "dns.resp.name": "b.akamaiedge.net",
21986 "dns.resp.type": "2",
21987 "dns.resp.class": "0x00000001",
21988 "dns.resp.ttl": "1674",
21989 "dns.resp.len": "6",
21990 "dns.ns": "n4b.akamaiedge.net"
21992 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
21993 "dns.resp.name": "b.akamaiedge.net",
21994 "dns.resp.type": "2",
21995 "dns.resp.class": "0x00000001",
21996 "dns.resp.ttl": "1674",
21997 "dns.resp.len": "6",
21998 "dns.ns": "n1b.akamaiedge.net"
22000 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
22001 "dns.resp.name": "b.akamaiedge.net",
22002 "dns.resp.type": "2",
22003 "dns.resp.class": "0x00000001",
22004 "dns.resp.ttl": "1674",
22005 "dns.resp.len": "6",
22006 "dns.ns": "n6b.akamaiedge.net"
22008 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
22009 "dns.resp.name": "b.akamaiedge.net",
22010 "dns.resp.type": "2",
22011 "dns.resp.class": "0x00000001",
22012 "dns.resp.ttl": "1674",
22013 "dns.resp.len": "6",
22014 "dns.ns": "a0b.akamaiedge.net"
22016 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
22017 "dns.resp.name": "b.akamaiedge.net",
22018 "dns.resp.type": "2",
22019 "dns.resp.class": "0x00000001",
22020 "dns.resp.ttl": "1674",
22021 "dns.resp.len": "6",
22022 "dns.ns": "n0b.akamaiedge.net"
22024 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
22025 "dns.resp.name": "b.akamaiedge.net",
22026 "dns.resp.type": "2",
22027 "dns.resp.class": "0x00000001",
22028 "dns.resp.ttl": "1674",
22029 "dns.resp.len": "6",
22030 "dns.ns": "n2b.akamaiedge.net"
22032 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
22033 "dns.resp.name": "b.akamaiedge.net",
22034 "dns.resp.type": "2",
22035 "dns.resp.class": "0x00000001",
22036 "dns.resp.ttl": "1674",
22037 "dns.resp.len": "6",
22038 "dns.ns": "n7b.akamaiedge.net"
22040 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
22041 "dns.resp.name": "b.akamaiedge.net",
22042 "dns.resp.type": "2",
22043 "dns.resp.class": "0x00000001",
22044 "dns.resp.ttl": "1674",
22045 "dns.resp.len": "6",
22046 "dns.ns": "n5b.akamaiedge.net"
22048 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
22049 "dns.resp.name": "b.akamaiedge.net",
22050 "dns.resp.type": "2",
22051 "dns.resp.class": "0x00000001",
22052 "dns.resp.ttl": "1674",
22053 "dns.resp.len": "6",
22054 "dns.ns": "n3b.akamaiedge.net"
22057 "Additional records": {
22058 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
22059 "dns.resp.name": "n0b.akamaiedge.net",
22060 "dns.resp.type": "1",
22061 "dns.resp.class": "0x00000001",
22062 "dns.resp.ttl": "2202",
22063 "dns.resp.len": "4",
22064 "dns.a": "88.221.81.192"
22066 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.131": {
22067 "dns.resp.name": "n1b.akamaiedge.net",
22068 "dns.resp.type": "1",
22069 "dns.resp.class": "0x00000001",
22070 "dns.resp.ttl": "2742",
22071 "dns.resp.len": "4",
22072 "dns.a": "173.223.52.131"
22074 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.94": {
22075 "dns.resp.name": "n2b.akamaiedge.net",
22076 "dns.resp.type": "1",
22077 "dns.resp.class": "0x00000001",
22078 "dns.resp.ttl": "5516",
22079 "dns.resp.len": "4",
22080 "dns.a": "165.254.16.94"
22082 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.176": {
22083 "dns.resp.name": "n3b.akamaiedge.net",
22084 "dns.resp.type": "1",
22085 "dns.resp.class": "0x00000001",
22086 "dns.resp.ttl": "1581",
22087 "dns.resp.len": "4",
22088 "dns.a": "96.17.70.176"
22090 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
22091 "dns.resp.name": "n4b.akamaiedge.net",
22092 "dns.resp.type": "1",
22093 "dns.resp.class": "0x00000001",
22094 "dns.resp.ttl": "1988",
22095 "dns.resp.len": "4",
22096 "dns.a": "96.17.70.177"
22098 "n5b.akamaiedge.net: type A, class IN, addr 96.17.70.191": {
22099 "dns.resp.name": "n5b.akamaiedge.net",
22100 "dns.resp.type": "1",
22101 "dns.resp.class": "0x00000001",
22102 "dns.resp.ttl": "2543",
22103 "dns.resp.len": "4",
22104 "dns.a": "96.17.70.191"
22106 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
22107 "dns.resp.name": "n6b.akamaiedge.net",
22108 "dns.resp.type": "1",
22109 "dns.resp.class": "0x00000001",
22110 "dns.resp.ttl": "2124",
22111 "dns.resp.len": "4",
22112 "dns.a": "96.17.70.177"
22114 "n7b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
22115 "dns.resp.name": "n7b.akamaiedge.net",
22116 "dns.resp.type": "1",
22117 "dns.resp.class": "0x00000001",
22118 "dns.resp.ttl": "228",
22119 "dns.resp.len": "4",
22120 "dns.a": "204.1.137.41"
22122 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
22123 "dns.resp.name": "a0b.akamaiedge.net",
22124 "dns.resp.type": "28",
22125 "dns.resp.class": "0x00000001",
22126 "dns.resp.ttl": "3674",
22127 "dns.resp.len": "16",
22128 "dns.aaaa": "2600:1480:e800::c0"
22137 "_index": "packets-2017-10-26",
22138 "_type": "pcap_file",
22143 "frame.encap_type": "1",
22144 "frame.time": "Oct 20, 2017 01:07:52.814329000 PDT",
22145 "frame.offset_shift": "0.000000000",
22146 "frame.time_epoch": "1508486872.814329000",
22147 "frame.time_delta": "5.472047000",
22148 "frame.time_delta_displayed": "900.005692000",
22149 "frame.time_relative": "29160.409125000",
22150 "frame.number": "28061",
22152 "frame.cap_len": "76",
22153 "frame.marked": "0",
22154 "frame.ignored": "0",
22155 "frame.protocols": "eth:ethertype:ip:udp:dns",
22156 "frame.coloring_rule.name": "UDP",
22157 "frame.coloring_rule.string": "udp"
22160 "eth.dst": "b0:b9:8a:73:69:8e",
22162 "eth.dst_resolved": "Netgear_73:69:8e",
22163 "eth.addr": "b0:b9:8a:73:69:8e",
22164 "eth.addr_resolved": "Netgear_73:69:8e",
22168 "eth.src": "00:17:88:69:ee:e4",
22170 "eth.src_resolved": "PhilipsL_69:ee:e4",
22171 "eth.addr": "00:17:88:69:ee:e4",
22172 "eth.addr_resolved": "PhilipsL_69:ee:e4",
22176 "eth.type": "0x00000800"
22180 "ip.hdr_len": "20",
22181 "ip.dsfield": "0x00000000",
22182 "ip.dsfield_tree": {
22183 "ip.dsfield.dscp": "0",
22184 "ip.dsfield.ecn": "0"
22187 "ip.id": "0x0000614d",
22188 "ip.flags": "0x00000002",
22190 "ip.flags.rb": "0",
22191 "ip.flags.df": "1",
22194 "ip.frag_offset": "0",
22197 "ip.checksum": "0x00005770",
22198 "ip.checksum.status": "2",
22199 "ip.src": "192.168.0.160",
22200 "ip.addr": "192.168.0.160",
22201 "ip.src_host": "192.168.0.160",
22202 "ip.host": "192.168.0.160",
22203 "ip.dst": "192.168.0.1",
22204 "ip.addr": "192.168.0.1",
22205 "ip.dst_host": "192.168.0.1",
22206 "ip.host": "192.168.0.1",
22207 "Source GeoIP: Unknown": "",
22208 "Destination GeoIP: Unknown": ""
22211 "udp.srcport": "39493",
22212 "udp.dstport": "53",
22213 "udp.port": "39493",
22215 "udp.length": "42",
22216 "udp.checksum": "0x0000beaa",
22217 "udp.checksum.status": "2",
22218 "udp.stream": "315"
22221 "dns.response_in": "28062",
22222 "dns.id": "0x000004c8",
22223 "dns.flags": "0x00000100",
22224 "dns.flags_tree": {
22225 "dns.flags.response": "0",
22226 "dns.flags.opcode": "0",
22227 "dns.flags.truncated": "0",
22228 "dns.flags.recdesired": "1",
22229 "dns.flags.z": "0",
22230 "dns.flags.checkdisable": "0"
22232 "dns.count.queries": "1",
22233 "dns.count.answers": "0",
22234 "dns.count.auth_rr": "0",
22235 "dns.count.add_rr": "0",
22237 "www2.meethue.com: type A, class IN": {
22238 "dns.qry.name": "www2.meethue.com",
22239 "dns.qry.name.len": "16",
22240 "dns.count.labels": "3",
22241 "dns.qry.type": "1",
22242 "dns.qry.class": "0x00000001"
22251 "_index": "packets-2017-10-26",
22252 "_type": "pcap_file",
22257 "frame.encap_type": "1",
22258 "frame.time": "Oct 20, 2017 01:07:52.835978000 PDT",
22259 "frame.offset_shift": "0.000000000",
22260 "frame.time_epoch": "1508486872.835978000",
22261 "frame.time_delta": "0.021649000",
22262 "frame.time_delta_displayed": "0.021649000",
22263 "frame.time_relative": "29160.430774000",
22264 "frame.number": "28062",
22265 "frame.len": "513",
22266 "frame.cap_len": "513",
22267 "frame.marked": "0",
22268 "frame.ignored": "0",
22269 "frame.protocols": "eth:ethertype:ip:udp:dns",
22270 "frame.coloring_rule.name": "UDP",
22271 "frame.coloring_rule.string": "udp"
22274 "eth.dst": "00:17:88:69:ee:e4",
22276 "eth.dst_resolved": "PhilipsL_69:ee:e4",
22277 "eth.addr": "00:17:88:69:ee:e4",
22278 "eth.addr_resolved": "PhilipsL_69:ee:e4",
22282 "eth.src": "b0:b9:8a:73:69:8e",
22284 "eth.src_resolved": "Netgear_73:69:8e",
22285 "eth.addr": "b0:b9:8a:73:69:8e",
22286 "eth.addr_resolved": "Netgear_73:69:8e",
22290 "eth.type": "0x00000800"
22294 "ip.hdr_len": "20",
22295 "ip.dsfield": "0x00000000",
22296 "ip.dsfield_tree": {
22297 "ip.dsfield.dscp": "0",
22298 "ip.dsfield.ecn": "0"
22301 "ip.id": "0x00000e9b",
22302 "ip.flags": "0x00000002",
22304 "ip.flags.rb": "0",
22305 "ip.flags.df": "1",
22308 "ip.frag_offset": "0",
22311 "ip.checksum": "0x0000a86d",
22312 "ip.checksum.status": "2",
22313 "ip.src": "192.168.0.1",
22314 "ip.addr": "192.168.0.1",
22315 "ip.src_host": "192.168.0.1",
22316 "ip.host": "192.168.0.1",
22317 "ip.dst": "192.168.0.160",
22318 "ip.addr": "192.168.0.160",
22319 "ip.dst_host": "192.168.0.160",
22320 "ip.host": "192.168.0.160",
22321 "Source GeoIP: Unknown": "",
22322 "Destination GeoIP: Unknown": ""
22325 "udp.srcport": "53",
22326 "udp.dstport": "39493",
22328 "udp.port": "39493",
22329 "udp.length": "479",
22330 "udp.checksum": "0x000083e2",
22331 "udp.checksum.status": "2",
22332 "udp.stream": "315"
22335 "dns.response_to": "28061",
22336 "dns.time": "0.021649000",
22337 "dns.id": "0x000004c8",
22338 "dns.flags": "0x00008180",
22339 "dns.flags_tree": {
22340 "dns.flags.response": "1",
22341 "dns.flags.opcode": "0",
22342 "dns.flags.authoritative": "0",
22343 "dns.flags.truncated": "0",
22344 "dns.flags.recdesired": "1",
22345 "dns.flags.recavail": "1",
22346 "dns.flags.z": "0",
22347 "dns.flags.authenticated": "0",
22348 "dns.flags.checkdisable": "0",
22349 "dns.flags.rcode": "0"
22351 "dns.count.queries": "1",
22352 "dns.count.answers": "4",
22353 "dns.count.auth_rr": "9",
22354 "dns.count.add_rr": "9",
22356 "www2.meethue.com: type A, class IN": {
22357 "dns.qry.name": "www2.meethue.com",
22358 "dns.qry.name.len": "16",
22359 "dns.count.labels": "3",
22360 "dns.qry.type": "1",
22361 "dns.qry.class": "0x00000001"
22365 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
22366 "dns.resp.name": "www2.meethue.com",
22367 "dns.resp.type": "5",
22368 "dns.resp.class": "0x00000001",
22369 "dns.resp.ttl": "119",
22370 "dns.resp.len": "41",
22371 "dns.cname": "brands.lighting.philips.com.edgekey.net"
22373 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
22374 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
22375 "dns.resp.type": "5",
22376 "dns.resp.class": "0x00000001",
22377 "dns.resp.ttl": "6117",
22378 "dns.resp.len": "22",
22379 "dns.cname": "e15361.b.akamaiedge.net"
22381 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
22382 "dns.resp.name": "e15361.b.akamaiedge.net",
22383 "dns.resp.type": "1",
22384 "dns.resp.class": "0x00000001",
22385 "dns.resp.ttl": "20",
22386 "dns.resp.len": "4",
22387 "dns.a": "184.84.242.27"
22389 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
22390 "dns.resp.name": "e15361.b.akamaiedge.net",
22391 "dns.resp.type": "1",
22392 "dns.resp.class": "0x00000001",
22393 "dns.resp.ttl": "20",
22394 "dns.resp.len": "4",
22395 "dns.a": "184.84.242.42"
22398 "Authoritative nameservers": {
22399 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
22400 "dns.resp.name": "b.akamaiedge.net",
22401 "dns.resp.type": "2",
22402 "dns.resp.class": "0x00000001",
22403 "dns.resp.ttl": "690",
22404 "dns.resp.len": "6",
22405 "dns.ns": "n7b.akamaiedge.net"
22407 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
22408 "dns.resp.name": "b.akamaiedge.net",
22409 "dns.resp.type": "2",
22410 "dns.resp.class": "0x00000001",
22411 "dns.resp.ttl": "690",
22412 "dns.resp.len": "6",
22413 "dns.ns": "n6b.akamaiedge.net"
22415 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
22416 "dns.resp.name": "b.akamaiedge.net",
22417 "dns.resp.type": "2",
22418 "dns.resp.class": "0x00000001",
22419 "dns.resp.ttl": "690",
22420 "dns.resp.len": "6",
22421 "dns.ns": "n5b.akamaiedge.net"
22423 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
22424 "dns.resp.name": "b.akamaiedge.net",
22425 "dns.resp.type": "2",
22426 "dns.resp.class": "0x00000001",
22427 "dns.resp.ttl": "690",
22428 "dns.resp.len": "6",
22429 "dns.ns": "n1b.akamaiedge.net"
22431 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
22432 "dns.resp.name": "b.akamaiedge.net",
22433 "dns.resp.type": "2",
22434 "dns.resp.class": "0x00000001",
22435 "dns.resp.ttl": "690",
22436 "dns.resp.len": "6",
22437 "dns.ns": "n0b.akamaiedge.net"
22439 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
22440 "dns.resp.name": "b.akamaiedge.net",
22441 "dns.resp.type": "2",
22442 "dns.resp.class": "0x00000001",
22443 "dns.resp.ttl": "690",
22444 "dns.resp.len": "6",
22445 "dns.ns": "n4b.akamaiedge.net"
22447 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
22448 "dns.resp.name": "b.akamaiedge.net",
22449 "dns.resp.type": "2",
22450 "dns.resp.class": "0x00000001",
22451 "dns.resp.ttl": "690",
22452 "dns.resp.len": "6",
22453 "dns.ns": "a0b.akamaiedge.net"
22455 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
22456 "dns.resp.name": "b.akamaiedge.net",
22457 "dns.resp.type": "2",
22458 "dns.resp.class": "0x00000001",
22459 "dns.resp.ttl": "690",
22460 "dns.resp.len": "6",
22461 "dns.ns": "n2b.akamaiedge.net"
22463 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
22464 "dns.resp.name": "b.akamaiedge.net",
22465 "dns.resp.type": "2",
22466 "dns.resp.class": "0x00000001",
22467 "dns.resp.ttl": "690",
22468 "dns.resp.len": "6",
22469 "dns.ns": "n3b.akamaiedge.net"
22472 "Additional records": {
22473 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
22474 "dns.resp.name": "n0b.akamaiedge.net",
22475 "dns.resp.type": "1",
22476 "dns.resp.class": "0x00000001",
22477 "dns.resp.ttl": "3011",
22478 "dns.resp.len": "4",
22479 "dns.a": "88.221.81.192"
22481 "n1b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
22482 "dns.resp.name": "n1b.akamaiedge.net",
22483 "dns.resp.type": "1",
22484 "dns.resp.class": "0x00000001",
22485 "dns.resp.ttl": "5718",
22486 "dns.resp.len": "4",
22487 "dns.a": "204.1.137.41"
22489 "n2b.akamaiedge.net: type A, class IN, addr 204.2.166.155": {
22490 "dns.resp.name": "n2b.akamaiedge.net",
22491 "dns.resp.type": "1",
22492 "dns.resp.class": "0x00000001",
22493 "dns.resp.ttl": "6226",
22494 "dns.resp.len": "4",
22495 "dns.a": "204.2.166.155"
22497 "n3b.akamaiedge.net: type A, class IN, addr 23.67.56.207": {
22498 "dns.resp.name": "n3b.akamaiedge.net",
22499 "dns.resp.type": "1",
22500 "dns.resp.class": "0x00000001",
22501 "dns.resp.ttl": "2421",
22502 "dns.resp.len": "4",
22503 "dns.a": "23.67.56.207"
22505 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.174": {
22506 "dns.resp.name": "n4b.akamaiedge.net",
22507 "dns.resp.type": "1",
22508 "dns.resp.class": "0x00000001",
22509 "dns.resp.ttl": "3318",
22510 "dns.resp.len": "4",
22511 "dns.a": "96.17.70.174"
22513 "n5b.akamaiedge.net: type A, class IN, addr 23.67.56.215": {
22514 "dns.resp.name": "n5b.akamaiedge.net",
22515 "dns.resp.type": "1",
22516 "dns.resp.class": "0x00000001",
22517 "dns.resp.ttl": "7067",
22518 "dns.resp.len": "4",
22519 "dns.a": "23.67.56.215"
22521 "n6b.akamaiedge.net: type A, class IN, addr 23.67.56.213": {
22522 "dns.resp.name": "n6b.akamaiedge.net",
22523 "dns.resp.type": "1",
22524 "dns.resp.class": "0x00000001",
22525 "dns.resp.ttl": "2874",
22526 "dns.resp.len": "4",
22527 "dns.a": "23.67.56.213"
22529 "n7b.akamaiedge.net: type A, class IN, addr 204.2.166.155": {
22530 "dns.resp.name": "n7b.akamaiedge.net",
22531 "dns.resp.type": "1",
22532 "dns.resp.class": "0x00000001",
22533 "dns.resp.ttl": "4925",
22534 "dns.resp.len": "4",
22535 "dns.a": "204.2.166.155"
22537 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
22538 "dns.resp.name": "a0b.akamaiedge.net",
22539 "dns.resp.type": "28",
22540 "dns.resp.class": "0x00000001",
22541 "dns.resp.ttl": "4702",
22542 "dns.resp.len": "16",
22543 "dns.aaaa": "2600:1480:e800::c0"
22552 "_index": "packets-2017-10-26",
22553 "_type": "pcap_file",
22558 "frame.encap_type": "1",
22559 "frame.time": "Oct 20, 2017 01:22:52.843589000 PDT",
22560 "frame.offset_shift": "0.000000000",
22561 "frame.time_epoch": "1508487772.843589000",
22562 "frame.time_delta": "0.601966000",
22563 "frame.time_delta_displayed": "900.007611000",
22564 "frame.time_relative": "30060.438385000",
22565 "frame.number": "28868",
22567 "frame.cap_len": "76",
22568 "frame.marked": "0",
22569 "frame.ignored": "0",
22570 "frame.protocols": "eth:ethertype:ip:udp:dns",
22571 "frame.coloring_rule.name": "UDP",
22572 "frame.coloring_rule.string": "udp"
22575 "eth.dst": "b0:b9:8a:73:69:8e",
22577 "eth.dst_resolved": "Netgear_73:69:8e",
22578 "eth.addr": "b0:b9:8a:73:69:8e",
22579 "eth.addr_resolved": "Netgear_73:69:8e",
22583 "eth.src": "00:17:88:69:ee:e4",
22585 "eth.src_resolved": "PhilipsL_69:ee:e4",
22586 "eth.addr": "00:17:88:69:ee:e4",
22587 "eth.addr_resolved": "PhilipsL_69:ee:e4",
22591 "eth.type": "0x00000800"
22595 "ip.hdr_len": "20",
22596 "ip.dsfield": "0x00000000",
22597 "ip.dsfield_tree": {
22598 "ip.dsfield.dscp": "0",
22599 "ip.dsfield.ecn": "0"
22602 "ip.id": "0x00008683",
22603 "ip.flags": "0x00000002",
22605 "ip.flags.rb": "0",
22606 "ip.flags.df": "1",
22609 "ip.frag_offset": "0",
22612 "ip.checksum": "0x0000323a",
22613 "ip.checksum.status": "2",
22614 "ip.src": "192.168.0.160",
22615 "ip.addr": "192.168.0.160",
22616 "ip.src_host": "192.168.0.160",
22617 "ip.host": "192.168.0.160",
22618 "ip.dst": "192.168.0.1",
22619 "ip.addr": "192.168.0.1",
22620 "ip.dst_host": "192.168.0.1",
22621 "ip.host": "192.168.0.1",
22622 "Source GeoIP: Unknown": "",
22623 "Destination GeoIP: Unknown": ""
22626 "udp.srcport": "60232",
22627 "udp.dstport": "53",
22628 "udp.port": "60232",
22630 "udp.length": "42",
22631 "udp.checksum": "0x00006da6",
22632 "udp.checksum.status": "2",
22633 "udp.stream": "322"
22636 "dns.response_in": "28869",
22637 "dns.id": "0x000004c9",
22638 "dns.flags": "0x00000100",
22639 "dns.flags_tree": {
22640 "dns.flags.response": "0",
22641 "dns.flags.opcode": "0",
22642 "dns.flags.truncated": "0",
22643 "dns.flags.recdesired": "1",
22644 "dns.flags.z": "0",
22645 "dns.flags.checkdisable": "0"
22647 "dns.count.queries": "1",
22648 "dns.count.answers": "0",
22649 "dns.count.auth_rr": "0",
22650 "dns.count.add_rr": "0",
22652 "www2.meethue.com: type A, class IN": {
22653 "dns.qry.name": "www2.meethue.com",
22654 "dns.qry.name.len": "16",
22655 "dns.count.labels": "3",
22656 "dns.qry.type": "1",
22657 "dns.qry.class": "0x00000001"
22666 "_index": "packets-2017-10-26",
22667 "_type": "pcap_file",
22672 "frame.encap_type": "1",
22673 "frame.time": "Oct 20, 2017 01:22:52.850618000 PDT",
22674 "frame.offset_shift": "0.000000000",
22675 "frame.time_epoch": "1508487772.850618000",
22676 "frame.time_delta": "0.007029000",
22677 "frame.time_delta_displayed": "0.007029000",
22678 "frame.time_relative": "30060.445414000",
22679 "frame.number": "28869",
22680 "frame.len": "467",
22681 "frame.cap_len": "467",
22682 "frame.marked": "0",
22683 "frame.ignored": "0",
22684 "frame.protocols": "eth:ethertype:ip:udp:dns",
22685 "frame.coloring_rule.name": "UDP",
22686 "frame.coloring_rule.string": "udp"
22689 "eth.dst": "00:17:88:69:ee:e4",
22691 "eth.dst_resolved": "PhilipsL_69:ee:e4",
22692 "eth.addr": "00:17:88:69:ee:e4",
22693 "eth.addr_resolved": "PhilipsL_69:ee:e4",
22697 "eth.src": "b0:b9:8a:73:69:8e",
22699 "eth.src_resolved": "Netgear_73:69:8e",
22700 "eth.addr": "b0:b9:8a:73:69:8e",
22701 "eth.addr_resolved": "Netgear_73:69:8e",
22705 "eth.type": "0x00000800"
22709 "ip.hdr_len": "20",
22710 "ip.dsfield": "0x00000000",
22711 "ip.dsfield_tree": {
22712 "ip.dsfield.dscp": "0",
22713 "ip.dsfield.ecn": "0"
22716 "ip.id": "0x000032d6",
22717 "ip.flags": "0x00000002",
22719 "ip.flags.rb": "0",
22720 "ip.flags.df": "1",
22723 "ip.frag_offset": "0",
22726 "ip.checksum": "0x00008460",
22727 "ip.checksum.status": "2",
22728 "ip.src": "192.168.0.1",
22729 "ip.addr": "192.168.0.1",
22730 "ip.src_host": "192.168.0.1",
22731 "ip.host": "192.168.0.1",
22732 "ip.dst": "192.168.0.160",
22733 "ip.addr": "192.168.0.160",
22734 "ip.dst_host": "192.168.0.160",
22735 "ip.host": "192.168.0.160",
22736 "Source GeoIP: Unknown": "",
22737 "Destination GeoIP: Unknown": ""
22740 "udp.srcport": "53",
22741 "udp.dstport": "60232",
22743 "udp.port": "60232",
22744 "udp.length": "433",
22745 "udp.checksum": "0x000083b4",
22746 "udp.checksum.status": "2",
22747 "udp.stream": "322"
22750 "dns.response_to": "28868",
22751 "dns.time": "0.007029000",
22752 "dns.id": "0x000004c9",
22753 "dns.flags": "0x00008180",
22754 "dns.flags_tree": {
22755 "dns.flags.response": "1",
22756 "dns.flags.opcode": "0",
22757 "dns.flags.authoritative": "0",
22758 "dns.flags.truncated": "0",
22759 "dns.flags.recdesired": "1",
22760 "dns.flags.recavail": "1",
22761 "dns.flags.z": "0",
22762 "dns.flags.authenticated": "0",
22763 "dns.flags.checkdisable": "0",
22764 "dns.flags.rcode": "0"
22766 "dns.count.queries": "1",
22767 "dns.count.answers": "4",
22768 "dns.count.auth_rr": "8",
22769 "dns.count.add_rr": "8",
22771 "www2.meethue.com: type A, class IN": {
22772 "dns.qry.name": "www2.meethue.com",
22773 "dns.qry.name.len": "16",
22774 "dns.count.labels": "3",
22775 "dns.qry.type": "1",
22776 "dns.qry.class": "0x00000001"
22780 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
22781 "dns.resp.name": "www2.meethue.com",
22782 "dns.resp.type": "5",
22783 "dns.resp.class": "0x00000001",
22784 "dns.resp.ttl": "144",
22785 "dns.resp.len": "41",
22786 "dns.cname": "brands.lighting.philips.com.edgekey.net"
22788 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
22789 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
22790 "dns.resp.type": "5",
22791 "dns.resp.class": "0x00000001",
22792 "dns.resp.ttl": "6858",
22793 "dns.resp.len": "22",
22794 "dns.cname": "e15361.b.akamaiedge.net"
22796 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
22797 "dns.resp.name": "e15361.b.akamaiedge.net",
22798 "dns.resp.type": "1",
22799 "dns.resp.class": "0x00000001",
22800 "dns.resp.ttl": "20",
22801 "dns.resp.len": "4",
22802 "dns.a": "184.84.242.27"
22804 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
22805 "dns.resp.name": "e15361.b.akamaiedge.net",
22806 "dns.resp.type": "1",
22807 "dns.resp.class": "0x00000001",
22808 "dns.resp.ttl": "20",
22809 "dns.resp.len": "4",
22810 "dns.a": "184.84.242.42"
22813 "Authoritative nameservers": {
22814 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
22815 "dns.resp.name": "b.akamaiedge.net",
22816 "dns.resp.type": "2",
22817 "dns.resp.class": "0x00000001",
22818 "dns.resp.ttl": "874",
22819 "dns.resp.len": "6",
22820 "dns.ns": "n7b.akamaiedge.net"
22822 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
22823 "dns.resp.name": "b.akamaiedge.net",
22824 "dns.resp.type": "2",
22825 "dns.resp.class": "0x00000001",
22826 "dns.resp.ttl": "874",
22827 "dns.resp.len": "6",
22828 "dns.ns": "n5b.akamaiedge.net"
22830 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
22831 "dns.resp.name": "b.akamaiedge.net",
22832 "dns.resp.type": "2",
22833 "dns.resp.class": "0x00000001",
22834 "dns.resp.ttl": "874",
22835 "dns.resp.len": "6",
22836 "dns.ns": "n3b.akamaiedge.net"
22838 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
22839 "dns.resp.name": "b.akamaiedge.net",
22840 "dns.resp.type": "2",
22841 "dns.resp.class": "0x00000001",
22842 "dns.resp.ttl": "874",
22843 "dns.resp.len": "6",
22844 "dns.ns": "n4b.akamaiedge.net"
22846 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
22847 "dns.resp.name": "b.akamaiedge.net",
22848 "dns.resp.type": "2",
22849 "dns.resp.class": "0x00000001",
22850 "dns.resp.ttl": "874",
22851 "dns.resp.len": "6",
22852 "dns.ns": "n1b.akamaiedge.net"
22854 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
22855 "dns.resp.name": "b.akamaiedge.net",
22856 "dns.resp.type": "2",
22857 "dns.resp.class": "0x00000001",
22858 "dns.resp.ttl": "874",
22859 "dns.resp.len": "6",
22860 "dns.ns": "n2b.akamaiedge.net"
22862 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
22863 "dns.resp.name": "b.akamaiedge.net",
22864 "dns.resp.type": "2",
22865 "dns.resp.class": "0x00000001",
22866 "dns.resp.ttl": "874",
22867 "dns.resp.len": "6",
22868 "dns.ns": "n0b.akamaiedge.net"
22870 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
22871 "dns.resp.name": "b.akamaiedge.net",
22872 "dns.resp.type": "2",
22873 "dns.resp.class": "0x00000001",
22874 "dns.resp.ttl": "874",
22875 "dns.resp.len": "6",
22876 "dns.ns": "n6b.akamaiedge.net"
22879 "Additional records": {
22880 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
22881 "dns.resp.name": "n0b.akamaiedge.net",
22882 "dns.resp.type": "1",
22883 "dns.resp.class": "0x00000001",
22884 "dns.resp.ttl": "402",
22885 "dns.resp.len": "4",
22886 "dns.a": "88.221.81.192"
22888 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.131": {
22889 "dns.resp.name": "n1b.akamaiedge.net",
22890 "dns.resp.type": "1",
22891 "dns.resp.class": "0x00000001",
22892 "dns.resp.ttl": "942",
22893 "dns.resp.len": "4",
22894 "dns.a": "173.223.52.131"
22896 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.94": {
22897 "dns.resp.name": "n2b.akamaiedge.net",
22898 "dns.resp.type": "1",
22899 "dns.resp.class": "0x00000001",
22900 "dns.resp.ttl": "3716",
22901 "dns.resp.len": "4",
22902 "dns.a": "165.254.16.94"
22904 "n3b.akamaiedge.net: type A, class IN, addr 23.67.56.213": {
22905 "dns.resp.name": "n3b.akamaiedge.net",
22906 "dns.resp.type": "1",
22907 "dns.resp.class": "0x00000001",
22908 "dns.resp.ttl": "3782",
22909 "dns.resp.len": "4",
22910 "dns.a": "23.67.56.213"
22912 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
22913 "dns.resp.name": "n4b.akamaiedge.net",
22914 "dns.resp.type": "1",
22915 "dns.resp.class": "0x00000001",
22916 "dns.resp.ttl": "188",
22917 "dns.resp.len": "4",
22918 "dns.a": "96.17.70.177"
22920 "n5b.akamaiedge.net: type A, class IN, addr 96.17.70.191": {
22921 "dns.resp.name": "n5b.akamaiedge.net",
22922 "dns.resp.type": "1",
22923 "dns.resp.class": "0x00000001",
22924 "dns.resp.ttl": "743",
22925 "dns.resp.len": "4",
22926 "dns.a": "96.17.70.191"
22928 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
22929 "dns.resp.name": "n6b.akamaiedge.net",
22930 "dns.resp.type": "1",
22931 "dns.resp.class": "0x00000001",
22932 "dns.resp.ttl": "324",
22933 "dns.resp.len": "4",
22934 "dns.a": "96.17.70.177"
22936 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.243": {
22937 "dns.resp.name": "n7b.akamaiedge.net",
22938 "dns.resp.type": "1",
22939 "dns.resp.class": "0x00000001",
22940 "dns.resp.ttl": "4429",
22941 "dns.resp.len": "4",
22942 "dns.a": "165.254.134.243"
22951 "_index": "packets-2017-10-26",
22952 "_type": "pcap_file",
22957 "frame.encap_type": "1",
22958 "frame.time": "Oct 20, 2017 01:33:21.755985000 PDT",
22959 "frame.offset_shift": "0.000000000",
22960 "frame.time_epoch": "1508488401.755985000",
22961 "frame.time_delta": "1.940613000",
22962 "frame.time_delta_displayed": "628.905367000",
22963 "frame.time_relative": "30689.350781000",
22964 "frame.number": "29396",
22966 "frame.cap_len": "79",
22967 "frame.marked": "0",
22968 "frame.ignored": "0",
22969 "frame.protocols": "eth:ethertype:ip:udp:dns",
22970 "frame.coloring_rule.name": "UDP",
22971 "frame.coloring_rule.string": "udp"
22974 "eth.dst": "b0:b9:8a:73:69:8e",
22976 "eth.dst_resolved": "Netgear_73:69:8e",
22977 "eth.addr": "b0:b9:8a:73:69:8e",
22978 "eth.addr_resolved": "Netgear_73:69:8e",
22982 "eth.src": "00:17:88:69:ee:e4",
22984 "eth.src_resolved": "PhilipsL_69:ee:e4",
22985 "eth.addr": "00:17:88:69:ee:e4",
22986 "eth.addr_resolved": "PhilipsL_69:ee:e4",
22990 "eth.type": "0x00000800"
22994 "ip.hdr_len": "20",
22995 "ip.dsfield": "0x00000000",
22996 "ip.dsfield_tree": {
22997 "ip.dsfield.dscp": "0",
22998 "ip.dsfield.ecn": "0"
23001 "ip.id": "0x00009aad",
23002 "ip.flags": "0x00000002",
23004 "ip.flags.rb": "0",
23005 "ip.flags.df": "1",
23008 "ip.frag_offset": "0",
23011 "ip.checksum": "0x00001e0d",
23012 "ip.checksum.status": "2",
23013 "ip.src": "192.168.0.160",
23014 "ip.addr": "192.168.0.160",
23015 "ip.src_host": "192.168.0.160",
23016 "ip.host": "192.168.0.160",
23017 "ip.dst": "192.168.0.1",
23018 "ip.addr": "192.168.0.1",
23019 "ip.dst_host": "192.168.0.1",
23020 "ip.host": "192.168.0.1",
23021 "Source GeoIP: Unknown": "",
23022 "Destination GeoIP: Unknown": ""
23025 "udp.srcport": "43519",
23026 "udp.dstport": "53",
23027 "udp.port": "43519",
23029 "udp.length": "45",
23030 "udp.checksum": "0x00001674",
23031 "udp.checksum.status": "2",
23032 "udp.stream": "327"
23035 "dns.response_in": "29397",
23036 "dns.id": "0x000004ca",
23037 "dns.flags": "0x00000100",
23038 "dns.flags_tree": {
23039 "dns.flags.response": "0",
23040 "dns.flags.opcode": "0",
23041 "dns.flags.truncated": "0",
23042 "dns.flags.recdesired": "1",
23043 "dns.flags.z": "0",
23044 "dns.flags.checkdisable": "0"
23046 "dns.count.queries": "1",
23047 "dns.count.answers": "0",
23048 "dns.count.auth_rr": "0",
23049 "dns.count.add_rr": "0",
23051 "dcp.cpp.philips.com: type AAAA, class IN": {
23052 "dns.qry.name": "dcp.cpp.philips.com",
23053 "dns.qry.name.len": "19",
23054 "dns.count.labels": "4",
23055 "dns.qry.type": "28",
23056 "dns.qry.class": "0x00000001"
23065 "_index": "packets-2017-10-26",
23066 "_type": "pcap_file",
23071 "frame.encap_type": "1",
23072 "frame.time": "Oct 20, 2017 01:33:21.757930000 PDT",
23073 "frame.offset_shift": "0.000000000",
23074 "frame.time_epoch": "1508488401.757930000",
23075 "frame.time_delta": "0.001945000",
23076 "frame.time_delta_displayed": "0.001945000",
23077 "frame.time_relative": "30689.352726000",
23078 "frame.number": "29397",
23079 "frame.len": "137",
23080 "frame.cap_len": "137",
23081 "frame.marked": "0",
23082 "frame.ignored": "0",
23083 "frame.protocols": "eth:ethertype:ip:udp:dns",
23084 "frame.coloring_rule.name": "UDP",
23085 "frame.coloring_rule.string": "udp"
23088 "eth.dst": "00:17:88:69:ee:e4",
23090 "eth.dst_resolved": "PhilipsL_69:ee:e4",
23091 "eth.addr": "00:17:88:69:ee:e4",
23092 "eth.addr_resolved": "PhilipsL_69:ee:e4",
23096 "eth.src": "b0:b9:8a:73:69:8e",
23098 "eth.src_resolved": "Netgear_73:69:8e",
23099 "eth.addr": "b0:b9:8a:73:69:8e",
23100 "eth.addr_resolved": "Netgear_73:69:8e",
23104 "eth.type": "0x00000800"
23108 "ip.hdr_len": "20",
23109 "ip.dsfield": "0x00000000",
23110 "ip.dsfield_tree": {
23111 "ip.dsfield.dscp": "0",
23112 "ip.dsfield.ecn": "0"
23115 "ip.id": "0x0000a15f",
23116 "ip.flags": "0x00000002",
23118 "ip.flags.rb": "0",
23119 "ip.flags.df": "1",
23122 "ip.frag_offset": "0",
23125 "ip.checksum": "0x00001721",
23126 "ip.checksum.status": "2",
23127 "ip.src": "192.168.0.1",
23128 "ip.addr": "192.168.0.1",
23129 "ip.src_host": "192.168.0.1",
23130 "ip.host": "192.168.0.1",
23131 "ip.dst": "192.168.0.160",
23132 "ip.addr": "192.168.0.160",
23133 "ip.dst_host": "192.168.0.160",
23134 "ip.host": "192.168.0.160",
23135 "Source GeoIP: Unknown": "",
23136 "Destination GeoIP: Unknown": ""
23139 "udp.srcport": "53",
23140 "udp.dstport": "43519",
23142 "udp.port": "43519",
23143 "udp.length": "103",
23144 "udp.checksum": "0x0000826a",
23145 "udp.checksum.status": "2",
23146 "udp.stream": "327"
23149 "dns.response_to": "29396",
23150 "dns.time": "0.001945000",
23151 "dns.id": "0x000004ca",
23152 "dns.flags": "0x00008180",
23153 "dns.flags_tree": {
23154 "dns.flags.response": "1",
23155 "dns.flags.opcode": "0",
23156 "dns.flags.authoritative": "0",
23157 "dns.flags.truncated": "0",
23158 "dns.flags.recdesired": "1",
23159 "dns.flags.recavail": "1",
23160 "dns.flags.z": "0",
23161 "dns.flags.authenticated": "0",
23162 "dns.flags.checkdisable": "0",
23163 "dns.flags.rcode": "0"
23165 "dns.count.queries": "1",
23166 "dns.count.answers": "0",
23167 "dns.count.auth_rr": "1",
23168 "dns.count.add_rr": "0",
23170 "dcp.cpp.philips.com: type AAAA, class IN": {
23171 "dns.qry.name": "dcp.cpp.philips.com",
23172 "dns.qry.name.len": "19",
23173 "dns.count.labels": "4",
23174 "dns.qry.type": "28",
23175 "dns.qry.class": "0x00000001"
23178 "Authoritative nameservers": {
23179 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
23180 "dns.resp.name": "cpp.philips.com",
23181 "dns.resp.type": "6",
23182 "dns.resp.class": "0x00000001",
23183 "dns.resp.ttl": "3221",
23184 "dns.resp.len": "46",
23185 "dns.soa.mname": "ns1.ext.philips.com",
23186 "dns.soa.rname": "ddi-authority.philips.com",
23187 "dns.soa.serial_number": "387",
23188 "dns.soa.refresh_interval": "1200",
23189 "dns.soa.retry_interval": "300",
23190 "dns.soa.expire_limit": "1209600",
23191 "dns.soa.mininum_ttl": "3600"
23200 "_index": "packets-2017-10-26",
23201 "_type": "pcap_file",
23206 "frame.encap_type": "1",
23207 "frame.time": "Oct 20, 2017 01:33:21.758751000 PDT",
23208 "frame.offset_shift": "0.000000000",
23209 "frame.time_epoch": "1508488401.758751000",
23210 "frame.time_delta": "0.000821000",
23211 "frame.time_delta_displayed": "0.000821000",
23212 "frame.time_relative": "30689.353547000",
23213 "frame.number": "29398",
23215 "frame.cap_len": "79",
23216 "frame.marked": "0",
23217 "frame.ignored": "0",
23218 "frame.protocols": "eth:ethertype:ip:udp:dns",
23219 "frame.coloring_rule.name": "UDP",
23220 "frame.coloring_rule.string": "udp"
23223 "eth.dst": "b0:b9:8a:73:69:8e",
23225 "eth.dst_resolved": "Netgear_73:69:8e",
23226 "eth.addr": "b0:b9:8a:73:69:8e",
23227 "eth.addr_resolved": "Netgear_73:69:8e",
23231 "eth.src": "00:17:88:69:ee:e4",
23233 "eth.src_resolved": "PhilipsL_69:ee:e4",
23234 "eth.addr": "00:17:88:69:ee:e4",
23235 "eth.addr_resolved": "PhilipsL_69:ee:e4",
23239 "eth.type": "0x00000800"
23243 "ip.hdr_len": "20",
23244 "ip.dsfield": "0x00000000",
23245 "ip.dsfield_tree": {
23246 "ip.dsfield.dscp": "0",
23247 "ip.dsfield.ecn": "0"
23250 "ip.id": "0x00009aae",
23251 "ip.flags": "0x00000002",
23253 "ip.flags.rb": "0",
23254 "ip.flags.df": "1",
23257 "ip.frag_offset": "0",
23260 "ip.checksum": "0x00001e0c",
23261 "ip.checksum.status": "2",
23262 "ip.src": "192.168.0.160",
23263 "ip.addr": "192.168.0.160",
23264 "ip.src_host": "192.168.0.160",
23265 "ip.host": "192.168.0.160",
23266 "ip.dst": "192.168.0.1",
23267 "ip.addr": "192.168.0.1",
23268 "ip.dst_host": "192.168.0.1",
23269 "ip.host": "192.168.0.1",
23270 "Source GeoIP: Unknown": "",
23271 "Destination GeoIP: Unknown": ""
23274 "udp.srcport": "34772",
23275 "udp.dstport": "53",
23276 "udp.port": "34772",
23278 "udp.length": "45",
23279 "udp.checksum": "0x0000539e",
23280 "udp.checksum.status": "2",
23281 "udp.stream": "328"
23284 "dns.response_in": "29399",
23285 "dns.id": "0x000004cb",
23286 "dns.flags": "0x00000100",
23287 "dns.flags_tree": {
23288 "dns.flags.response": "0",
23289 "dns.flags.opcode": "0",
23290 "dns.flags.truncated": "0",
23291 "dns.flags.recdesired": "1",
23292 "dns.flags.z": "0",
23293 "dns.flags.checkdisable": "0"
23295 "dns.count.queries": "1",
23296 "dns.count.answers": "0",
23297 "dns.count.auth_rr": "0",
23298 "dns.count.add_rr": "0",
23300 "dcp.cpp.philips.com: type A, class IN": {
23301 "dns.qry.name": "dcp.cpp.philips.com",
23302 "dns.qry.name.len": "19",
23303 "dns.count.labels": "4",
23304 "dns.qry.type": "1",
23305 "dns.qry.class": "0x00000001"
23314 "_index": "packets-2017-10-26",
23315 "_type": "pcap_file",
23320 "frame.encap_type": "1",
23321 "frame.time": "Oct 20, 2017 01:33:21.760366000 PDT",
23322 "frame.offset_shift": "0.000000000",
23323 "frame.time_epoch": "1508488401.760366000",
23324 "frame.time_delta": "0.001615000",
23325 "frame.time_delta_displayed": "0.001615000",
23326 "frame.time_relative": "30689.355162000",
23327 "frame.number": "29399",
23328 "frame.len": "285",
23329 "frame.cap_len": "285",
23330 "frame.marked": "0",
23331 "frame.ignored": "0",
23332 "frame.protocols": "eth:ethertype:ip:udp:dns",
23333 "frame.coloring_rule.name": "UDP",
23334 "frame.coloring_rule.string": "udp"
23337 "eth.dst": "00:17:88:69:ee:e4",
23339 "eth.dst_resolved": "PhilipsL_69:ee:e4",
23340 "eth.addr": "00:17:88:69:ee:e4",
23341 "eth.addr_resolved": "PhilipsL_69:ee:e4",
23345 "eth.src": "b0:b9:8a:73:69:8e",
23347 "eth.src_resolved": "Netgear_73:69:8e",
23348 "eth.addr": "b0:b9:8a:73:69:8e",
23349 "eth.addr_resolved": "Netgear_73:69:8e",
23353 "eth.type": "0x00000800"
23357 "ip.hdr_len": "20",
23358 "ip.dsfield": "0x00000000",
23359 "ip.dsfield_tree": {
23360 "ip.dsfield.dscp": "0",
23361 "ip.dsfield.ecn": "0"
23364 "ip.id": "0x0000a160",
23365 "ip.flags": "0x00000002",
23367 "ip.flags.rb": "0",
23368 "ip.flags.df": "1",
23371 "ip.frag_offset": "0",
23374 "ip.checksum": "0x0000168c",
23375 "ip.checksum.status": "2",
23376 "ip.src": "192.168.0.1",
23377 "ip.addr": "192.168.0.1",
23378 "ip.src_host": "192.168.0.1",
23379 "ip.host": "192.168.0.1",
23380 "ip.dst": "192.168.0.160",
23381 "ip.addr": "192.168.0.160",
23382 "ip.dst_host": "192.168.0.160",
23383 "ip.host": "192.168.0.160",
23384 "Source GeoIP: Unknown": "",
23385 "Destination GeoIP: Unknown": ""
23388 "udp.srcport": "53",
23389 "udp.dstport": "34772",
23391 "udp.port": "34772",
23392 "udp.length": "251",
23393 "udp.checksum": "0x000082fe",
23394 "udp.checksum.status": "2",
23395 "udp.stream": "328"
23398 "dns.response_to": "29398",
23399 "dns.time": "0.001615000",
23400 "dns.id": "0x000004cb",
23401 "dns.flags": "0x00008180",
23402 "dns.flags_tree": {
23403 "dns.flags.response": "1",
23404 "dns.flags.opcode": "0",
23405 "dns.flags.authoritative": "0",
23406 "dns.flags.truncated": "0",
23407 "dns.flags.recdesired": "1",
23408 "dns.flags.recavail": "1",
23409 "dns.flags.z": "0",
23410 "dns.flags.authenticated": "0",
23411 "dns.flags.checkdisable": "0",
23412 "dns.flags.rcode": "0"
23414 "dns.count.queries": "1",
23415 "dns.count.answers": "1",
23416 "dns.count.auth_rr": "3",
23417 "dns.count.add_rr": "6",
23419 "dcp.cpp.philips.com: type A, class IN": {
23420 "dns.qry.name": "dcp.cpp.philips.com",
23421 "dns.qry.name.len": "19",
23422 "dns.count.labels": "4",
23423 "dns.qry.type": "1",
23424 "dns.qry.class": "0x00000001"
23428 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
23429 "dns.resp.name": "dcp.cpp.philips.com",
23430 "dns.resp.type": "1",
23431 "dns.resp.class": "0x00000001",
23432 "dns.resp.ttl": "3221",
23433 "dns.resp.len": "4",
23434 "dns.a": "5.79.62.93"
23437 "Authoritative nameservers": {
23438 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
23439 "dns.resp.name": "cpp.philips.com",
23440 "dns.resp.type": "2",
23441 "dns.resp.class": "0x00000001",
23442 "dns.resp.ttl": "1322",
23443 "dns.resp.len": "10",
23444 "dns.ns": "ns2.ext.philips.com"
23446 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
23447 "dns.resp.name": "cpp.philips.com",
23448 "dns.resp.type": "2",
23449 "dns.resp.class": "0x00000001",
23450 "dns.resp.ttl": "1322",
23451 "dns.resp.len": "6",
23452 "dns.ns": "ns3.ext.philips.com"
23454 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
23455 "dns.resp.name": "cpp.philips.com",
23456 "dns.resp.type": "2",
23457 "dns.resp.class": "0x00000001",
23458 "dns.resp.ttl": "1322",
23459 "dns.resp.len": "6",
23460 "dns.ns": "ns1.ext.philips.com"
23463 "Additional records": {
23464 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
23465 "dns.resp.name": "ns1.ext.philips.com",
23466 "dns.resp.type": "1",
23467 "dns.resp.class": "0x00000001",
23468 "dns.resp.ttl": "442",
23469 "dns.resp.len": "4",
23470 "dns.a": "57.67.40.20"
23472 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
23473 "dns.resp.name": "ns2.ext.philips.com",
23474 "dns.resp.type": "1",
23475 "dns.resp.class": "0x00000001",
23476 "dns.resp.ttl": "146375",
23477 "dns.resp.len": "4",
23478 "dns.a": "57.77.21.76"
23480 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
23481 "dns.resp.name": "ns3.ext.philips.com",
23482 "dns.resp.type": "1",
23483 "dns.resp.class": "0x00000001",
23484 "dns.resp.ttl": "146375",
23485 "dns.resp.len": "4",
23486 "dns.a": "57.73.36.68"
23488 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
23489 "dns.resp.name": "ns1.ext.philips.com",
23490 "dns.resp.type": "28",
23491 "dns.resp.class": "0x00000001",
23492 "dns.resp.ttl": "164630",
23493 "dns.resp.len": "16",
23494 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
23496 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
23497 "dns.resp.name": "ns2.ext.philips.com",
23498 "dns.resp.type": "28",
23499 "dns.resp.class": "0x00000001",
23500 "dns.resp.ttl": "36352",
23501 "dns.resp.len": "16",
23502 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
23504 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
23505 "dns.resp.name": "ns3.ext.philips.com",
23506 "dns.resp.type": "28",
23507 "dns.resp.class": "0x00000001",
23508 "dns.resp.ttl": "36352",
23509 "dns.resp.len": "16",
23510 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
23519 "_index": "packets-2017-10-26",
23520 "_type": "pcap_file",
23525 "frame.encap_type": "1",
23526 "frame.time": "Oct 20, 2017 01:33:22.179535000 PDT",
23527 "frame.offset_shift": "0.000000000",
23528 "frame.time_epoch": "1508488402.179535000",
23529 "frame.time_delta": "0.001270000",
23530 "frame.time_delta_displayed": "0.419169000",
23531 "frame.time_relative": "30689.774331000",
23532 "frame.number": "29415",
23534 "frame.cap_len": "79",
23535 "frame.marked": "0",
23536 "frame.ignored": "0",
23537 "frame.protocols": "eth:ethertype:ip:udp:dns",
23538 "frame.coloring_rule.name": "UDP",
23539 "frame.coloring_rule.string": "udp"
23542 "eth.dst": "b0:b9:8a:73:69:8e",
23544 "eth.dst_resolved": "Netgear_73:69:8e",
23545 "eth.addr": "b0:b9:8a:73:69:8e",
23546 "eth.addr_resolved": "Netgear_73:69:8e",
23550 "eth.src": "00:17:88:69:ee:e4",
23552 "eth.src_resolved": "PhilipsL_69:ee:e4",
23553 "eth.addr": "00:17:88:69:ee:e4",
23554 "eth.addr_resolved": "PhilipsL_69:ee:e4",
23558 "eth.type": "0x00000800"
23562 "ip.hdr_len": "20",
23563 "ip.dsfield": "0x00000000",
23564 "ip.dsfield_tree": {
23565 "ip.dsfield.dscp": "0",
23566 "ip.dsfield.ecn": "0"
23569 "ip.id": "0x00009ac2",
23570 "ip.flags": "0x00000002",
23572 "ip.flags.rb": "0",
23573 "ip.flags.df": "1",
23576 "ip.frag_offset": "0",
23579 "ip.checksum": "0x00001df8",
23580 "ip.checksum.status": "2",
23581 "ip.src": "192.168.0.160",
23582 "ip.addr": "192.168.0.160",
23583 "ip.src_host": "192.168.0.160",
23584 "ip.host": "192.168.0.160",
23585 "ip.dst": "192.168.0.1",
23586 "ip.addr": "192.168.0.1",
23587 "ip.dst_host": "192.168.0.1",
23588 "ip.host": "192.168.0.1",
23589 "Source GeoIP: Unknown": "",
23590 "Destination GeoIP: Unknown": ""
23593 "udp.srcport": "32927",
23594 "udp.dstport": "53",
23595 "udp.port": "32927",
23597 "udp.length": "45",
23598 "udp.checksum": "0x00003fd2",
23599 "udp.checksum.status": "2",
23600 "udp.stream": "329"
23603 "dns.response_in": "29416",
23604 "dns.id": "0x000004cc",
23605 "dns.flags": "0x00000100",
23606 "dns.flags_tree": {
23607 "dns.flags.response": "0",
23608 "dns.flags.opcode": "0",
23609 "dns.flags.truncated": "0",
23610 "dns.flags.recdesired": "1",
23611 "dns.flags.z": "0",
23612 "dns.flags.checkdisable": "0"
23614 "dns.count.queries": "1",
23615 "dns.count.answers": "0",
23616 "dns.count.auth_rr": "0",
23617 "dns.count.add_rr": "0",
23619 "dcp.cpp.philips.com: type AAAA, class IN": {
23620 "dns.qry.name": "dcp.cpp.philips.com",
23621 "dns.qry.name.len": "19",
23622 "dns.count.labels": "4",
23623 "dns.qry.type": "28",
23624 "dns.qry.class": "0x00000001"
23633 "_index": "packets-2017-10-26",
23634 "_type": "pcap_file",
23639 "frame.encap_type": "1",
23640 "frame.time": "Oct 20, 2017 01:33:22.180074000 PDT",
23641 "frame.offset_shift": "0.000000000",
23642 "frame.time_epoch": "1508488402.180074000",
23643 "frame.time_delta": "0.000539000",
23644 "frame.time_delta_displayed": "0.000539000",
23645 "frame.time_relative": "30689.774870000",
23646 "frame.number": "29416",
23648 "frame.cap_len": "79",
23649 "frame.marked": "0",
23650 "frame.ignored": "0",
23651 "frame.protocols": "eth:ethertype:ip:udp:dns",
23652 "frame.coloring_rule.name": "UDP",
23653 "frame.coloring_rule.string": "udp"
23656 "eth.dst": "00:17:88:69:ee:e4",
23658 "eth.dst_resolved": "PhilipsL_69:ee:e4",
23659 "eth.addr": "00:17:88:69:ee:e4",
23660 "eth.addr_resolved": "PhilipsL_69:ee:e4",
23664 "eth.src": "b0:b9:8a:73:69:8e",
23666 "eth.src_resolved": "Netgear_73:69:8e",
23667 "eth.addr": "b0:b9:8a:73:69:8e",
23668 "eth.addr_resolved": "Netgear_73:69:8e",
23672 "eth.type": "0x00000800"
23676 "ip.hdr_len": "20",
23677 "ip.dsfield": "0x00000000",
23678 "ip.dsfield_tree": {
23679 "ip.dsfield.dscp": "0",
23680 "ip.dsfield.ecn": "0"
23683 "ip.id": "0x0000a17c",
23684 "ip.flags": "0x00000002",
23686 "ip.flags.rb": "0",
23687 "ip.flags.df": "1",
23690 "ip.frag_offset": "0",
23693 "ip.checksum": "0x0000173e",
23694 "ip.checksum.status": "2",
23695 "ip.src": "192.168.0.1",
23696 "ip.addr": "192.168.0.1",
23697 "ip.src_host": "192.168.0.1",
23698 "ip.host": "192.168.0.1",
23699 "ip.dst": "192.168.0.160",
23700 "ip.addr": "192.168.0.160",
23701 "ip.dst_host": "192.168.0.160",
23702 "ip.host": "192.168.0.160",
23703 "Source GeoIP: Unknown": "",
23704 "Destination GeoIP: Unknown": ""
23707 "udp.srcport": "53",
23708 "udp.dstport": "32927",
23710 "udp.port": "32927",
23711 "udp.length": "45",
23712 "udp.checksum": "0x00008230",
23713 "udp.checksum.status": "2",
23714 "udp.stream": "329"
23717 "dns.response_to": "29415",
23718 "dns.time": "0.000539000",
23719 "dns.id": "0x000004cc",
23720 "dns.flags": "0x00008180",
23721 "dns.flags_tree": {
23722 "dns.flags.response": "1",
23723 "dns.flags.opcode": "0",
23724 "dns.flags.authoritative": "0",
23725 "dns.flags.truncated": "0",
23726 "dns.flags.recdesired": "1",
23727 "dns.flags.recavail": "1",
23728 "dns.flags.z": "0",
23729 "dns.flags.authenticated": "0",
23730 "dns.flags.checkdisable": "0",
23731 "dns.flags.rcode": "0"
23733 "dns.count.queries": "1",
23734 "dns.count.answers": "0",
23735 "dns.count.auth_rr": "0",
23736 "dns.count.add_rr": "0",
23738 "dcp.cpp.philips.com: type AAAA, class IN": {
23739 "dns.qry.name": "dcp.cpp.philips.com",
23740 "dns.qry.name.len": "19",
23741 "dns.count.labels": "4",
23742 "dns.qry.type": "28",
23743 "dns.qry.class": "0x00000001"
23752 "_index": "packets-2017-10-26",
23753 "_type": "pcap_file",
23758 "frame.encap_type": "1",
23759 "frame.time": "Oct 20, 2017 01:33:22.181272000 PDT",
23760 "frame.offset_shift": "0.000000000",
23761 "frame.time_epoch": "1508488402.181272000",
23762 "frame.time_delta": "0.001198000",
23763 "frame.time_delta_displayed": "0.001198000",
23764 "frame.time_relative": "30689.776068000",
23765 "frame.number": "29417",
23767 "frame.cap_len": "79",
23768 "frame.marked": "0",
23769 "frame.ignored": "0",
23770 "frame.protocols": "eth:ethertype:ip:udp:dns",
23771 "frame.coloring_rule.name": "UDP",
23772 "frame.coloring_rule.string": "udp"
23775 "eth.dst": "b0:b9:8a:73:69:8e",
23777 "eth.dst_resolved": "Netgear_73:69:8e",
23778 "eth.addr": "b0:b9:8a:73:69:8e",
23779 "eth.addr_resolved": "Netgear_73:69:8e",
23783 "eth.src": "00:17:88:69:ee:e4",
23785 "eth.src_resolved": "PhilipsL_69:ee:e4",
23786 "eth.addr": "00:17:88:69:ee:e4",
23787 "eth.addr_resolved": "PhilipsL_69:ee:e4",
23791 "eth.type": "0x00000800"
23795 "ip.hdr_len": "20",
23796 "ip.dsfield": "0x00000000",
23797 "ip.dsfield_tree": {
23798 "ip.dsfield.dscp": "0",
23799 "ip.dsfield.ecn": "0"
23802 "ip.id": "0x00009ac3",
23803 "ip.flags": "0x00000002",
23805 "ip.flags.rb": "0",
23806 "ip.flags.df": "1",
23809 "ip.frag_offset": "0",
23812 "ip.checksum": "0x00001df7",
23813 "ip.checksum.status": "2",
23814 "ip.src": "192.168.0.160",
23815 "ip.addr": "192.168.0.160",
23816 "ip.src_host": "192.168.0.160",
23817 "ip.host": "192.168.0.160",
23818 "ip.dst": "192.168.0.1",
23819 "ip.addr": "192.168.0.1",
23820 "ip.dst_host": "192.168.0.1",
23821 "ip.host": "192.168.0.1",
23822 "Source GeoIP: Unknown": "",
23823 "Destination GeoIP: Unknown": ""
23826 "udp.srcport": "50502",
23827 "udp.dstport": "53",
23828 "udp.port": "50502",
23830 "udp.length": "45",
23831 "udp.checksum": "0x0000162a",
23832 "udp.checksum.status": "2",
23833 "udp.stream": "330"
23836 "dns.response_in": "29418",
23837 "dns.id": "0x000004cd",
23838 "dns.flags": "0x00000100",
23839 "dns.flags_tree": {
23840 "dns.flags.response": "0",
23841 "dns.flags.opcode": "0",
23842 "dns.flags.truncated": "0",
23843 "dns.flags.recdesired": "1",
23844 "dns.flags.z": "0",
23845 "dns.flags.checkdisable": "0"
23847 "dns.count.queries": "1",
23848 "dns.count.answers": "0",
23849 "dns.count.auth_rr": "0",
23850 "dns.count.add_rr": "0",
23852 "dcp.cpp.philips.com: type A, class IN": {
23853 "dns.qry.name": "dcp.cpp.philips.com",
23854 "dns.qry.name.len": "19",
23855 "dns.count.labels": "4",
23856 "dns.qry.type": "1",
23857 "dns.qry.class": "0x00000001"
23866 "_index": "packets-2017-10-26",
23867 "_type": "pcap_file",
23872 "frame.encap_type": "1",
23873 "frame.time": "Oct 20, 2017 01:33:22.181706000 PDT",
23874 "frame.offset_shift": "0.000000000",
23875 "frame.time_epoch": "1508488402.181706000",
23876 "frame.time_delta": "0.000434000",
23877 "frame.time_delta_displayed": "0.000434000",
23878 "frame.time_relative": "30689.776502000",
23879 "frame.number": "29418",
23881 "frame.cap_len": "95",
23882 "frame.marked": "0",
23883 "frame.ignored": "0",
23884 "frame.protocols": "eth:ethertype:ip:udp:dns",
23885 "frame.coloring_rule.name": "UDP",
23886 "frame.coloring_rule.string": "udp"
23889 "eth.dst": "00:17:88:69:ee:e4",
23891 "eth.dst_resolved": "PhilipsL_69:ee:e4",
23892 "eth.addr": "00:17:88:69:ee:e4",
23893 "eth.addr_resolved": "PhilipsL_69:ee:e4",
23897 "eth.src": "b0:b9:8a:73:69:8e",
23899 "eth.src_resolved": "Netgear_73:69:8e",
23900 "eth.addr": "b0:b9:8a:73:69:8e",
23901 "eth.addr_resolved": "Netgear_73:69:8e",
23905 "eth.type": "0x00000800"
23909 "ip.hdr_len": "20",
23910 "ip.dsfield": "0x00000000",
23911 "ip.dsfield_tree": {
23912 "ip.dsfield.dscp": "0",
23913 "ip.dsfield.ecn": "0"
23916 "ip.id": "0x0000a17d",
23917 "ip.flags": "0x00000002",
23919 "ip.flags.rb": "0",
23920 "ip.flags.df": "1",
23923 "ip.frag_offset": "0",
23926 "ip.checksum": "0x0000172d",
23927 "ip.checksum.status": "2",
23928 "ip.src": "192.168.0.1",
23929 "ip.addr": "192.168.0.1",
23930 "ip.src_host": "192.168.0.1",
23931 "ip.host": "192.168.0.1",
23932 "ip.dst": "192.168.0.160",
23933 "ip.addr": "192.168.0.160",
23934 "ip.dst_host": "192.168.0.160",
23935 "ip.host": "192.168.0.160",
23936 "Source GeoIP: Unknown": "",
23937 "Destination GeoIP: Unknown": ""
23940 "udp.srcport": "53",
23941 "udp.dstport": "50502",
23943 "udp.port": "50502",
23944 "udp.length": "61",
23945 "udp.checksum": "0x00008240",
23946 "udp.checksum.status": "2",
23947 "udp.stream": "330"
23950 "dns.response_to": "29417",
23951 "dns.time": "0.000434000",
23952 "dns.id": "0x000004cd",
23953 "dns.flags": "0x00008180",
23954 "dns.flags_tree": {
23955 "dns.flags.response": "1",
23956 "dns.flags.opcode": "0",
23957 "dns.flags.authoritative": "0",
23958 "dns.flags.truncated": "0",
23959 "dns.flags.recdesired": "1",
23960 "dns.flags.recavail": "1",
23961 "dns.flags.z": "0",
23962 "dns.flags.authenticated": "0",
23963 "dns.flags.checkdisable": "0",
23964 "dns.flags.rcode": "0"
23966 "dns.count.queries": "1",
23967 "dns.count.answers": "1",
23968 "dns.count.auth_rr": "0",
23969 "dns.count.add_rr": "0",
23971 "dcp.cpp.philips.com: type A, class IN": {
23972 "dns.qry.name": "dcp.cpp.philips.com",
23973 "dns.qry.name.len": "19",
23974 "dns.count.labels": "4",
23975 "dns.qry.type": "1",
23976 "dns.qry.class": "0x00000001"
23980 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
23981 "dns.resp.name": "dcp.cpp.philips.com",
23982 "dns.resp.type": "1",
23983 "dns.resp.class": "0x00000001",
23984 "dns.resp.ttl": "3220",
23985 "dns.resp.len": "4",
23986 "dns.a": "5.79.62.93"
23995 "_index": "packets-2017-10-26",
23996 "_type": "pcap_file",
24001 "frame.encap_type": "1",
24002 "frame.time": "Oct 20, 2017 01:37:52.855829000 PDT",
24003 "frame.offset_shift": "0.000000000",
24004 "frame.time_epoch": "1508488672.855829000",
24005 "frame.time_delta": "3.621068000",
24006 "frame.time_delta_displayed": "270.674123000",
24007 "frame.time_relative": "30960.450625000",
24008 "frame.number": "29698",
24010 "frame.cap_len": "76",
24011 "frame.marked": "0",
24012 "frame.ignored": "0",
24013 "frame.protocols": "eth:ethertype:ip:udp:dns",
24014 "frame.coloring_rule.name": "UDP",
24015 "frame.coloring_rule.string": "udp"
24018 "eth.dst": "b0:b9:8a:73:69:8e",
24020 "eth.dst_resolved": "Netgear_73:69:8e",
24021 "eth.addr": "b0:b9:8a:73:69:8e",
24022 "eth.addr_resolved": "Netgear_73:69:8e",
24026 "eth.src": "00:17:88:69:ee:e4",
24028 "eth.src_resolved": "PhilipsL_69:ee:e4",
24029 "eth.addr": "00:17:88:69:ee:e4",
24030 "eth.addr_resolved": "PhilipsL_69:ee:e4",
24034 "eth.type": "0x00000800"
24038 "ip.hdr_len": "20",
24039 "ip.dsfield": "0x00000000",
24040 "ip.dsfield_tree": {
24041 "ip.dsfield.dscp": "0",
24042 "ip.dsfield.ecn": "0"
24045 "ip.id": "0x0000af13",
24046 "ip.flags": "0x00000002",
24048 "ip.flags.rb": "0",
24049 "ip.flags.df": "1",
24052 "ip.frag_offset": "0",
24055 "ip.checksum": "0x000009aa",
24056 "ip.checksum.status": "2",
24057 "ip.src": "192.168.0.160",
24058 "ip.addr": "192.168.0.160",
24059 "ip.src_host": "192.168.0.160",
24060 "ip.host": "192.168.0.160",
24061 "ip.dst": "192.168.0.1",
24062 "ip.addr": "192.168.0.1",
24063 "ip.dst_host": "192.168.0.1",
24064 "ip.host": "192.168.0.1",
24065 "Source GeoIP: Unknown": "",
24066 "Destination GeoIP: Unknown": ""
24069 "udp.srcport": "51191",
24070 "udp.dstport": "53",
24071 "udp.port": "51191",
24073 "udp.length": "42",
24074 "udp.checksum": "0x000090f2",
24075 "udp.checksum.status": "2",
24076 "udp.stream": "331"
24079 "dns.response_in": "29699",
24080 "dns.id": "0x000004ce",
24081 "dns.flags": "0x00000100",
24082 "dns.flags_tree": {
24083 "dns.flags.response": "0",
24084 "dns.flags.opcode": "0",
24085 "dns.flags.truncated": "0",
24086 "dns.flags.recdesired": "1",
24087 "dns.flags.z": "0",
24088 "dns.flags.checkdisable": "0"
24090 "dns.count.queries": "1",
24091 "dns.count.answers": "0",
24092 "dns.count.auth_rr": "0",
24093 "dns.count.add_rr": "0",
24095 "www2.meethue.com: type A, class IN": {
24096 "dns.qry.name": "www2.meethue.com",
24097 "dns.qry.name.len": "16",
24098 "dns.count.labels": "3",
24099 "dns.qry.type": "1",
24100 "dns.qry.class": "0x00000001"
24109 "_index": "packets-2017-10-26",
24110 "_type": "pcap_file",
24115 "frame.encap_type": "1",
24116 "frame.time": "Oct 20, 2017 01:37:52.862182000 PDT",
24117 "frame.offset_shift": "0.000000000",
24118 "frame.time_epoch": "1508488672.862182000",
24119 "frame.time_delta": "0.006353000",
24120 "frame.time_delta_displayed": "0.006353000",
24121 "frame.time_relative": "30960.456978000",
24122 "frame.number": "29699",
24123 "frame.len": "513",
24124 "frame.cap_len": "513",
24125 "frame.marked": "0",
24126 "frame.ignored": "0",
24127 "frame.protocols": "eth:ethertype:ip:udp:dns",
24128 "frame.coloring_rule.name": "UDP",
24129 "frame.coloring_rule.string": "udp"
24132 "eth.dst": "00:17:88:69:ee:e4",
24134 "eth.dst_resolved": "PhilipsL_69:ee:e4",
24135 "eth.addr": "00:17:88:69:ee:e4",
24136 "eth.addr_resolved": "PhilipsL_69:ee:e4",
24140 "eth.src": "b0:b9:8a:73:69:8e",
24142 "eth.src_resolved": "Netgear_73:69:8e",
24143 "eth.addr": "b0:b9:8a:73:69:8e",
24144 "eth.addr_resolved": "Netgear_73:69:8e",
24148 "eth.type": "0x00000800"
24152 "ip.hdr_len": "20",
24153 "ip.dsfield": "0x00000000",
24154 "ip.dsfield_tree": {
24155 "ip.dsfield.dscp": "0",
24156 "ip.dsfield.ecn": "0"
24159 "ip.id": "0x0000ff8b",
24160 "ip.flags": "0x00000002",
24162 "ip.flags.rb": "0",
24163 "ip.flags.df": "1",
24166 "ip.frag_offset": "0",
24169 "ip.checksum": "0x0000b77c",
24170 "ip.checksum.status": "2",
24171 "ip.src": "192.168.0.1",
24172 "ip.addr": "192.168.0.1",
24173 "ip.src_host": "192.168.0.1",
24174 "ip.host": "192.168.0.1",
24175 "ip.dst": "192.168.0.160",
24176 "ip.addr": "192.168.0.160",
24177 "ip.dst_host": "192.168.0.160",
24178 "ip.host": "192.168.0.160",
24179 "Source GeoIP: Unknown": "",
24180 "Destination GeoIP: Unknown": ""
24183 "udp.srcport": "53",
24184 "udp.dstport": "51191",
24186 "udp.port": "51191",
24187 "udp.length": "479",
24188 "udp.checksum": "0x000083e2",
24189 "udp.checksum.status": "2",
24190 "udp.stream": "331"
24193 "dns.response_to": "29698",
24194 "dns.time": "0.006353000",
24195 "dns.id": "0x000004ce",
24196 "dns.flags": "0x00008180",
24197 "dns.flags_tree": {
24198 "dns.flags.response": "1",
24199 "dns.flags.opcode": "0",
24200 "dns.flags.authoritative": "0",
24201 "dns.flags.truncated": "0",
24202 "dns.flags.recdesired": "1",
24203 "dns.flags.recavail": "1",
24204 "dns.flags.z": "0",
24205 "dns.flags.authenticated": "0",
24206 "dns.flags.checkdisable": "0",
24207 "dns.flags.rcode": "0"
24209 "dns.count.queries": "1",
24210 "dns.count.answers": "4",
24211 "dns.count.auth_rr": "9",
24212 "dns.count.add_rr": "9",
24214 "www2.meethue.com: type A, class IN": {
24215 "dns.qry.name": "www2.meethue.com",
24216 "dns.qry.name.len": "16",
24217 "dns.count.labels": "3",
24218 "dns.qry.type": "1",
24219 "dns.qry.class": "0x00000001"
24223 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
24224 "dns.resp.name": "www2.meethue.com",
24225 "dns.resp.type": "5",
24226 "dns.resp.class": "0x00000001",
24227 "dns.resp.ttl": "144",
24228 "dns.resp.len": "41",
24229 "dns.cname": "brands.lighting.philips.com.edgekey.net"
24231 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
24232 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
24233 "dns.resp.type": "5",
24234 "dns.resp.class": "0x00000001",
24235 "dns.resp.ttl": "5958",
24236 "dns.resp.len": "22",
24237 "dns.cname": "e15361.b.akamaiedge.net"
24239 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
24240 "dns.resp.name": "e15361.b.akamaiedge.net",
24241 "dns.resp.type": "1",
24242 "dns.resp.class": "0x00000001",
24243 "dns.resp.ttl": "20",
24244 "dns.resp.len": "4",
24245 "dns.a": "184.84.242.42"
24247 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
24248 "dns.resp.name": "e15361.b.akamaiedge.net",
24249 "dns.resp.type": "1",
24250 "dns.resp.class": "0x00000001",
24251 "dns.resp.ttl": "20",
24252 "dns.resp.len": "4",
24253 "dns.a": "184.84.242.27"
24256 "Authoritative nameservers": {
24257 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
24258 "dns.resp.name": "b.akamaiedge.net",
24259 "dns.resp.type": "2",
24260 "dns.resp.class": "0x00000001",
24261 "dns.resp.ttl": "3974",
24262 "dns.resp.len": "6",
24263 "dns.ns": "n1b.akamaiedge.net"
24265 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
24266 "dns.resp.name": "b.akamaiedge.net",
24267 "dns.resp.type": "2",
24268 "dns.resp.class": "0x00000001",
24269 "dns.resp.ttl": "3974",
24270 "dns.resp.len": "6",
24271 "dns.ns": "n0b.akamaiedge.net"
24273 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
24274 "dns.resp.name": "b.akamaiedge.net",
24275 "dns.resp.type": "2",
24276 "dns.resp.class": "0x00000001",
24277 "dns.resp.ttl": "3974",
24278 "dns.resp.len": "6",
24279 "dns.ns": "n5b.akamaiedge.net"
24281 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
24282 "dns.resp.name": "b.akamaiedge.net",
24283 "dns.resp.type": "2",
24284 "dns.resp.class": "0x00000001",
24285 "dns.resp.ttl": "3974",
24286 "dns.resp.len": "6",
24287 "dns.ns": "n4b.akamaiedge.net"
24289 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
24290 "dns.resp.name": "b.akamaiedge.net",
24291 "dns.resp.type": "2",
24292 "dns.resp.class": "0x00000001",
24293 "dns.resp.ttl": "3974",
24294 "dns.resp.len": "6",
24295 "dns.ns": "n2b.akamaiedge.net"
24297 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
24298 "dns.resp.name": "b.akamaiedge.net",
24299 "dns.resp.type": "2",
24300 "dns.resp.class": "0x00000001",
24301 "dns.resp.ttl": "3974",
24302 "dns.resp.len": "6",
24303 "dns.ns": "a0b.akamaiedge.net"
24305 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
24306 "dns.resp.name": "b.akamaiedge.net",
24307 "dns.resp.type": "2",
24308 "dns.resp.class": "0x00000001",
24309 "dns.resp.ttl": "3974",
24310 "dns.resp.len": "6",
24311 "dns.ns": "n3b.akamaiedge.net"
24313 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
24314 "dns.resp.name": "b.akamaiedge.net",
24315 "dns.resp.type": "2",
24316 "dns.resp.class": "0x00000001",
24317 "dns.resp.ttl": "3974",
24318 "dns.resp.len": "6",
24319 "dns.ns": "n6b.akamaiedge.net"
24321 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
24322 "dns.resp.name": "b.akamaiedge.net",
24323 "dns.resp.type": "2",
24324 "dns.resp.class": "0x00000001",
24325 "dns.resp.ttl": "3974",
24326 "dns.resp.len": "6",
24327 "dns.ns": "n7b.akamaiedge.net"
24330 "Additional records": {
24331 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
24332 "dns.resp.name": "n0b.akamaiedge.net",
24333 "dns.resp.type": "1",
24334 "dns.resp.class": "0x00000001",
24335 "dns.resp.ttl": "3503",
24336 "dns.resp.len": "4",
24337 "dns.a": "88.221.81.192"
24339 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.131": {
24340 "dns.resp.name": "n1b.akamaiedge.net",
24341 "dns.resp.type": "1",
24342 "dns.resp.class": "0x00000001",
24343 "dns.resp.ttl": "42",
24344 "dns.resp.len": "4",
24345 "dns.a": "173.223.52.131"
24347 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.94": {
24348 "dns.resp.name": "n2b.akamaiedge.net",
24349 "dns.resp.type": "1",
24350 "dns.resp.class": "0x00000001",
24351 "dns.resp.ttl": "2816",
24352 "dns.resp.len": "4",
24353 "dns.a": "165.254.16.94"
24355 "n3b.akamaiedge.net: type A, class IN, addr 23.67.56.213": {
24356 "dns.resp.name": "n3b.akamaiedge.net",
24357 "dns.resp.type": "1",
24358 "dns.resp.class": "0x00000001",
24359 "dns.resp.ttl": "2882",
24360 "dns.resp.len": "4",
24361 "dns.a": "23.67.56.213"
24363 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
24364 "dns.resp.name": "n4b.akamaiedge.net",
24365 "dns.resp.type": "1",
24366 "dns.resp.class": "0x00000001",
24367 "dns.resp.ttl": "5291",
24368 "dns.resp.len": "4",
24369 "dns.a": "96.17.70.175"
24371 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
24372 "dns.resp.name": "n5b.akamaiedge.net",
24373 "dns.resp.type": "1",
24374 "dns.resp.class": "0x00000001",
24375 "dns.resp.ttl": "7844",
24376 "dns.resp.len": "4",
24377 "dns.a": "204.2.166.150"
24379 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
24380 "dns.resp.name": "n6b.akamaiedge.net",
24381 "dns.resp.type": "1",
24382 "dns.resp.class": "0x00000001",
24383 "dns.resp.ttl": "3426",
24384 "dns.resp.len": "4",
24385 "dns.a": "96.17.70.177"
24387 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.243": {
24388 "dns.resp.name": "n7b.akamaiedge.net",
24389 "dns.resp.type": "1",
24390 "dns.resp.class": "0x00000001",
24391 "dns.resp.ttl": "3529",
24392 "dns.resp.len": "4",
24393 "dns.a": "165.254.134.243"
24395 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
24396 "dns.resp.name": "a0b.akamaiedge.net",
24397 "dns.resp.type": "28",
24398 "dns.resp.class": "0x00000001",
24399 "dns.resp.ttl": "974",
24400 "dns.resp.len": "16",
24401 "dns.aaaa": "2600:1480:e800::c0"
24410 "_index": "packets-2017-10-26",
24411 "_type": "pcap_file",
24416 "frame.encap_type": "1",
24417 "frame.time": "Oct 20, 2017 01:52:52.869701000 PDT",
24418 "frame.offset_shift": "0.000000000",
24419 "frame.time_epoch": "1508489572.869701000",
24420 "frame.time_delta": "1.064777000",
24421 "frame.time_delta_displayed": "900.007519000",
24422 "frame.time_relative": "31860.464497000",
24423 "frame.number": "30491",
24425 "frame.cap_len": "76",
24426 "frame.marked": "0",
24427 "frame.ignored": "0",
24428 "frame.protocols": "eth:ethertype:ip:udp:dns",
24429 "frame.coloring_rule.name": "UDP",
24430 "frame.coloring_rule.string": "udp"
24433 "eth.dst": "b0:b9:8a:73:69:8e",
24435 "eth.dst_resolved": "Netgear_73:69:8e",
24436 "eth.addr": "b0:b9:8a:73:69:8e",
24437 "eth.addr_resolved": "Netgear_73:69:8e",
24441 "eth.src": "00:17:88:69:ee:e4",
24443 "eth.src_resolved": "PhilipsL_69:ee:e4",
24444 "eth.addr": "00:17:88:69:ee:e4",
24445 "eth.addr_resolved": "PhilipsL_69:ee:e4",
24449 "eth.type": "0x00000800"
24453 "ip.hdr_len": "20",
24454 "ip.dsfield": "0x00000000",
24455 "ip.dsfield_tree": {
24456 "ip.dsfield.dscp": "0",
24457 "ip.dsfield.ecn": "0"
24460 "ip.id": "0x0000c558",
24461 "ip.flags": "0x00000002",
24463 "ip.flags.rb": "0",
24464 "ip.flags.df": "1",
24467 "ip.frag_offset": "0",
24470 "ip.checksum": "0x0000f364",
24471 "ip.checksum.status": "2",
24472 "ip.src": "192.168.0.160",
24473 "ip.addr": "192.168.0.160",
24474 "ip.src_host": "192.168.0.160",
24475 "ip.host": "192.168.0.160",
24476 "ip.dst": "192.168.0.1",
24477 "ip.addr": "192.168.0.1",
24478 "ip.dst_host": "192.168.0.1",
24479 "ip.host": "192.168.0.1",
24480 "Source GeoIP: Unknown": "",
24481 "Destination GeoIP: Unknown": ""
24484 "udp.srcport": "43504",
24485 "udp.dstport": "53",
24486 "udp.port": "43504",
24488 "udp.length": "42",
24489 "udp.checksum": "0x0000aef8",
24490 "udp.checksum.status": "2",
24491 "udp.stream": "337"
24494 "dns.response_in": "30492",
24495 "dns.id": "0x000004cf",
24496 "dns.flags": "0x00000100",
24497 "dns.flags_tree": {
24498 "dns.flags.response": "0",
24499 "dns.flags.opcode": "0",
24500 "dns.flags.truncated": "0",
24501 "dns.flags.recdesired": "1",
24502 "dns.flags.z": "0",
24503 "dns.flags.checkdisable": "0"
24505 "dns.count.queries": "1",
24506 "dns.count.answers": "0",
24507 "dns.count.auth_rr": "0",
24508 "dns.count.add_rr": "0",
24510 "www2.meethue.com: type A, class IN": {
24511 "dns.qry.name": "www2.meethue.com",
24512 "dns.qry.name.len": "16",
24513 "dns.count.labels": "3",
24514 "dns.qry.type": "1",
24515 "dns.qry.class": "0x00000001"
24524 "_index": "packets-2017-10-26",
24525 "_type": "pcap_file",
24530 "frame.encap_type": "1",
24531 "frame.time": "Oct 20, 2017 01:52:52.875803000 PDT",
24532 "frame.offset_shift": "0.000000000",
24533 "frame.time_epoch": "1508489572.875803000",
24534 "frame.time_delta": "0.006102000",
24535 "frame.time_delta_displayed": "0.006102000",
24536 "frame.time_relative": "31860.470599000",
24537 "frame.number": "30492",
24538 "frame.len": "513",
24539 "frame.cap_len": "513",
24540 "frame.marked": "0",
24541 "frame.ignored": "0",
24542 "frame.protocols": "eth:ethertype:ip:udp:dns",
24543 "frame.coloring_rule.name": "UDP",
24544 "frame.coloring_rule.string": "udp"
24547 "eth.dst": "00:17:88:69:ee:e4",
24549 "eth.dst_resolved": "PhilipsL_69:ee:e4",
24550 "eth.addr": "00:17:88:69:ee:e4",
24551 "eth.addr_resolved": "PhilipsL_69:ee:e4",
24555 "eth.src": "b0:b9:8a:73:69:8e",
24557 "eth.src_resolved": "Netgear_73:69:8e",
24558 "eth.addr": "b0:b9:8a:73:69:8e",
24559 "eth.addr_resolved": "Netgear_73:69:8e",
24563 "eth.type": "0x00000800"
24567 "ip.hdr_len": "20",
24568 "ip.dsfield": "0x00000000",
24569 "ip.dsfield_tree": {
24570 "ip.dsfield.dscp": "0",
24571 "ip.dsfield.ecn": "0"
24574 "ip.id": "0x00004e2b",
24575 "ip.flags": "0x00000002",
24577 "ip.flags.rb": "0",
24578 "ip.flags.df": "1",
24581 "ip.frag_offset": "0",
24584 "ip.checksum": "0x000068dd",
24585 "ip.checksum.status": "2",
24586 "ip.src": "192.168.0.1",
24587 "ip.addr": "192.168.0.1",
24588 "ip.src_host": "192.168.0.1",
24589 "ip.host": "192.168.0.1",
24590 "ip.dst": "192.168.0.160",
24591 "ip.addr": "192.168.0.160",
24592 "ip.dst_host": "192.168.0.160",
24593 "ip.host": "192.168.0.160",
24594 "Source GeoIP: Unknown": "",
24595 "Destination GeoIP: Unknown": ""
24598 "udp.srcport": "53",
24599 "udp.dstport": "43504",
24601 "udp.port": "43504",
24602 "udp.length": "479",
24603 "udp.checksum": "0x000083e2",
24604 "udp.checksum.status": "2",
24605 "udp.stream": "337"
24608 "dns.response_to": "30491",
24609 "dns.time": "0.006102000",
24610 "dns.id": "0x000004cf",
24611 "dns.flags": "0x00008180",
24612 "dns.flags_tree": {
24613 "dns.flags.response": "1",
24614 "dns.flags.opcode": "0",
24615 "dns.flags.authoritative": "0",
24616 "dns.flags.truncated": "0",
24617 "dns.flags.recdesired": "1",
24618 "dns.flags.recavail": "1",
24619 "dns.flags.z": "0",
24620 "dns.flags.authenticated": "0",
24621 "dns.flags.checkdisable": "0",
24622 "dns.flags.rcode": "0"
24624 "dns.count.queries": "1",
24625 "dns.count.answers": "4",
24626 "dns.count.auth_rr": "9",
24627 "dns.count.add_rr": "9",
24629 "www2.meethue.com: type A, class IN": {
24630 "dns.qry.name": "www2.meethue.com",
24631 "dns.qry.name.len": "16",
24632 "dns.count.labels": "3",
24633 "dns.qry.type": "1",
24634 "dns.qry.class": "0x00000001"
24638 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
24639 "dns.resp.name": "www2.meethue.com",
24640 "dns.resp.type": "5",
24641 "dns.resp.class": "0x00000001",
24642 "dns.resp.ttl": "144",
24643 "dns.resp.len": "41",
24644 "dns.cname": "brands.lighting.philips.com.edgekey.net"
24646 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
24647 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
24648 "dns.resp.type": "5",
24649 "dns.resp.class": "0x00000001",
24650 "dns.resp.ttl": "5058",
24651 "dns.resp.len": "22",
24652 "dns.cname": "e15361.b.akamaiedge.net"
24654 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
24655 "dns.resp.name": "e15361.b.akamaiedge.net",
24656 "dns.resp.type": "1",
24657 "dns.resp.class": "0x00000001",
24658 "dns.resp.ttl": "20",
24659 "dns.resp.len": "4",
24660 "dns.a": "184.84.242.27"
24662 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
24663 "dns.resp.name": "e15361.b.akamaiedge.net",
24664 "dns.resp.type": "1",
24665 "dns.resp.class": "0x00000001",
24666 "dns.resp.ttl": "20",
24667 "dns.resp.len": "4",
24668 "dns.a": "184.84.242.42"
24671 "Authoritative nameservers": {
24672 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
24673 "dns.resp.name": "b.akamaiedge.net",
24674 "dns.resp.type": "2",
24675 "dns.resp.class": "0x00000001",
24676 "dns.resp.ttl": "3074",
24677 "dns.resp.len": "6",
24678 "dns.ns": "n3b.akamaiedge.net"
24680 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
24681 "dns.resp.name": "b.akamaiedge.net",
24682 "dns.resp.type": "2",
24683 "dns.resp.class": "0x00000001",
24684 "dns.resp.ttl": "3074",
24685 "dns.resp.len": "6",
24686 "dns.ns": "a0b.akamaiedge.net"
24688 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
24689 "dns.resp.name": "b.akamaiedge.net",
24690 "dns.resp.type": "2",
24691 "dns.resp.class": "0x00000001",
24692 "dns.resp.ttl": "3074",
24693 "dns.resp.len": "6",
24694 "dns.ns": "n7b.akamaiedge.net"
24696 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
24697 "dns.resp.name": "b.akamaiedge.net",
24698 "dns.resp.type": "2",
24699 "dns.resp.class": "0x00000001",
24700 "dns.resp.ttl": "3074",
24701 "dns.resp.len": "6",
24702 "dns.ns": "n5b.akamaiedge.net"
24704 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
24705 "dns.resp.name": "b.akamaiedge.net",
24706 "dns.resp.type": "2",
24707 "dns.resp.class": "0x00000001",
24708 "dns.resp.ttl": "3074",
24709 "dns.resp.len": "6",
24710 "dns.ns": "n4b.akamaiedge.net"
24712 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
24713 "dns.resp.name": "b.akamaiedge.net",
24714 "dns.resp.type": "2",
24715 "dns.resp.class": "0x00000001",
24716 "dns.resp.ttl": "3074",
24717 "dns.resp.len": "6",
24718 "dns.ns": "n2b.akamaiedge.net"
24720 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
24721 "dns.resp.name": "b.akamaiedge.net",
24722 "dns.resp.type": "2",
24723 "dns.resp.class": "0x00000001",
24724 "dns.resp.ttl": "3074",
24725 "dns.resp.len": "6",
24726 "dns.ns": "n0b.akamaiedge.net"
24728 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
24729 "dns.resp.name": "b.akamaiedge.net",
24730 "dns.resp.type": "2",
24731 "dns.resp.class": "0x00000001",
24732 "dns.resp.ttl": "3074",
24733 "dns.resp.len": "6",
24734 "dns.ns": "n1b.akamaiedge.net"
24736 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
24737 "dns.resp.name": "b.akamaiedge.net",
24738 "dns.resp.type": "2",
24739 "dns.resp.class": "0x00000001",
24740 "dns.resp.ttl": "3074",
24741 "dns.resp.len": "6",
24742 "dns.ns": "n6b.akamaiedge.net"
24745 "Additional records": {
24746 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
24747 "dns.resp.name": "n0b.akamaiedge.net",
24748 "dns.resp.type": "1",
24749 "dns.resp.class": "0x00000001",
24750 "dns.resp.ttl": "2603",
24751 "dns.resp.len": "4",
24752 "dns.a": "88.221.81.192"
24754 "n1b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
24755 "dns.resp.name": "n1b.akamaiedge.net",
24756 "dns.resp.type": "1",
24757 "dns.resp.class": "0x00000001",
24758 "dns.resp.ttl": "7144",
24759 "dns.resp.len": "4",
24760 "dns.a": "204.2.166.154"
24762 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.94": {
24763 "dns.resp.name": "n2b.akamaiedge.net",
24764 "dns.resp.type": "1",
24765 "dns.resp.class": "0x00000001",
24766 "dns.resp.ttl": "1916",
24767 "dns.resp.len": "4",
24768 "dns.a": "165.254.16.94"
24770 "n3b.akamaiedge.net: type A, class IN, addr 23.67.56.213": {
24771 "dns.resp.name": "n3b.akamaiedge.net",
24772 "dns.resp.type": "1",
24773 "dns.resp.class": "0x00000001",
24774 "dns.resp.ttl": "1982",
24775 "dns.resp.len": "4",
24776 "dns.a": "23.67.56.213"
24778 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
24779 "dns.resp.name": "n4b.akamaiedge.net",
24780 "dns.resp.type": "1",
24781 "dns.resp.class": "0x00000001",
24782 "dns.resp.ttl": "4391",
24783 "dns.resp.len": "4",
24784 "dns.a": "96.17.70.175"
24786 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
24787 "dns.resp.name": "n5b.akamaiedge.net",
24788 "dns.resp.type": "1",
24789 "dns.resp.class": "0x00000001",
24790 "dns.resp.ttl": "6944",
24791 "dns.resp.len": "4",
24792 "dns.a": "204.2.166.150"
24794 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
24795 "dns.resp.name": "n6b.akamaiedge.net",
24796 "dns.resp.type": "1",
24797 "dns.resp.class": "0x00000001",
24798 "dns.resp.ttl": "2526",
24799 "dns.resp.len": "4",
24800 "dns.a": "96.17.70.177"
24802 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.243": {
24803 "dns.resp.name": "n7b.akamaiedge.net",
24804 "dns.resp.type": "1",
24805 "dns.resp.class": "0x00000001",
24806 "dns.resp.ttl": "2629",
24807 "dns.resp.len": "4",
24808 "dns.a": "165.254.134.243"
24810 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
24811 "dns.resp.name": "a0b.akamaiedge.net",
24812 "dns.resp.type": "28",
24813 "dns.resp.class": "0x00000001",
24814 "dns.resp.ttl": "74",
24815 "dns.resp.len": "16",
24816 "dns.aaaa": "2600:1480:e800::c0"
24825 "_index": "packets-2017-10-26",
24826 "_type": "pcap_file",
24831 "frame.encap_type": "1",
24832 "frame.time": "Oct 20, 2017 02:07:52.881831000 PDT",
24833 "frame.offset_shift": "0.000000000",
24834 "frame.time_epoch": "1508490472.881831000",
24835 "frame.time_delta": "1.602333000",
24836 "frame.time_delta_displayed": "900.006028000",
24837 "frame.time_relative": "32760.476627000",
24838 "frame.number": "31269",
24840 "frame.cap_len": "76",
24841 "frame.marked": "0",
24842 "frame.ignored": "0",
24843 "frame.protocols": "eth:ethertype:ip:udp:dns",
24844 "frame.coloring_rule.name": "UDP",
24845 "frame.coloring_rule.string": "udp"
24848 "eth.dst": "b0:b9:8a:73:69:8e",
24850 "eth.dst_resolved": "Netgear_73:69:8e",
24851 "eth.addr": "b0:b9:8a:73:69:8e",
24852 "eth.addr_resolved": "Netgear_73:69:8e",
24856 "eth.src": "00:17:88:69:ee:e4",
24858 "eth.src_resolved": "PhilipsL_69:ee:e4",
24859 "eth.addr": "00:17:88:69:ee:e4",
24860 "eth.addr_resolved": "PhilipsL_69:ee:e4",
24864 "eth.type": "0x00000800"
24868 "ip.hdr_len": "20",
24869 "ip.dsfield": "0x00000000",
24870 "ip.dsfield_tree": {
24871 "ip.dsfield.dscp": "0",
24872 "ip.dsfield.ecn": "0"
24875 "ip.id": "0x0000ce88",
24876 "ip.flags": "0x00000002",
24878 "ip.flags.rb": "0",
24879 "ip.flags.df": "1",
24882 "ip.frag_offset": "0",
24885 "ip.checksum": "0x0000ea34",
24886 "ip.checksum.status": "2",
24887 "ip.src": "192.168.0.160",
24888 "ip.addr": "192.168.0.160",
24889 "ip.src_host": "192.168.0.160",
24890 "ip.host": "192.168.0.160",
24891 "ip.dst": "192.168.0.1",
24892 "ip.addr": "192.168.0.1",
24893 "ip.dst_host": "192.168.0.1",
24894 "ip.host": "192.168.0.1",
24895 "Source GeoIP: Unknown": "",
24896 "Destination GeoIP: Unknown": ""
24899 "udp.srcport": "38554",
24900 "udp.dstport": "53",
24901 "udp.port": "38554",
24903 "udp.length": "42",
24904 "udp.checksum": "0x0000c24d",
24905 "udp.checksum.status": "2",
24906 "udp.stream": "343"
24909 "dns.response_in": "31270",
24910 "dns.id": "0x000004d0",
24911 "dns.flags": "0x00000100",
24912 "dns.flags_tree": {
24913 "dns.flags.response": "0",
24914 "dns.flags.opcode": "0",
24915 "dns.flags.truncated": "0",
24916 "dns.flags.recdesired": "1",
24917 "dns.flags.z": "0",
24918 "dns.flags.checkdisable": "0"
24920 "dns.count.queries": "1",
24921 "dns.count.answers": "0",
24922 "dns.count.auth_rr": "0",
24923 "dns.count.add_rr": "0",
24925 "www2.meethue.com: type A, class IN": {
24926 "dns.qry.name": "www2.meethue.com",
24927 "dns.qry.name.len": "16",
24928 "dns.count.labels": "3",
24929 "dns.qry.type": "1",
24930 "dns.qry.class": "0x00000001"
24939 "_index": "packets-2017-10-26",
24940 "_type": "pcap_file",
24945 "frame.encap_type": "1",
24946 "frame.time": "Oct 20, 2017 02:07:52.891762000 PDT",
24947 "frame.offset_shift": "0.000000000",
24948 "frame.time_epoch": "1508490472.891762000",
24949 "frame.time_delta": "0.009931000",
24950 "frame.time_delta_displayed": "0.009931000",
24951 "frame.time_relative": "32760.486558000",
24952 "frame.number": "31270",
24953 "frame.len": "513",
24954 "frame.cap_len": "513",
24955 "frame.marked": "0",
24956 "frame.ignored": "0",
24957 "frame.protocols": "eth:ethertype:ip:udp:dns",
24958 "frame.coloring_rule.name": "UDP",
24959 "frame.coloring_rule.string": "udp"
24962 "eth.dst": "00:17:88:69:ee:e4",
24964 "eth.dst_resolved": "PhilipsL_69:ee:e4",
24965 "eth.addr": "00:17:88:69:ee:e4",
24966 "eth.addr_resolved": "PhilipsL_69:ee:e4",
24970 "eth.src": "b0:b9:8a:73:69:8e",
24972 "eth.src_resolved": "Netgear_73:69:8e",
24973 "eth.addr": "b0:b9:8a:73:69:8e",
24974 "eth.addr_resolved": "Netgear_73:69:8e",
24978 "eth.type": "0x00000800"
24982 "ip.hdr_len": "20",
24983 "ip.dsfield": "0x00000000",
24984 "ip.dsfield_tree": {
24985 "ip.dsfield.dscp": "0",
24986 "ip.dsfield.ecn": "0"
24989 "ip.id": "0x00000e5c",
24990 "ip.flags": "0x00000002",
24992 "ip.flags.rb": "0",
24993 "ip.flags.df": "1",
24996 "ip.frag_offset": "0",
24999 "ip.checksum": "0x0000a8ac",
25000 "ip.checksum.status": "2",
25001 "ip.src": "192.168.0.1",
25002 "ip.addr": "192.168.0.1",
25003 "ip.src_host": "192.168.0.1",
25004 "ip.host": "192.168.0.1",
25005 "ip.dst": "192.168.0.160",
25006 "ip.addr": "192.168.0.160",
25007 "ip.dst_host": "192.168.0.160",
25008 "ip.host": "192.168.0.160",
25009 "Source GeoIP: Unknown": "",
25010 "Destination GeoIP: Unknown": ""
25013 "udp.srcport": "53",
25014 "udp.dstport": "38554",
25016 "udp.port": "38554",
25017 "udp.length": "479",
25018 "udp.checksum": "0x000083e2",
25019 "udp.checksum.status": "2",
25020 "udp.stream": "343"
25023 "dns.response_to": "31269",
25024 "dns.time": "0.009931000",
25025 "dns.id": "0x000004d0",
25026 "dns.flags": "0x00008180",
25027 "dns.flags_tree": {
25028 "dns.flags.response": "1",
25029 "dns.flags.opcode": "0",
25030 "dns.flags.authoritative": "0",
25031 "dns.flags.truncated": "0",
25032 "dns.flags.recdesired": "1",
25033 "dns.flags.recavail": "1",
25034 "dns.flags.z": "0",
25035 "dns.flags.authenticated": "0",
25036 "dns.flags.checkdisable": "0",
25037 "dns.flags.rcode": "0"
25039 "dns.count.queries": "1",
25040 "dns.count.answers": "4",
25041 "dns.count.auth_rr": "9",
25042 "dns.count.add_rr": "9",
25044 "www2.meethue.com: type A, class IN": {
25045 "dns.qry.name": "www2.meethue.com",
25046 "dns.qry.name.len": "16",
25047 "dns.count.labels": "3",
25048 "dns.qry.type": "1",
25049 "dns.qry.class": "0x00000001"
25053 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
25054 "dns.resp.name": "www2.meethue.com",
25055 "dns.resp.type": "5",
25056 "dns.resp.class": "0x00000001",
25057 "dns.resp.ttl": "144",
25058 "dns.resp.len": "41",
25059 "dns.cname": "brands.lighting.philips.com.edgekey.net"
25061 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
25062 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
25063 "dns.resp.type": "5",
25064 "dns.resp.class": "0x00000001",
25065 "dns.resp.ttl": "4158",
25066 "dns.resp.len": "22",
25067 "dns.cname": "e15361.b.akamaiedge.net"
25069 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
25070 "dns.resp.name": "e15361.b.akamaiedge.net",
25071 "dns.resp.type": "1",
25072 "dns.resp.class": "0x00000001",
25073 "dns.resp.ttl": "20",
25074 "dns.resp.len": "4",
25075 "dns.a": "184.84.242.42"
25077 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
25078 "dns.resp.name": "e15361.b.akamaiedge.net",
25079 "dns.resp.type": "1",
25080 "dns.resp.class": "0x00000001",
25081 "dns.resp.ttl": "20",
25082 "dns.resp.len": "4",
25083 "dns.a": "184.84.242.27"
25086 "Authoritative nameservers": {
25087 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
25088 "dns.resp.name": "b.akamaiedge.net",
25089 "dns.resp.type": "2",
25090 "dns.resp.class": "0x00000001",
25091 "dns.resp.ttl": "2174",
25092 "dns.resp.len": "6",
25093 "dns.ns": "a0b.akamaiedge.net"
25095 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
25096 "dns.resp.name": "b.akamaiedge.net",
25097 "dns.resp.type": "2",
25098 "dns.resp.class": "0x00000001",
25099 "dns.resp.ttl": "2174",
25100 "dns.resp.len": "6",
25101 "dns.ns": "n0b.akamaiedge.net"
25103 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
25104 "dns.resp.name": "b.akamaiedge.net",
25105 "dns.resp.type": "2",
25106 "dns.resp.class": "0x00000001",
25107 "dns.resp.ttl": "2174",
25108 "dns.resp.len": "6",
25109 "dns.ns": "n4b.akamaiedge.net"
25111 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
25112 "dns.resp.name": "b.akamaiedge.net",
25113 "dns.resp.type": "2",
25114 "dns.resp.class": "0x00000001",
25115 "dns.resp.ttl": "2174",
25116 "dns.resp.len": "6",
25117 "dns.ns": "n6b.akamaiedge.net"
25119 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
25120 "dns.resp.name": "b.akamaiedge.net",
25121 "dns.resp.type": "2",
25122 "dns.resp.class": "0x00000001",
25123 "dns.resp.ttl": "2174",
25124 "dns.resp.len": "6",
25125 "dns.ns": "n5b.akamaiedge.net"
25127 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
25128 "dns.resp.name": "b.akamaiedge.net",
25129 "dns.resp.type": "2",
25130 "dns.resp.class": "0x00000001",
25131 "dns.resp.ttl": "2174",
25132 "dns.resp.len": "6",
25133 "dns.ns": "n1b.akamaiedge.net"
25135 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
25136 "dns.resp.name": "b.akamaiedge.net",
25137 "dns.resp.type": "2",
25138 "dns.resp.class": "0x00000001",
25139 "dns.resp.ttl": "2174",
25140 "dns.resp.len": "6",
25141 "dns.ns": "n7b.akamaiedge.net"
25143 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
25144 "dns.resp.name": "b.akamaiedge.net",
25145 "dns.resp.type": "2",
25146 "dns.resp.class": "0x00000001",
25147 "dns.resp.ttl": "2174",
25148 "dns.resp.len": "6",
25149 "dns.ns": "n2b.akamaiedge.net"
25151 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
25152 "dns.resp.name": "b.akamaiedge.net",
25153 "dns.resp.type": "2",
25154 "dns.resp.class": "0x00000001",
25155 "dns.resp.ttl": "2174",
25156 "dns.resp.len": "6",
25157 "dns.ns": "n3b.akamaiedge.net"
25160 "Additional records": {
25161 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
25162 "dns.resp.name": "n0b.akamaiedge.net",
25163 "dns.resp.type": "1",
25164 "dns.resp.class": "0x00000001",
25165 "dns.resp.ttl": "1703",
25166 "dns.resp.len": "4",
25167 "dns.a": "88.221.81.192"
25169 "n1b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
25170 "dns.resp.name": "n1b.akamaiedge.net",
25171 "dns.resp.type": "1",
25172 "dns.resp.class": "0x00000001",
25173 "dns.resp.ttl": "6244",
25174 "dns.resp.len": "4",
25175 "dns.a": "204.2.166.154"
25177 "n2b.akamaiedge.net: type A, class IN, addr 165.254.16.94": {
25178 "dns.resp.name": "n2b.akamaiedge.net",
25179 "dns.resp.type": "1",
25180 "dns.resp.class": "0x00000001",
25181 "dns.resp.ttl": "1016",
25182 "dns.resp.len": "4",
25183 "dns.a": "165.254.16.94"
25185 "n3b.akamaiedge.net: type A, class IN, addr 23.67.56.213": {
25186 "dns.resp.name": "n3b.akamaiedge.net",
25187 "dns.resp.type": "1",
25188 "dns.resp.class": "0x00000001",
25189 "dns.resp.ttl": "1082",
25190 "dns.resp.len": "4",
25191 "dns.a": "23.67.56.213"
25193 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
25194 "dns.resp.name": "n4b.akamaiedge.net",
25195 "dns.resp.type": "1",
25196 "dns.resp.class": "0x00000001",
25197 "dns.resp.ttl": "3491",
25198 "dns.resp.len": "4",
25199 "dns.a": "96.17.70.175"
25201 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
25202 "dns.resp.name": "n5b.akamaiedge.net",
25203 "dns.resp.type": "1",
25204 "dns.resp.class": "0x00000001",
25205 "dns.resp.ttl": "6044",
25206 "dns.resp.len": "4",
25207 "dns.a": "204.2.166.150"
25209 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.177": {
25210 "dns.resp.name": "n6b.akamaiedge.net",
25211 "dns.resp.type": "1",
25212 "dns.resp.class": "0x00000001",
25213 "dns.resp.ttl": "1626",
25214 "dns.resp.len": "4",
25215 "dns.a": "96.17.70.177"
25217 "n7b.akamaiedge.net: type A, class IN, addr 165.254.134.243": {
25218 "dns.resp.name": "n7b.akamaiedge.net",
25219 "dns.resp.type": "1",
25220 "dns.resp.class": "0x00000001",
25221 "dns.resp.ttl": "1729",
25222 "dns.resp.len": "4",
25223 "dns.a": "165.254.134.243"
25225 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
25226 "dns.resp.name": "a0b.akamaiedge.net",
25227 "dns.resp.type": "28",
25228 "dns.resp.class": "0x00000001",
25229 "dns.resp.ttl": "5177",
25230 "dns.resp.len": "16",
25231 "dns.aaaa": "2600:1480:e800::c0"
25240 "_index": "packets-2017-10-26",
25241 "_type": "pcap_file",
25246 "frame.encap_type": "1",
25247 "frame.time": "Oct 20, 2017 02:22:52.901114000 PDT",
25248 "frame.offset_shift": "0.000000000",
25249 "frame.time_epoch": "1508491372.901114000",
25250 "frame.time_delta": "1.849865000",
25251 "frame.time_delta_displayed": "900.009352000",
25252 "frame.time_relative": "33660.495910000",
25253 "frame.number": "32056",
25255 "frame.cap_len": "76",
25256 "frame.marked": "0",
25257 "frame.ignored": "0",
25258 "frame.protocols": "eth:ethertype:ip:udp:dns",
25259 "frame.coloring_rule.name": "UDP",
25260 "frame.coloring_rule.string": "udp"
25263 "eth.dst": "b0:b9:8a:73:69:8e",
25265 "eth.dst_resolved": "Netgear_73:69:8e",
25266 "eth.addr": "b0:b9:8a:73:69:8e",
25267 "eth.addr_resolved": "Netgear_73:69:8e",
25271 "eth.src": "00:17:88:69:ee:e4",
25273 "eth.src_resolved": "PhilipsL_69:ee:e4",
25274 "eth.addr": "00:17:88:69:ee:e4",
25275 "eth.addr_resolved": "PhilipsL_69:ee:e4",
25279 "eth.type": "0x00000800"
25283 "ip.hdr_len": "20",
25284 "ip.dsfield": "0x00000000",
25285 "ip.dsfield_tree": {
25286 "ip.dsfield.dscp": "0",
25287 "ip.dsfield.ecn": "0"
25290 "ip.id": "0x00004594",
25291 "ip.flags": "0x00000002",
25293 "ip.flags.rb": "0",
25294 "ip.flags.df": "1",
25297 "ip.frag_offset": "0",
25300 "ip.checksum": "0x00007329",
25301 "ip.checksum.status": "2",
25302 "ip.src": "192.168.0.160",
25303 "ip.addr": "192.168.0.160",
25304 "ip.src_host": "192.168.0.160",
25305 "ip.host": "192.168.0.160",
25306 "ip.dst": "192.168.0.1",
25307 "ip.addr": "192.168.0.1",
25308 "ip.dst_host": "192.168.0.1",
25309 "ip.host": "192.168.0.1",
25310 "Source GeoIP: Unknown": "",
25311 "Destination GeoIP: Unknown": ""
25314 "udp.srcport": "33202",
25315 "udp.dstport": "53",
25316 "udp.port": "33202",
25318 "udp.length": "42",
25319 "udp.checksum": "0x0000d734",
25320 "udp.checksum.status": "2",
25321 "udp.stream": "348"
25324 "dns.response_in": "32057",
25325 "dns.id": "0x000004d1",
25326 "dns.flags": "0x00000100",
25327 "dns.flags_tree": {
25328 "dns.flags.response": "0",
25329 "dns.flags.opcode": "0",
25330 "dns.flags.truncated": "0",
25331 "dns.flags.recdesired": "1",
25332 "dns.flags.z": "0",
25333 "dns.flags.checkdisable": "0"
25335 "dns.count.queries": "1",
25336 "dns.count.answers": "0",
25337 "dns.count.auth_rr": "0",
25338 "dns.count.add_rr": "0",
25340 "www2.meethue.com: type A, class IN": {
25341 "dns.qry.name": "www2.meethue.com",
25342 "dns.qry.name.len": "16",
25343 "dns.count.labels": "3",
25344 "dns.qry.type": "1",
25345 "dns.qry.class": "0x00000001"
25354 "_index": "packets-2017-10-26",
25355 "_type": "pcap_file",
25360 "frame.encap_type": "1",
25361 "frame.time": "Oct 20, 2017 02:22:52.972380000 PDT",
25362 "frame.offset_shift": "0.000000000",
25363 "frame.time_epoch": "1508491372.972380000",
25364 "frame.time_delta": "0.071266000",
25365 "frame.time_delta_displayed": "0.071266000",
25366 "frame.time_relative": "33660.567176000",
25367 "frame.number": "32057",
25368 "frame.len": "513",
25369 "frame.cap_len": "513",
25370 "frame.marked": "0",
25371 "frame.ignored": "0",
25372 "frame.protocols": "eth:ethertype:ip:udp:dns",
25373 "frame.coloring_rule.name": "UDP",
25374 "frame.coloring_rule.string": "udp"
25377 "eth.dst": "00:17:88:69:ee:e4",
25379 "eth.dst_resolved": "PhilipsL_69:ee:e4",
25380 "eth.addr": "00:17:88:69:ee:e4",
25381 "eth.addr_resolved": "PhilipsL_69:ee:e4",
25385 "eth.src": "b0:b9:8a:73:69:8e",
25387 "eth.src_resolved": "Netgear_73:69:8e",
25388 "eth.addr": "b0:b9:8a:73:69:8e",
25389 "eth.addr_resolved": "Netgear_73:69:8e",
25393 "eth.type": "0x00000800"
25397 "ip.hdr_len": "20",
25398 "ip.dsfield": "0x00000000",
25399 "ip.dsfield_tree": {
25400 "ip.dsfield.dscp": "0",
25401 "ip.dsfield.ecn": "0"
25404 "ip.id": "0x00002997",
25405 "ip.flags": "0x00000002",
25407 "ip.flags.rb": "0",
25408 "ip.flags.df": "1",
25411 "ip.frag_offset": "0",
25414 "ip.checksum": "0x00008d71",
25415 "ip.checksum.status": "2",
25416 "ip.src": "192.168.0.1",
25417 "ip.addr": "192.168.0.1",
25418 "ip.src_host": "192.168.0.1",
25419 "ip.host": "192.168.0.1",
25420 "ip.dst": "192.168.0.160",
25421 "ip.addr": "192.168.0.160",
25422 "ip.dst_host": "192.168.0.160",
25423 "ip.host": "192.168.0.160",
25424 "Source GeoIP: Unknown": "",
25425 "Destination GeoIP: Unknown": ""
25428 "udp.srcport": "53",
25429 "udp.dstport": "33202",
25431 "udp.port": "33202",
25432 "udp.length": "479",
25433 "udp.checksum": "0x000083e2",
25434 "udp.checksum.status": "2",
25435 "udp.stream": "348"
25438 "dns.response_to": "32056",
25439 "dns.time": "0.071266000",
25440 "dns.id": "0x000004d1",
25441 "dns.flags": "0x00008180",
25442 "dns.flags_tree": {
25443 "dns.flags.response": "1",
25444 "dns.flags.opcode": "0",
25445 "dns.flags.authoritative": "0",
25446 "dns.flags.truncated": "0",
25447 "dns.flags.recdesired": "1",
25448 "dns.flags.recavail": "1",
25449 "dns.flags.z": "0",
25450 "dns.flags.authenticated": "0",
25451 "dns.flags.checkdisable": "0",
25452 "dns.flags.rcode": "0"
25454 "dns.count.queries": "1",
25455 "dns.count.answers": "4",
25456 "dns.count.auth_rr": "9",
25457 "dns.count.add_rr": "9",
25459 "www2.meethue.com: type A, class IN": {
25460 "dns.qry.name": "www2.meethue.com",
25461 "dns.qry.name.len": "16",
25462 "dns.count.labels": "3",
25463 "dns.qry.type": "1",
25464 "dns.qry.class": "0x00000001"
25468 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
25469 "dns.resp.name": "www2.meethue.com",
25470 "dns.resp.type": "5",
25471 "dns.resp.class": "0x00000001",
25472 "dns.resp.ttl": "120",
25473 "dns.resp.len": "41",
25474 "dns.cname": "brands.lighting.philips.com.edgekey.net"
25476 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
25477 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
25478 "dns.resp.type": "5",
25479 "dns.resp.class": "0x00000001",
25480 "dns.resp.ttl": "1617",
25481 "dns.resp.len": "22",
25482 "dns.cname": "e15361.b.akamaiedge.net"
25484 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
25485 "dns.resp.name": "e15361.b.akamaiedge.net",
25486 "dns.resp.type": "1",
25487 "dns.resp.class": "0x00000001",
25488 "dns.resp.ttl": "20",
25489 "dns.resp.len": "4",
25490 "dns.a": "184.84.242.27"
25492 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
25493 "dns.resp.name": "e15361.b.akamaiedge.net",
25494 "dns.resp.type": "1",
25495 "dns.resp.class": "0x00000001",
25496 "dns.resp.ttl": "20",
25497 "dns.resp.len": "4",
25498 "dns.a": "184.84.242.42"
25501 "Authoritative nameservers": {
25502 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
25503 "dns.resp.name": "b.akamaiedge.net",
25504 "dns.resp.type": "2",
25505 "dns.resp.class": "0x00000001",
25506 "dns.resp.ttl": "1191",
25507 "dns.resp.len": "6",
25508 "dns.ns": "n2b.akamaiedge.net"
25510 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
25511 "dns.resp.name": "b.akamaiedge.net",
25512 "dns.resp.type": "2",
25513 "dns.resp.class": "0x00000001",
25514 "dns.resp.ttl": "1191",
25515 "dns.resp.len": "6",
25516 "dns.ns": "n3b.akamaiedge.net"
25518 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
25519 "dns.resp.name": "b.akamaiedge.net",
25520 "dns.resp.type": "2",
25521 "dns.resp.class": "0x00000001",
25522 "dns.resp.ttl": "1191",
25523 "dns.resp.len": "6",
25524 "dns.ns": "n1b.akamaiedge.net"
25526 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
25527 "dns.resp.name": "b.akamaiedge.net",
25528 "dns.resp.type": "2",
25529 "dns.resp.class": "0x00000001",
25530 "dns.resp.ttl": "1191",
25531 "dns.resp.len": "6",
25532 "dns.ns": "n6b.akamaiedge.net"
25534 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
25535 "dns.resp.name": "b.akamaiedge.net",
25536 "dns.resp.type": "2",
25537 "dns.resp.class": "0x00000001",
25538 "dns.resp.ttl": "1191",
25539 "dns.resp.len": "6",
25540 "dns.ns": "n5b.akamaiedge.net"
25542 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
25543 "dns.resp.name": "b.akamaiedge.net",
25544 "dns.resp.type": "2",
25545 "dns.resp.class": "0x00000001",
25546 "dns.resp.ttl": "1191",
25547 "dns.resp.len": "6",
25548 "dns.ns": "n7b.akamaiedge.net"
25550 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
25551 "dns.resp.name": "b.akamaiedge.net",
25552 "dns.resp.type": "2",
25553 "dns.resp.class": "0x00000001",
25554 "dns.resp.ttl": "1191",
25555 "dns.resp.len": "6",
25556 "dns.ns": "n4b.akamaiedge.net"
25558 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
25559 "dns.resp.name": "b.akamaiedge.net",
25560 "dns.resp.type": "2",
25561 "dns.resp.class": "0x00000001",
25562 "dns.resp.ttl": "1191",
25563 "dns.resp.len": "6",
25564 "dns.ns": "n0b.akamaiedge.net"
25566 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
25567 "dns.resp.name": "b.akamaiedge.net",
25568 "dns.resp.type": "2",
25569 "dns.resp.class": "0x00000001",
25570 "dns.resp.ttl": "1191",
25571 "dns.resp.len": "6",
25572 "dns.ns": "a0b.akamaiedge.net"
25575 "Additional records": {
25576 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
25577 "dns.resp.name": "n0b.akamaiedge.net",
25578 "dns.resp.type": "1",
25579 "dns.resp.class": "0x00000001",
25580 "dns.resp.ttl": "2514",
25581 "dns.resp.len": "4",
25582 "dns.a": "88.221.81.192"
25584 "n1b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
25585 "dns.resp.name": "n1b.akamaiedge.net",
25586 "dns.resp.type": "1",
25587 "dns.resp.class": "0x00000001",
25588 "dns.resp.ttl": "1218",
25589 "dns.resp.len": "4",
25590 "dns.a": "204.1.137.41"
25592 "n2b.akamaiedge.net: type A, class IN, addr 204.2.166.155": {
25593 "dns.resp.name": "n2b.akamaiedge.net",
25594 "dns.resp.type": "1",
25595 "dns.resp.class": "0x00000001",
25596 "dns.resp.ttl": "1726",
25597 "dns.resp.len": "4",
25598 "dns.a": "204.2.166.155"
25600 "n3b.akamaiedge.net: type A, class IN, addr 204.2.166.155": {
25601 "dns.resp.name": "n3b.akamaiedge.net",
25602 "dns.resp.type": "1",
25603 "dns.resp.class": "0x00000001",
25604 "dns.resp.ttl": "1922",
25605 "dns.resp.len": "4",
25606 "dns.a": "204.2.166.155"
25608 "n4b.akamaiedge.net: type A, class IN, addr 204.2.166.151": {
25609 "dns.resp.name": "n4b.akamaiedge.net",
25610 "dns.resp.type": "1",
25611 "dns.resp.class": "0x00000001",
25612 "dns.resp.ttl": "4820",
25613 "dns.resp.len": "4",
25614 "dns.a": "204.2.166.151"
25616 "n5b.akamaiedge.net: type A, class IN, addr 23.67.56.215": {
25617 "dns.resp.name": "n5b.akamaiedge.net",
25618 "dns.resp.type": "1",
25619 "dns.resp.class": "0x00000001",
25620 "dns.resp.ttl": "2567",
25621 "dns.resp.len": "4",
25622 "dns.a": "23.67.56.215"
25624 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.151": {
25625 "dns.resp.name": "n6b.akamaiedge.net",
25626 "dns.resp.type": "1",
25627 "dns.resp.class": "0x00000001",
25628 "dns.resp.ttl": "2380",
25629 "dns.resp.len": "4",
25630 "dns.a": "204.2.166.151"
25632 "n7b.akamaiedge.net: type A, class IN, addr 204.2.166.155": {
25633 "dns.resp.name": "n7b.akamaiedge.net",
25634 "dns.resp.type": "1",
25635 "dns.resp.class": "0x00000001",
25636 "dns.resp.ttl": "425",
25637 "dns.resp.len": "4",
25638 "dns.a": "204.2.166.155"
25640 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
25641 "dns.resp.name": "a0b.akamaiedge.net",
25642 "dns.resp.type": "28",
25643 "dns.resp.class": "0x00000001",
25644 "dns.resp.ttl": "202",
25645 "dns.resp.len": "16",
25646 "dns.aaaa": "2600:1480:e800::c0"
25655 "_index": "packets-2017-10-26",
25656 "_type": "pcap_file",
25661 "frame.encap_type": "1",
25662 "frame.time": "Oct 20, 2017 02:33:22.349285000 PDT",
25663 "frame.offset_shift": "0.000000000",
25664 "frame.time_epoch": "1508492002.349285000",
25665 "frame.time_delta": "0.837648000",
25666 "frame.time_delta_displayed": "629.376905000",
25667 "frame.time_relative": "34289.944081000",
25668 "frame.number": "32626",
25670 "frame.cap_len": "79",
25671 "frame.marked": "0",
25672 "frame.ignored": "0",
25673 "frame.protocols": "eth:ethertype:ip:udp:dns",
25674 "frame.coloring_rule.name": "UDP",
25675 "frame.coloring_rule.string": "udp"
25678 "eth.dst": "b0:b9:8a:73:69:8e",
25680 "eth.dst_resolved": "Netgear_73:69:8e",
25681 "eth.addr": "b0:b9:8a:73:69:8e",
25682 "eth.addr_resolved": "Netgear_73:69:8e",
25686 "eth.src": "00:17:88:69:ee:e4",
25688 "eth.src_resolved": "PhilipsL_69:ee:e4",
25689 "eth.addr": "00:17:88:69:ee:e4",
25690 "eth.addr_resolved": "PhilipsL_69:ee:e4",
25694 "eth.type": "0x00000800"
25698 "ip.hdr_len": "20",
25699 "ip.dsfield": "0x00000000",
25700 "ip.dsfield_tree": {
25701 "ip.dsfield.dscp": "0",
25702 "ip.dsfield.ecn": "0"
25705 "ip.id": "0x0000f99e",
25706 "ip.flags": "0x00000002",
25708 "ip.flags.rb": "0",
25709 "ip.flags.df": "1",
25712 "ip.frag_offset": "0",
25715 "ip.checksum": "0x0000bf1b",
25716 "ip.checksum.status": "2",
25717 "ip.src": "192.168.0.160",
25718 "ip.addr": "192.168.0.160",
25719 "ip.src_host": "192.168.0.160",
25720 "ip.host": "192.168.0.160",
25721 "ip.dst": "192.168.0.1",
25722 "ip.addr": "192.168.0.1",
25723 "ip.dst_host": "192.168.0.1",
25724 "ip.host": "192.168.0.1",
25725 "Source GeoIP: Unknown": "",
25726 "Destination GeoIP: Unknown": ""
25729 "udp.srcport": "52881",
25730 "udp.dstport": "53",
25731 "udp.port": "52881",
25733 "udp.length": "45",
25734 "udp.checksum": "0x0000f1d9",
25735 "udp.checksum.status": "2",
25736 "udp.stream": "352"
25739 "dns.response_in": "32627",
25740 "dns.id": "0x000004d2",
25741 "dns.flags": "0x00000100",
25742 "dns.flags_tree": {
25743 "dns.flags.response": "0",
25744 "dns.flags.opcode": "0",
25745 "dns.flags.truncated": "0",
25746 "dns.flags.recdesired": "1",
25747 "dns.flags.z": "0",
25748 "dns.flags.checkdisable": "0"
25750 "dns.count.queries": "1",
25751 "dns.count.answers": "0",
25752 "dns.count.auth_rr": "0",
25753 "dns.count.add_rr": "0",
25755 "dcp.cpp.philips.com: type AAAA, class IN": {
25756 "dns.qry.name": "dcp.cpp.philips.com",
25757 "dns.qry.name.len": "19",
25758 "dns.count.labels": "4",
25759 "dns.qry.type": "28",
25760 "dns.qry.class": "0x00000001"
25769 "_index": "packets-2017-10-26",
25770 "_type": "pcap_file",
25775 "frame.encap_type": "1",
25776 "frame.time": "Oct 20, 2017 02:33:22.351230000 PDT",
25777 "frame.offset_shift": "0.000000000",
25778 "frame.time_epoch": "1508492002.351230000",
25779 "frame.time_delta": "0.001945000",
25780 "frame.time_delta_displayed": "0.001945000",
25781 "frame.time_relative": "34289.946026000",
25782 "frame.number": "32627",
25783 "frame.len": "137",
25784 "frame.cap_len": "137",
25785 "frame.marked": "0",
25786 "frame.ignored": "0",
25787 "frame.protocols": "eth:ethertype:ip:udp:dns",
25788 "frame.coloring_rule.name": "UDP",
25789 "frame.coloring_rule.string": "udp"
25792 "eth.dst": "00:17:88:69:ee:e4",
25794 "eth.dst_resolved": "PhilipsL_69:ee:e4",
25795 "eth.addr": "00:17:88:69:ee:e4",
25796 "eth.addr_resolved": "PhilipsL_69:ee:e4",
25800 "eth.src": "b0:b9:8a:73:69:8e",
25802 "eth.src_resolved": "Netgear_73:69:8e",
25803 "eth.addr": "b0:b9:8a:73:69:8e",
25804 "eth.addr_resolved": "Netgear_73:69:8e",
25808 "eth.type": "0x00000800"
25812 "ip.hdr_len": "20",
25813 "ip.dsfield": "0x00000000",
25814 "ip.dsfield_tree": {
25815 "ip.dsfield.dscp": "0",
25816 "ip.dsfield.ecn": "0"
25819 "ip.id": "0x0000ba2d",
25820 "ip.flags": "0x00000002",
25822 "ip.flags.rb": "0",
25823 "ip.flags.df": "1",
25826 "ip.frag_offset": "0",
25829 "ip.checksum": "0x0000fe52",
25830 "ip.checksum.status": "2",
25831 "ip.src": "192.168.0.1",
25832 "ip.addr": "192.168.0.1",
25833 "ip.src_host": "192.168.0.1",
25834 "ip.host": "192.168.0.1",
25835 "ip.dst": "192.168.0.160",
25836 "ip.addr": "192.168.0.160",
25837 "ip.dst_host": "192.168.0.160",
25838 "ip.host": "192.168.0.160",
25839 "Source GeoIP: Unknown": "",
25840 "Destination GeoIP: Unknown": ""
25843 "udp.srcport": "53",
25844 "udp.dstport": "52881",
25846 "udp.port": "52881",
25847 "udp.length": "103",
25848 "udp.checksum": "0x0000826a",
25849 "udp.checksum.status": "2",
25850 "udp.stream": "352"
25853 "dns.response_to": "32626",
25854 "dns.time": "0.001945000",
25855 "dns.id": "0x000004d2",
25856 "dns.flags": "0x00008180",
25857 "dns.flags_tree": {
25858 "dns.flags.response": "1",
25859 "dns.flags.opcode": "0",
25860 "dns.flags.authoritative": "0",
25861 "dns.flags.truncated": "0",
25862 "dns.flags.recdesired": "1",
25863 "dns.flags.recavail": "1",
25864 "dns.flags.z": "0",
25865 "dns.flags.authenticated": "0",
25866 "dns.flags.checkdisable": "0",
25867 "dns.flags.rcode": "0"
25869 "dns.count.queries": "1",
25870 "dns.count.answers": "0",
25871 "dns.count.auth_rr": "1",
25872 "dns.count.add_rr": "0",
25874 "dcp.cpp.philips.com: type AAAA, class IN": {
25875 "dns.qry.name": "dcp.cpp.philips.com",
25876 "dns.qry.name.len": "19",
25877 "dns.count.labels": "4",
25878 "dns.qry.type": "28",
25879 "dns.qry.class": "0x00000001"
25882 "Authoritative nameservers": {
25883 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
25884 "dns.resp.name": "cpp.philips.com",
25885 "dns.resp.type": "6",
25886 "dns.resp.class": "0x00000001",
25887 "dns.resp.ttl": "3220",
25888 "dns.resp.len": "46",
25889 "dns.soa.mname": "ns1.ext.philips.com",
25890 "dns.soa.rname": "ddi-authority.philips.com",
25891 "dns.soa.serial_number": "387",
25892 "dns.soa.refresh_interval": "1200",
25893 "dns.soa.retry_interval": "300",
25894 "dns.soa.expire_limit": "1209600",
25895 "dns.soa.mininum_ttl": "3600"
25904 "_index": "packets-2017-10-26",
25905 "_type": "pcap_file",
25910 "frame.encap_type": "1",
25911 "frame.time": "Oct 20, 2017 02:33:22.352051000 PDT",
25912 "frame.offset_shift": "0.000000000",
25913 "frame.time_epoch": "1508492002.352051000",
25914 "frame.time_delta": "0.000821000",
25915 "frame.time_delta_displayed": "0.000821000",
25916 "frame.time_relative": "34289.946847000",
25917 "frame.number": "32628",
25919 "frame.cap_len": "79",
25920 "frame.marked": "0",
25921 "frame.ignored": "0",
25922 "frame.protocols": "eth:ethertype:ip:udp:dns",
25923 "frame.coloring_rule.name": "UDP",
25924 "frame.coloring_rule.string": "udp"
25927 "eth.dst": "b0:b9:8a:73:69:8e",
25929 "eth.dst_resolved": "Netgear_73:69:8e",
25930 "eth.addr": "b0:b9:8a:73:69:8e",
25931 "eth.addr_resolved": "Netgear_73:69:8e",
25935 "eth.src": "00:17:88:69:ee:e4",
25937 "eth.src_resolved": "PhilipsL_69:ee:e4",
25938 "eth.addr": "00:17:88:69:ee:e4",
25939 "eth.addr_resolved": "PhilipsL_69:ee:e4",
25943 "eth.type": "0x00000800"
25947 "ip.hdr_len": "20",
25948 "ip.dsfield": "0x00000000",
25949 "ip.dsfield_tree": {
25950 "ip.dsfield.dscp": "0",
25951 "ip.dsfield.ecn": "0"
25954 "ip.id": "0x0000f99f",
25955 "ip.flags": "0x00000002",
25957 "ip.flags.rb": "0",
25958 "ip.flags.df": "1",
25961 "ip.frag_offset": "0",
25964 "ip.checksum": "0x0000bf1a",
25965 "ip.checksum.status": "2",
25966 "ip.src": "192.168.0.160",
25967 "ip.addr": "192.168.0.160",
25968 "ip.src_host": "192.168.0.160",
25969 "ip.host": "192.168.0.160",
25970 "ip.dst": "192.168.0.1",
25971 "ip.addr": "192.168.0.1",
25972 "ip.dst_host": "192.168.0.1",
25973 "ip.host": "192.168.0.1",
25974 "Source GeoIP: Unknown": "",
25975 "Destination GeoIP: Unknown": ""
25978 "udp.srcport": "43337",
25979 "udp.dstport": "53",
25980 "udp.port": "43337",
25982 "udp.length": "45",
25983 "udp.checksum": "0x00003221",
25984 "udp.checksum.status": "2",
25985 "udp.stream": "353"
25988 "dns.response_in": "32629",
25989 "dns.id": "0x000004d3",
25990 "dns.flags": "0x00000100",
25991 "dns.flags_tree": {
25992 "dns.flags.response": "0",
25993 "dns.flags.opcode": "0",
25994 "dns.flags.truncated": "0",
25995 "dns.flags.recdesired": "1",
25996 "dns.flags.z": "0",
25997 "dns.flags.checkdisable": "0"
25999 "dns.count.queries": "1",
26000 "dns.count.answers": "0",
26001 "dns.count.auth_rr": "0",
26002 "dns.count.add_rr": "0",
26004 "dcp.cpp.philips.com: type A, class IN": {
26005 "dns.qry.name": "dcp.cpp.philips.com",
26006 "dns.qry.name.len": "19",
26007 "dns.count.labels": "4",
26008 "dns.qry.type": "1",
26009 "dns.qry.class": "0x00000001"
26018 "_index": "packets-2017-10-26",
26019 "_type": "pcap_file",
26024 "frame.encap_type": "1",
26025 "frame.time": "Oct 20, 2017 02:33:22.392543000 PDT",
26026 "frame.offset_shift": "0.000000000",
26027 "frame.time_epoch": "1508492002.392543000",
26028 "frame.time_delta": "0.040492000",
26029 "frame.time_delta_displayed": "0.040492000",
26030 "frame.time_relative": "34289.987339000",
26031 "frame.number": "32629",
26032 "frame.len": "285",
26033 "frame.cap_len": "285",
26034 "frame.marked": "0",
26035 "frame.ignored": "0",
26036 "frame.protocols": "eth:ethertype:ip:udp:dns",
26037 "frame.coloring_rule.name": "UDP",
26038 "frame.coloring_rule.string": "udp"
26041 "eth.dst": "00:17:88:69:ee:e4",
26043 "eth.dst_resolved": "PhilipsL_69:ee:e4",
26044 "eth.addr": "00:17:88:69:ee:e4",
26045 "eth.addr_resolved": "PhilipsL_69:ee:e4",
26049 "eth.src": "b0:b9:8a:73:69:8e",
26051 "eth.src_resolved": "Netgear_73:69:8e",
26052 "eth.addr": "b0:b9:8a:73:69:8e",
26053 "eth.addr_resolved": "Netgear_73:69:8e",
26057 "eth.type": "0x00000800"
26061 "ip.hdr_len": "20",
26062 "ip.dsfield": "0x00000000",
26063 "ip.dsfield_tree": {
26064 "ip.dsfield.dscp": "0",
26065 "ip.dsfield.ecn": "0"
26068 "ip.id": "0x0000ba30",
26069 "ip.flags": "0x00000002",
26071 "ip.flags.rb": "0",
26072 "ip.flags.df": "1",
26075 "ip.frag_offset": "0",
26078 "ip.checksum": "0x0000fdbb",
26079 "ip.checksum.status": "2",
26080 "ip.src": "192.168.0.1",
26081 "ip.addr": "192.168.0.1",
26082 "ip.src_host": "192.168.0.1",
26083 "ip.host": "192.168.0.1",
26084 "ip.dst": "192.168.0.160",
26085 "ip.addr": "192.168.0.160",
26086 "ip.dst_host": "192.168.0.160",
26087 "ip.host": "192.168.0.160",
26088 "Source GeoIP: Unknown": "",
26089 "Destination GeoIP: Unknown": ""
26092 "udp.srcport": "53",
26093 "udp.dstport": "43337",
26095 "udp.port": "43337",
26096 "udp.length": "251",
26097 "udp.checksum": "0x000082fe",
26098 "udp.checksum.status": "2",
26099 "udp.stream": "353"
26102 "dns.response_to": "32628",
26103 "dns.time": "0.040492000",
26104 "dns.id": "0x000004d3",
26105 "dns.flags": "0x00008180",
26106 "dns.flags_tree": {
26107 "dns.flags.response": "1",
26108 "dns.flags.opcode": "0",
26109 "dns.flags.authoritative": "0",
26110 "dns.flags.truncated": "0",
26111 "dns.flags.recdesired": "1",
26112 "dns.flags.recavail": "1",
26113 "dns.flags.z": "0",
26114 "dns.flags.authenticated": "0",
26115 "dns.flags.checkdisable": "0",
26116 "dns.flags.rcode": "0"
26118 "dns.count.queries": "1",
26119 "dns.count.answers": "1",
26120 "dns.count.auth_rr": "3",
26121 "dns.count.add_rr": "6",
26123 "dcp.cpp.philips.com: type A, class IN": {
26124 "dns.qry.name": "dcp.cpp.philips.com",
26125 "dns.qry.name.len": "19",
26126 "dns.count.labels": "4",
26127 "dns.qry.type": "1",
26128 "dns.qry.class": "0x00000001"
26132 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
26133 "dns.resp.name": "dcp.cpp.philips.com",
26134 "dns.resp.type": "1",
26135 "dns.resp.class": "0x00000001",
26136 "dns.resp.ttl": "3220",
26137 "dns.resp.len": "4",
26138 "dns.a": "5.79.62.93"
26141 "Authoritative nameservers": {
26142 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
26143 "dns.resp.name": "cpp.philips.com",
26144 "dns.resp.type": "2",
26145 "dns.resp.class": "0x00000001",
26146 "dns.resp.ttl": "1411",
26147 "dns.resp.len": "10",
26148 "dns.ns": "ns3.ext.philips.com"
26150 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
26151 "dns.resp.name": "cpp.philips.com",
26152 "dns.resp.type": "2",
26153 "dns.resp.class": "0x00000001",
26154 "dns.resp.ttl": "1411",
26155 "dns.resp.len": "6",
26156 "dns.ns": "ns2.ext.philips.com"
26158 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
26159 "dns.resp.name": "cpp.philips.com",
26160 "dns.resp.type": "2",
26161 "dns.resp.class": "0x00000001",
26162 "dns.resp.ttl": "1411",
26163 "dns.resp.len": "6",
26164 "dns.ns": "ns1.ext.philips.com"
26167 "Additional records": {
26168 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
26169 "dns.resp.name": "ns1.ext.philips.com",
26170 "dns.resp.type": "1",
26171 "dns.resp.class": "0x00000001",
26172 "dns.resp.ttl": "171851",
26173 "dns.resp.len": "4",
26174 "dns.a": "57.67.40.20"
26176 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
26177 "dns.resp.name": "ns2.ext.philips.com",
26178 "dns.resp.type": "1",
26179 "dns.resp.class": "0x00000001",
26180 "dns.resp.ttl": "142774",
26181 "dns.resp.len": "4",
26182 "dns.a": "57.77.21.76"
26184 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
26185 "dns.resp.name": "ns3.ext.philips.com",
26186 "dns.resp.type": "1",
26187 "dns.resp.class": "0x00000001",
26188 "dns.resp.ttl": "142774",
26189 "dns.resp.len": "4",
26190 "dns.a": "57.73.36.68"
26192 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
26193 "dns.resp.name": "ns1.ext.philips.com",
26194 "dns.resp.type": "28",
26195 "dns.resp.class": "0x00000001",
26196 "dns.resp.ttl": "161029",
26197 "dns.resp.len": "16",
26198 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
26200 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
26201 "dns.resp.name": "ns2.ext.philips.com",
26202 "dns.resp.type": "28",
26203 "dns.resp.class": "0x00000001",
26204 "dns.resp.ttl": "32751",
26205 "dns.resp.len": "16",
26206 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
26208 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
26209 "dns.resp.name": "ns3.ext.philips.com",
26210 "dns.resp.type": "28",
26211 "dns.resp.class": "0x00000001",
26212 "dns.resp.ttl": "32751",
26213 "dns.resp.len": "16",
26214 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
26223 "_index": "packets-2017-10-26",
26224 "_type": "pcap_file",
26229 "frame.encap_type": "1",
26230 "frame.time": "Oct 20, 2017 02:33:22.810223000 PDT",
26231 "frame.offset_shift": "0.000000000",
26232 "frame.time_epoch": "1508492002.810223000",
26233 "frame.time_delta": "0.001028000",
26234 "frame.time_delta_displayed": "0.417680000",
26235 "frame.time_relative": "34290.405019000",
26236 "frame.number": "32645",
26238 "frame.cap_len": "79",
26239 "frame.marked": "0",
26240 "frame.ignored": "0",
26241 "frame.protocols": "eth:ethertype:ip:udp:dns",
26242 "frame.coloring_rule.name": "UDP",
26243 "frame.coloring_rule.string": "udp"
26246 "eth.dst": "b0:b9:8a:73:69:8e",
26248 "eth.dst_resolved": "Netgear_73:69:8e",
26249 "eth.addr": "b0:b9:8a:73:69:8e",
26250 "eth.addr_resolved": "Netgear_73:69:8e",
26254 "eth.src": "00:17:88:69:ee:e4",
26256 "eth.src_resolved": "PhilipsL_69:ee:e4",
26257 "eth.addr": "00:17:88:69:ee:e4",
26258 "eth.addr_resolved": "PhilipsL_69:ee:e4",
26262 "eth.type": "0x00000800"
26266 "ip.hdr_len": "20",
26267 "ip.dsfield": "0x00000000",
26268 "ip.dsfield_tree": {
26269 "ip.dsfield.dscp": "0",
26270 "ip.dsfield.ecn": "0"
26273 "ip.id": "0x0000f9af",
26274 "ip.flags": "0x00000002",
26276 "ip.flags.rb": "0",
26277 "ip.flags.df": "1",
26280 "ip.frag_offset": "0",
26283 "ip.checksum": "0x0000bf0a",
26284 "ip.checksum.status": "2",
26285 "ip.src": "192.168.0.160",
26286 "ip.addr": "192.168.0.160",
26287 "ip.src_host": "192.168.0.160",
26288 "ip.host": "192.168.0.160",
26289 "ip.dst": "192.168.0.1",
26290 "ip.addr": "192.168.0.1",
26291 "ip.dst_host": "192.168.0.1",
26292 "ip.host": "192.168.0.1",
26293 "Source GeoIP: Unknown": "",
26294 "Destination GeoIP: Unknown": ""
26297 "udp.srcport": "54367",
26298 "udp.dstport": "53",
26299 "udp.port": "54367",
26301 "udp.length": "45",
26302 "udp.checksum": "0x0000ec09",
26303 "udp.checksum.status": "2",
26304 "udp.stream": "354"
26307 "dns.response_in": "32646",
26308 "dns.id": "0x000004d4",
26309 "dns.flags": "0x00000100",
26310 "dns.flags_tree": {
26311 "dns.flags.response": "0",
26312 "dns.flags.opcode": "0",
26313 "dns.flags.truncated": "0",
26314 "dns.flags.recdesired": "1",
26315 "dns.flags.z": "0",
26316 "dns.flags.checkdisable": "0"
26318 "dns.count.queries": "1",
26319 "dns.count.answers": "0",
26320 "dns.count.auth_rr": "0",
26321 "dns.count.add_rr": "0",
26323 "dcp.cpp.philips.com: type AAAA, class IN": {
26324 "dns.qry.name": "dcp.cpp.philips.com",
26325 "dns.qry.name.len": "19",
26326 "dns.count.labels": "4",
26327 "dns.qry.type": "28",
26328 "dns.qry.class": "0x00000001"
26337 "_index": "packets-2017-10-26",
26338 "_type": "pcap_file",
26343 "frame.encap_type": "1",
26344 "frame.time": "Oct 20, 2017 02:33:22.810817000 PDT",
26345 "frame.offset_shift": "0.000000000",
26346 "frame.time_epoch": "1508492002.810817000",
26347 "frame.time_delta": "0.000594000",
26348 "frame.time_delta_displayed": "0.000594000",
26349 "frame.time_relative": "34290.405613000",
26350 "frame.number": "32646",
26352 "frame.cap_len": "79",
26353 "frame.marked": "0",
26354 "frame.ignored": "0",
26355 "frame.protocols": "eth:ethertype:ip:udp:dns",
26356 "frame.coloring_rule.name": "UDP",
26357 "frame.coloring_rule.string": "udp"
26360 "eth.dst": "00:17:88:69:ee:e4",
26362 "eth.dst_resolved": "PhilipsL_69:ee:e4",
26363 "eth.addr": "00:17:88:69:ee:e4",
26364 "eth.addr_resolved": "PhilipsL_69:ee:e4",
26368 "eth.src": "b0:b9:8a:73:69:8e",
26370 "eth.src_resolved": "Netgear_73:69:8e",
26371 "eth.addr": "b0:b9:8a:73:69:8e",
26372 "eth.addr_resolved": "Netgear_73:69:8e",
26376 "eth.type": "0x00000800"
26380 "ip.hdr_len": "20",
26381 "ip.dsfield": "0x00000000",
26382 "ip.dsfield_tree": {
26383 "ip.dsfield.dscp": "0",
26384 "ip.dsfield.ecn": "0"
26387 "ip.id": "0x0000ba35",
26388 "ip.flags": "0x00000002",
26390 "ip.flags.rb": "0",
26391 "ip.flags.df": "1",
26394 "ip.frag_offset": "0",
26397 "ip.checksum": "0x0000fe84",
26398 "ip.checksum.status": "2",
26399 "ip.src": "192.168.0.1",
26400 "ip.addr": "192.168.0.1",
26401 "ip.src_host": "192.168.0.1",
26402 "ip.host": "192.168.0.1",
26403 "ip.dst": "192.168.0.160",
26404 "ip.addr": "192.168.0.160",
26405 "ip.dst_host": "192.168.0.160",
26406 "ip.host": "192.168.0.160",
26407 "Source GeoIP: Unknown": "",
26408 "Destination GeoIP: Unknown": ""
26411 "udp.srcport": "53",
26412 "udp.dstport": "54367",
26414 "udp.port": "54367",
26415 "udp.length": "45",
26416 "udp.checksum": "0x00008230",
26417 "udp.checksum.status": "2",
26418 "udp.stream": "354"
26421 "dns.response_to": "32645",
26422 "dns.time": "0.000594000",
26423 "dns.id": "0x000004d4",
26424 "dns.flags": "0x00008180",
26425 "dns.flags_tree": {
26426 "dns.flags.response": "1",
26427 "dns.flags.opcode": "0",
26428 "dns.flags.authoritative": "0",
26429 "dns.flags.truncated": "0",
26430 "dns.flags.recdesired": "1",
26431 "dns.flags.recavail": "1",
26432 "dns.flags.z": "0",
26433 "dns.flags.authenticated": "0",
26434 "dns.flags.checkdisable": "0",
26435 "dns.flags.rcode": "0"
26437 "dns.count.queries": "1",
26438 "dns.count.answers": "0",
26439 "dns.count.auth_rr": "0",
26440 "dns.count.add_rr": "0",
26442 "dcp.cpp.philips.com: type AAAA, class IN": {
26443 "dns.qry.name": "dcp.cpp.philips.com",
26444 "dns.qry.name.len": "19",
26445 "dns.count.labels": "4",
26446 "dns.qry.type": "28",
26447 "dns.qry.class": "0x00000001"
26456 "_index": "packets-2017-10-26",
26457 "_type": "pcap_file",
26462 "frame.encap_type": "1",
26463 "frame.time": "Oct 20, 2017 02:33:22.811626000 PDT",
26464 "frame.offset_shift": "0.000000000",
26465 "frame.time_epoch": "1508492002.811626000",
26466 "frame.time_delta": "0.000809000",
26467 "frame.time_delta_displayed": "0.000809000",
26468 "frame.time_relative": "34290.406422000",
26469 "frame.number": "32647",
26471 "frame.cap_len": "79",
26472 "frame.marked": "0",
26473 "frame.ignored": "0",
26474 "frame.protocols": "eth:ethertype:ip:udp:dns",
26475 "frame.coloring_rule.name": "UDP",
26476 "frame.coloring_rule.string": "udp"
26479 "eth.dst": "b0:b9:8a:73:69:8e",
26481 "eth.dst_resolved": "Netgear_73:69:8e",
26482 "eth.addr": "b0:b9:8a:73:69:8e",
26483 "eth.addr_resolved": "Netgear_73:69:8e",
26487 "eth.src": "00:17:88:69:ee:e4",
26489 "eth.src_resolved": "PhilipsL_69:ee:e4",
26490 "eth.addr": "00:17:88:69:ee:e4",
26491 "eth.addr_resolved": "PhilipsL_69:ee:e4",
26495 "eth.type": "0x00000800"
26499 "ip.hdr_len": "20",
26500 "ip.dsfield": "0x00000000",
26501 "ip.dsfield_tree": {
26502 "ip.dsfield.dscp": "0",
26503 "ip.dsfield.ecn": "0"
26506 "ip.id": "0x0000f9b0",
26507 "ip.flags": "0x00000002",
26509 "ip.flags.rb": "0",
26510 "ip.flags.df": "1",
26513 "ip.frag_offset": "0",
26516 "ip.checksum": "0x0000bf09",
26517 "ip.checksum.status": "2",
26518 "ip.src": "192.168.0.160",
26519 "ip.addr": "192.168.0.160",
26520 "ip.src_host": "192.168.0.160",
26521 "ip.host": "192.168.0.160",
26522 "ip.dst": "192.168.0.1",
26523 "ip.addr": "192.168.0.1",
26524 "ip.dst_host": "192.168.0.1",
26525 "ip.host": "192.168.0.1",
26526 "Source GeoIP: Unknown": "",
26527 "Destination GeoIP: Unknown": ""
26530 "udp.srcport": "39432",
26531 "udp.dstport": "53",
26532 "udp.port": "39432",
26534 "udp.length": "45",
26535 "udp.checksum": "0x00004160",
26536 "udp.checksum.status": "2",
26537 "udp.stream": "355"
26540 "dns.response_in": "32648",
26541 "dns.id": "0x000004d5",
26542 "dns.flags": "0x00000100",
26543 "dns.flags_tree": {
26544 "dns.flags.response": "0",
26545 "dns.flags.opcode": "0",
26546 "dns.flags.truncated": "0",
26547 "dns.flags.recdesired": "1",
26548 "dns.flags.z": "0",
26549 "dns.flags.checkdisable": "0"
26551 "dns.count.queries": "1",
26552 "dns.count.answers": "0",
26553 "dns.count.auth_rr": "0",
26554 "dns.count.add_rr": "0",
26556 "dcp.cpp.philips.com: type A, class IN": {
26557 "dns.qry.name": "dcp.cpp.philips.com",
26558 "dns.qry.name.len": "19",
26559 "dns.count.labels": "4",
26560 "dns.qry.type": "1",
26561 "dns.qry.class": "0x00000001"
26570 "_index": "packets-2017-10-26",
26571 "_type": "pcap_file",
26576 "frame.encap_type": "1",
26577 "frame.time": "Oct 20, 2017 02:33:22.812191000 PDT",
26578 "frame.offset_shift": "0.000000000",
26579 "frame.time_epoch": "1508492002.812191000",
26580 "frame.time_delta": "0.000565000",
26581 "frame.time_delta_displayed": "0.000565000",
26582 "frame.time_relative": "34290.406987000",
26583 "frame.number": "32648",
26585 "frame.cap_len": "95",
26586 "frame.marked": "0",
26587 "frame.ignored": "0",
26588 "frame.protocols": "eth:ethertype:ip:udp:dns",
26589 "frame.coloring_rule.name": "UDP",
26590 "frame.coloring_rule.string": "udp"
26593 "eth.dst": "00:17:88:69:ee:e4",
26595 "eth.dst_resolved": "PhilipsL_69:ee:e4",
26596 "eth.addr": "00:17:88:69:ee:e4",
26597 "eth.addr_resolved": "PhilipsL_69:ee:e4",
26601 "eth.src": "b0:b9:8a:73:69:8e",
26603 "eth.src_resolved": "Netgear_73:69:8e",
26604 "eth.addr": "b0:b9:8a:73:69:8e",
26605 "eth.addr_resolved": "Netgear_73:69:8e",
26609 "eth.type": "0x00000800"
26613 "ip.hdr_len": "20",
26614 "ip.dsfield": "0x00000000",
26615 "ip.dsfield_tree": {
26616 "ip.dsfield.dscp": "0",
26617 "ip.dsfield.ecn": "0"
26620 "ip.id": "0x0000ba36",
26621 "ip.flags": "0x00000002",
26623 "ip.flags.rb": "0",
26624 "ip.flags.df": "1",
26627 "ip.frag_offset": "0",
26630 "ip.checksum": "0x0000fe73",
26631 "ip.checksum.status": "2",
26632 "ip.src": "192.168.0.1",
26633 "ip.addr": "192.168.0.1",
26634 "ip.src_host": "192.168.0.1",
26635 "ip.host": "192.168.0.1",
26636 "ip.dst": "192.168.0.160",
26637 "ip.addr": "192.168.0.160",
26638 "ip.dst_host": "192.168.0.160",
26639 "ip.host": "192.168.0.160",
26640 "Source GeoIP: Unknown": "",
26641 "Destination GeoIP: Unknown": ""
26644 "udp.srcport": "53",
26645 "udp.dstport": "39432",
26647 "udp.port": "39432",
26648 "udp.length": "61",
26649 "udp.checksum": "0x00008240",
26650 "udp.checksum.status": "2",
26651 "udp.stream": "355"
26654 "dns.response_to": "32647",
26655 "dns.time": "0.000565000",
26656 "dns.id": "0x000004d5",
26657 "dns.flags": "0x00008180",
26658 "dns.flags_tree": {
26659 "dns.flags.response": "1",
26660 "dns.flags.opcode": "0",
26661 "dns.flags.authoritative": "0",
26662 "dns.flags.truncated": "0",
26663 "dns.flags.recdesired": "1",
26664 "dns.flags.recavail": "1",
26665 "dns.flags.z": "0",
26666 "dns.flags.authenticated": "0",
26667 "dns.flags.checkdisable": "0",
26668 "dns.flags.rcode": "0"
26670 "dns.count.queries": "1",
26671 "dns.count.answers": "1",
26672 "dns.count.auth_rr": "0",
26673 "dns.count.add_rr": "0",
26675 "dcp.cpp.philips.com: type A, class IN": {
26676 "dns.qry.name": "dcp.cpp.philips.com",
26677 "dns.qry.name.len": "19",
26678 "dns.count.labels": "4",
26679 "dns.qry.type": "1",
26680 "dns.qry.class": "0x00000001"
26684 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
26685 "dns.resp.name": "dcp.cpp.philips.com",
26686 "dns.resp.type": "1",
26687 "dns.resp.class": "0x00000001",
26688 "dns.resp.ttl": "3220",
26689 "dns.resp.len": "4",
26690 "dns.a": "5.79.62.93"
26699 "_index": "packets-2017-10-26",
26700 "_type": "pcap_file",
26705 "frame.encap_type": "1",
26706 "frame.time": "Oct 20, 2017 02:37:53.011030000 PDT",
26707 "frame.offset_shift": "0.000000000",
26708 "frame.time_epoch": "1508492273.011030000",
26709 "frame.time_delta": "0.622307000",
26710 "frame.time_delta_displayed": "270.198839000",
26711 "frame.time_relative": "34560.605826000",
26712 "frame.number": "32884",
26714 "frame.cap_len": "76",
26715 "frame.marked": "0",
26716 "frame.ignored": "0",
26717 "frame.protocols": "eth:ethertype:ip:udp:dns",
26718 "frame.coloring_rule.name": "UDP",
26719 "frame.coloring_rule.string": "udp"
26722 "eth.dst": "b0:b9:8a:73:69:8e",
26724 "eth.dst_resolved": "Netgear_73:69:8e",
26725 "eth.addr": "b0:b9:8a:73:69:8e",
26726 "eth.addr_resolved": "Netgear_73:69:8e",
26730 "eth.src": "00:17:88:69:ee:e4",
26732 "eth.src_resolved": "PhilipsL_69:ee:e4",
26733 "eth.addr": "00:17:88:69:ee:e4",
26734 "eth.addr_resolved": "PhilipsL_69:ee:e4",
26738 "eth.type": "0x00000800"
26742 "ip.hdr_len": "20",
26743 "ip.dsfield": "0x00000000",
26744 "ip.dsfield_tree": {
26745 "ip.dsfield.dscp": "0",
26746 "ip.dsfield.ecn": "0"
26749 "ip.id": "0x0000400c",
26750 "ip.flags": "0x00000002",
26752 "ip.flags.rb": "0",
26753 "ip.flags.df": "1",
26756 "ip.frag_offset": "0",
26759 "ip.checksum": "0x000078b1",
26760 "ip.checksum.status": "2",
26761 "ip.src": "192.168.0.160",
26762 "ip.addr": "192.168.0.160",
26763 "ip.src_host": "192.168.0.160",
26764 "ip.host": "192.168.0.160",
26765 "ip.dst": "192.168.0.1",
26766 "ip.addr": "192.168.0.1",
26767 "ip.dst_host": "192.168.0.1",
26768 "ip.host": "192.168.0.1",
26769 "Source GeoIP: Unknown": "",
26770 "Destination GeoIP: Unknown": ""
26773 "udp.srcport": "44772",
26774 "udp.dstport": "53",
26775 "udp.port": "44772",
26777 "udp.length": "42",
26778 "udp.checksum": "0x0000a9fd",
26779 "udp.checksum.status": "2",
26780 "udp.stream": "356"
26783 "dns.response_in": "32885",
26784 "dns.id": "0x000004d6",
26785 "dns.flags": "0x00000100",
26786 "dns.flags_tree": {
26787 "dns.flags.response": "0",
26788 "dns.flags.opcode": "0",
26789 "dns.flags.truncated": "0",
26790 "dns.flags.recdesired": "1",
26791 "dns.flags.z": "0",
26792 "dns.flags.checkdisable": "0"
26794 "dns.count.queries": "1",
26795 "dns.count.answers": "0",
26796 "dns.count.auth_rr": "0",
26797 "dns.count.add_rr": "0",
26799 "www2.meethue.com: type A, class IN": {
26800 "dns.qry.name": "www2.meethue.com",
26801 "dns.qry.name.len": "16",
26802 "dns.count.labels": "3",
26803 "dns.qry.type": "1",
26804 "dns.qry.class": "0x00000001"
26813 "_index": "packets-2017-10-26",
26814 "_type": "pcap_file",
26819 "frame.encap_type": "1",
26820 "frame.time": "Oct 20, 2017 02:37:53.016866000 PDT",
26821 "frame.offset_shift": "0.000000000",
26822 "frame.time_epoch": "1508492273.016866000",
26823 "frame.time_delta": "0.005836000",
26824 "frame.time_delta_displayed": "0.005836000",
26825 "frame.time_relative": "34560.611662000",
26826 "frame.number": "32885",
26827 "frame.len": "513",
26828 "frame.cap_len": "513",
26829 "frame.marked": "0",
26830 "frame.ignored": "0",
26831 "frame.protocols": "eth:ethertype:ip:udp:dns",
26832 "frame.coloring_rule.name": "UDP",
26833 "frame.coloring_rule.string": "udp"
26836 "eth.dst": "00:17:88:69:ee:e4",
26838 "eth.dst_resolved": "PhilipsL_69:ee:e4",
26839 "eth.addr": "00:17:88:69:ee:e4",
26840 "eth.addr_resolved": "PhilipsL_69:ee:e4",
26844 "eth.src": "b0:b9:8a:73:69:8e",
26846 "eth.src_resolved": "Netgear_73:69:8e",
26847 "eth.addr": "b0:b9:8a:73:69:8e",
26848 "eth.addr_resolved": "Netgear_73:69:8e",
26852 "eth.type": "0x00000800"
26856 "ip.hdr_len": "20",
26857 "ip.dsfield": "0x00000000",
26858 "ip.dsfield_tree": {
26859 "ip.dsfield.dscp": "0",
26860 "ip.dsfield.ecn": "0"
26863 "ip.id": "0x0000c41b",
26864 "ip.flags": "0x00000002",
26866 "ip.flags.rb": "0",
26867 "ip.flags.df": "1",
26870 "ip.frag_offset": "0",
26873 "ip.checksum": "0x0000f2ec",
26874 "ip.checksum.status": "2",
26875 "ip.src": "192.168.0.1",
26876 "ip.addr": "192.168.0.1",
26877 "ip.src_host": "192.168.0.1",
26878 "ip.host": "192.168.0.1",
26879 "ip.dst": "192.168.0.160",
26880 "ip.addr": "192.168.0.160",
26881 "ip.dst_host": "192.168.0.160",
26882 "ip.host": "192.168.0.160",
26883 "Source GeoIP: Unknown": "",
26884 "Destination GeoIP: Unknown": ""
26887 "udp.srcport": "53",
26888 "udp.dstport": "44772",
26890 "udp.port": "44772",
26891 "udp.length": "479",
26892 "udp.checksum": "0x000083e2",
26893 "udp.checksum.status": "2",
26894 "udp.stream": "356"
26897 "dns.response_to": "32884",
26898 "dns.time": "0.005836000",
26899 "dns.id": "0x000004d6",
26900 "dns.flags": "0x00008180",
26901 "dns.flags_tree": {
26902 "dns.flags.response": "1",
26903 "dns.flags.opcode": "0",
26904 "dns.flags.authoritative": "0",
26905 "dns.flags.truncated": "0",
26906 "dns.flags.recdesired": "1",
26907 "dns.flags.recavail": "1",
26908 "dns.flags.z": "0",
26909 "dns.flags.authenticated": "0",
26910 "dns.flags.checkdisable": "0",
26911 "dns.flags.rcode": "0"
26913 "dns.count.queries": "1",
26914 "dns.count.answers": "4",
26915 "dns.count.auth_rr": "9",
26916 "dns.count.add_rr": "9",
26918 "www2.meethue.com: type A, class IN": {
26919 "dns.qry.name": "www2.meethue.com",
26920 "dns.qry.name.len": "16",
26921 "dns.count.labels": "3",
26922 "dns.qry.type": "1",
26923 "dns.qry.class": "0x00000001"
26927 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
26928 "dns.resp.name": "www2.meethue.com",
26929 "dns.resp.type": "5",
26930 "dns.resp.class": "0x00000001",
26931 "dns.resp.ttl": "143",
26932 "dns.resp.len": "41",
26933 "dns.cname": "brands.lighting.philips.com.edgekey.net"
26935 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
26936 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
26937 "dns.resp.type": "5",
26938 "dns.resp.class": "0x00000001",
26939 "dns.resp.ttl": "2357",
26940 "dns.resp.len": "22",
26941 "dns.cname": "e15361.b.akamaiedge.net"
26943 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
26944 "dns.resp.name": "e15361.b.akamaiedge.net",
26945 "dns.resp.type": "1",
26946 "dns.resp.class": "0x00000001",
26947 "dns.resp.ttl": "20",
26948 "dns.resp.len": "4",
26949 "dns.a": "184.84.242.27"
26951 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
26952 "dns.resp.name": "e15361.b.akamaiedge.net",
26953 "dns.resp.type": "1",
26954 "dns.resp.class": "0x00000001",
26955 "dns.resp.ttl": "20",
26956 "dns.resp.len": "4",
26957 "dns.a": "184.84.242.42"
26960 "Authoritative nameservers": {
26961 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
26962 "dns.resp.name": "b.akamaiedge.net",
26963 "dns.resp.type": "2",
26964 "dns.resp.class": "0x00000001",
26965 "dns.resp.ttl": "373",
26966 "dns.resp.len": "6",
26967 "dns.ns": "a0b.akamaiedge.net"
26969 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
26970 "dns.resp.name": "b.akamaiedge.net",
26971 "dns.resp.type": "2",
26972 "dns.resp.class": "0x00000001",
26973 "dns.resp.ttl": "373",
26974 "dns.resp.len": "6",
26975 "dns.ns": "n1b.akamaiedge.net"
26977 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
26978 "dns.resp.name": "b.akamaiedge.net",
26979 "dns.resp.type": "2",
26980 "dns.resp.class": "0x00000001",
26981 "dns.resp.ttl": "373",
26982 "dns.resp.len": "6",
26983 "dns.ns": "n3b.akamaiedge.net"
26985 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
26986 "dns.resp.name": "b.akamaiedge.net",
26987 "dns.resp.type": "2",
26988 "dns.resp.class": "0x00000001",
26989 "dns.resp.ttl": "373",
26990 "dns.resp.len": "6",
26991 "dns.ns": "n0b.akamaiedge.net"
26993 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
26994 "dns.resp.name": "b.akamaiedge.net",
26995 "dns.resp.type": "2",
26996 "dns.resp.class": "0x00000001",
26997 "dns.resp.ttl": "373",
26998 "dns.resp.len": "6",
26999 "dns.ns": "n4b.akamaiedge.net"
27001 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
27002 "dns.resp.name": "b.akamaiedge.net",
27003 "dns.resp.type": "2",
27004 "dns.resp.class": "0x00000001",
27005 "dns.resp.ttl": "373",
27006 "dns.resp.len": "6",
27007 "dns.ns": "n7b.akamaiedge.net"
27009 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
27010 "dns.resp.name": "b.akamaiedge.net",
27011 "dns.resp.type": "2",
27012 "dns.resp.class": "0x00000001",
27013 "dns.resp.ttl": "373",
27014 "dns.resp.len": "6",
27015 "dns.ns": "n5b.akamaiedge.net"
27017 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
27018 "dns.resp.name": "b.akamaiedge.net",
27019 "dns.resp.type": "2",
27020 "dns.resp.class": "0x00000001",
27021 "dns.resp.ttl": "373",
27022 "dns.resp.len": "6",
27023 "dns.ns": "n6b.akamaiedge.net"
27025 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
27026 "dns.resp.name": "b.akamaiedge.net",
27027 "dns.resp.type": "2",
27028 "dns.resp.class": "0x00000001",
27029 "dns.resp.ttl": "373",
27030 "dns.resp.len": "6",
27031 "dns.ns": "n2b.akamaiedge.net"
27034 "Additional records": {
27035 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
27036 "dns.resp.name": "n0b.akamaiedge.net",
27037 "dns.resp.type": "1",
27038 "dns.resp.class": "0x00000001",
27039 "dns.resp.ttl": "3904",
27040 "dns.resp.len": "4",
27041 "dns.a": "88.221.81.192"
27043 "n1b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
27044 "dns.resp.name": "n1b.akamaiedge.net",
27045 "dns.resp.type": "1",
27046 "dns.resp.class": "0x00000001",
27047 "dns.resp.ttl": "4443",
27048 "dns.resp.len": "4",
27049 "dns.a": "204.2.166.154"
27051 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
27052 "dns.resp.name": "n2b.akamaiedge.net",
27053 "dns.resp.type": "1",
27054 "dns.resp.class": "0x00000001",
27055 "dns.resp.ttl": "7217",
27056 "dns.resp.len": "4",
27057 "dns.a": "96.17.70.175"
27059 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.174": {
27060 "dns.resp.name": "n3b.akamaiedge.net",
27061 "dns.resp.type": "1",
27062 "dns.resp.class": "0x00000001",
27063 "dns.resp.ttl": "3284",
27064 "dns.resp.len": "4",
27065 "dns.a": "96.17.70.174"
27067 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
27068 "dns.resp.name": "n4b.akamaiedge.net",
27069 "dns.resp.type": "1",
27070 "dns.resp.class": "0x00000001",
27071 "dns.resp.ttl": "1690",
27072 "dns.resp.len": "4",
27073 "dns.a": "96.17.70.175"
27075 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
27076 "dns.resp.name": "n5b.akamaiedge.net",
27077 "dns.resp.type": "1",
27078 "dns.resp.class": "0x00000001",
27079 "dns.resp.ttl": "4243",
27080 "dns.resp.len": "4",
27081 "dns.a": "204.2.166.150"
27083 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
27084 "dns.resp.name": "n6b.akamaiedge.net",
27085 "dns.resp.type": "1",
27086 "dns.resp.class": "0x00000001",
27087 "dns.resp.ttl": "3827",
27088 "dns.resp.len": "4",
27089 "dns.a": "204.2.166.154"
27091 "n7b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
27092 "dns.resp.name": "n7b.akamaiedge.net",
27093 "dns.resp.type": "1",
27094 "dns.resp.class": "0x00000001",
27095 "dns.resp.ttl": "5929",
27096 "dns.resp.len": "4",
27097 "dns.a": "204.2.166.158"
27099 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
27100 "dns.resp.name": "a0b.akamaiedge.net",
27101 "dns.resp.type": "28",
27102 "dns.resp.class": "0x00000001",
27103 "dns.resp.ttl": "3376",
27104 "dns.resp.len": "16",
27105 "dns.aaaa": "2600:1480:e800::c0"
27114 "_index": "packets-2017-10-26",
27115 "_type": "pcap_file",
27120 "frame.encap_type": "1",
27121 "frame.time": "Oct 20, 2017 02:52:53.027071000 PDT",
27122 "frame.offset_shift": "0.000000000",
27123 "frame.time_epoch": "1508493173.027071000",
27124 "frame.time_delta": "3.719993000",
27125 "frame.time_delta_displayed": "900.010205000",
27126 "frame.time_relative": "35460.621867000",
27127 "frame.number": "33758",
27129 "frame.cap_len": "76",
27130 "frame.marked": "0",
27131 "frame.ignored": "0",
27132 "frame.protocols": "eth:ethertype:ip:udp:dns",
27133 "frame.coloring_rule.name": "UDP",
27134 "frame.coloring_rule.string": "udp"
27137 "eth.dst": "b0:b9:8a:73:69:8e",
27139 "eth.dst_resolved": "Netgear_73:69:8e",
27140 "eth.addr": "b0:b9:8a:73:69:8e",
27141 "eth.addr_resolved": "Netgear_73:69:8e",
27145 "eth.src": "00:17:88:69:ee:e4",
27147 "eth.src_resolved": "PhilipsL_69:ee:e4",
27148 "eth.addr": "00:17:88:69:ee:e4",
27149 "eth.addr_resolved": "PhilipsL_69:ee:e4",
27153 "eth.type": "0x00000800"
27157 "ip.hdr_len": "20",
27158 "ip.dsfield": "0x00000000",
27159 "ip.dsfield_tree": {
27160 "ip.dsfield.dscp": "0",
27161 "ip.dsfield.ecn": "0"
27164 "ip.id": "0x000044d0",
27165 "ip.flags": "0x00000002",
27167 "ip.flags.rb": "0",
27168 "ip.flags.df": "1",
27171 "ip.frag_offset": "0",
27174 "ip.checksum": "0x000073ed",
27175 "ip.checksum.status": "2",
27176 "ip.src": "192.168.0.160",
27177 "ip.addr": "192.168.0.160",
27178 "ip.src_host": "192.168.0.160",
27179 "ip.host": "192.168.0.160",
27180 "ip.dst": "192.168.0.1",
27181 "ip.addr": "192.168.0.1",
27182 "ip.dst_host": "192.168.0.1",
27183 "ip.host": "192.168.0.1",
27184 "Source GeoIP: Unknown": "",
27185 "Destination GeoIP: Unknown": ""
27188 "udp.srcport": "54661",
27189 "udp.dstport": "53",
27190 "udp.port": "54661",
27192 "udp.length": "42",
27193 "udp.checksum": "0x0000835b",
27194 "udp.checksum.status": "2",
27195 "udp.stream": "360"
27198 "dns.response_in": "33759",
27199 "dns.id": "0x000004d7",
27200 "dns.flags": "0x00000100",
27201 "dns.flags_tree": {
27202 "dns.flags.response": "0",
27203 "dns.flags.opcode": "0",
27204 "dns.flags.truncated": "0",
27205 "dns.flags.recdesired": "1",
27206 "dns.flags.z": "0",
27207 "dns.flags.checkdisable": "0"
27209 "dns.count.queries": "1",
27210 "dns.count.answers": "0",
27211 "dns.count.auth_rr": "0",
27212 "dns.count.add_rr": "0",
27214 "www2.meethue.com: type A, class IN": {
27215 "dns.qry.name": "www2.meethue.com",
27216 "dns.qry.name.len": "16",
27217 "dns.count.labels": "3",
27218 "dns.qry.type": "1",
27219 "dns.qry.class": "0x00000001"
27228 "_index": "packets-2017-10-26",
27229 "_type": "pcap_file",
27234 "frame.encap_type": "1",
27235 "frame.time": "Oct 20, 2017 02:52:53.101742000 PDT",
27236 "frame.offset_shift": "0.000000000",
27237 "frame.time_epoch": "1508493173.101742000",
27238 "frame.time_delta": "0.074671000",
27239 "frame.time_delta_displayed": "0.074671000",
27240 "frame.time_relative": "35460.696538000",
27241 "frame.number": "33759",
27242 "frame.len": "513",
27243 "frame.cap_len": "513",
27244 "frame.marked": "0",
27245 "frame.ignored": "0",
27246 "frame.protocols": "eth:ethertype:ip:udp:dns",
27247 "frame.coloring_rule.name": "UDP",
27248 "frame.coloring_rule.string": "udp"
27251 "eth.dst": "00:17:88:69:ee:e4",
27253 "eth.dst_resolved": "PhilipsL_69:ee:e4",
27254 "eth.addr": "00:17:88:69:ee:e4",
27255 "eth.addr_resolved": "PhilipsL_69:ee:e4",
27259 "eth.src": "b0:b9:8a:73:69:8e",
27261 "eth.src_resolved": "Netgear_73:69:8e",
27262 "eth.addr": "b0:b9:8a:73:69:8e",
27263 "eth.addr_resolved": "Netgear_73:69:8e",
27267 "eth.type": "0x00000800"
27271 "ip.hdr_len": "20",
27272 "ip.dsfield": "0x00000000",
27273 "ip.dsfield_tree": {
27274 "ip.dsfield.dscp": "0",
27275 "ip.dsfield.ecn": "0"
27278 "ip.id": "0x0000f93b",
27279 "ip.flags": "0x00000002",
27281 "ip.flags.rb": "0",
27282 "ip.flags.df": "1",
27285 "ip.frag_offset": "0",
27288 "ip.checksum": "0x0000bdcc",
27289 "ip.checksum.status": "2",
27290 "ip.src": "192.168.0.1",
27291 "ip.addr": "192.168.0.1",
27292 "ip.src_host": "192.168.0.1",
27293 "ip.host": "192.168.0.1",
27294 "ip.dst": "192.168.0.160",
27295 "ip.addr": "192.168.0.160",
27296 "ip.dst_host": "192.168.0.160",
27297 "ip.host": "192.168.0.160",
27298 "Source GeoIP: Unknown": "",
27299 "Destination GeoIP: Unknown": ""
27302 "udp.srcport": "53",
27303 "udp.dstport": "54661",
27305 "udp.port": "54661",
27306 "udp.length": "479",
27307 "udp.checksum": "0x000083e2",
27308 "udp.checksum.status": "2",
27309 "udp.stream": "360"
27312 "dns.response_to": "33758",
27313 "dns.time": "0.074671000",
27314 "dns.id": "0x000004d7",
27315 "dns.flags": "0x00008180",
27316 "dns.flags_tree": {
27317 "dns.flags.response": "1",
27318 "dns.flags.opcode": "0",
27319 "dns.flags.authoritative": "0",
27320 "dns.flags.truncated": "0",
27321 "dns.flags.recdesired": "1",
27322 "dns.flags.recavail": "1",
27323 "dns.flags.z": "0",
27324 "dns.flags.authenticated": "0",
27325 "dns.flags.checkdisable": "0",
27326 "dns.flags.rcode": "0"
27328 "dns.count.queries": "1",
27329 "dns.count.answers": "4",
27330 "dns.count.auth_rr": "9",
27331 "dns.count.add_rr": "9",
27333 "www2.meethue.com: type A, class IN": {
27334 "dns.qry.name": "www2.meethue.com",
27335 "dns.qry.name.len": "16",
27336 "dns.count.labels": "3",
27337 "dns.qry.type": "1",
27338 "dns.qry.class": "0x00000001"
27342 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
27343 "dns.resp.name": "www2.meethue.com",
27344 "dns.resp.type": "5",
27345 "dns.resp.class": "0x00000001",
27346 "dns.resp.ttl": "300",
27347 "dns.resp.len": "41",
27348 "dns.cname": "brands.lighting.philips.com.edgekey.net"
27350 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
27351 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
27352 "dns.resp.type": "5",
27353 "dns.resp.class": "0x00000001",
27354 "dns.resp.ttl": "1457",
27355 "dns.resp.len": "22",
27356 "dns.cname": "e15361.b.akamaiedge.net"
27358 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
27359 "dns.resp.name": "e15361.b.akamaiedge.net",
27360 "dns.resp.type": "1",
27361 "dns.resp.class": "0x00000001",
27362 "dns.resp.ttl": "20",
27363 "dns.resp.len": "4",
27364 "dns.a": "184.84.242.27"
27366 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
27367 "dns.resp.name": "e15361.b.akamaiedge.net",
27368 "dns.resp.type": "1",
27369 "dns.resp.class": "0x00000001",
27370 "dns.resp.ttl": "20",
27371 "dns.resp.len": "4",
27372 "dns.a": "184.84.242.42"
27375 "Authoritative nameservers": {
27376 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
27377 "dns.resp.name": "b.akamaiedge.net",
27378 "dns.resp.type": "2",
27379 "dns.resp.class": "0x00000001",
27380 "dns.resp.ttl": "3473",
27381 "dns.resp.len": "6",
27382 "dns.ns": "n3b.akamaiedge.net"
27384 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
27385 "dns.resp.name": "b.akamaiedge.net",
27386 "dns.resp.type": "2",
27387 "dns.resp.class": "0x00000001",
27388 "dns.resp.ttl": "3473",
27389 "dns.resp.len": "6",
27390 "dns.ns": "n6b.akamaiedge.net"
27392 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
27393 "dns.resp.name": "b.akamaiedge.net",
27394 "dns.resp.type": "2",
27395 "dns.resp.class": "0x00000001",
27396 "dns.resp.ttl": "3473",
27397 "dns.resp.len": "6",
27398 "dns.ns": "n0b.akamaiedge.net"
27400 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
27401 "dns.resp.name": "b.akamaiedge.net",
27402 "dns.resp.type": "2",
27403 "dns.resp.class": "0x00000001",
27404 "dns.resp.ttl": "3473",
27405 "dns.resp.len": "6",
27406 "dns.ns": "n7b.akamaiedge.net"
27408 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
27409 "dns.resp.name": "b.akamaiedge.net",
27410 "dns.resp.type": "2",
27411 "dns.resp.class": "0x00000001",
27412 "dns.resp.ttl": "3473",
27413 "dns.resp.len": "6",
27414 "dns.ns": "n4b.akamaiedge.net"
27416 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
27417 "dns.resp.name": "b.akamaiedge.net",
27418 "dns.resp.type": "2",
27419 "dns.resp.class": "0x00000001",
27420 "dns.resp.ttl": "3473",
27421 "dns.resp.len": "6",
27422 "dns.ns": "a0b.akamaiedge.net"
27424 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
27425 "dns.resp.name": "b.akamaiedge.net",
27426 "dns.resp.type": "2",
27427 "dns.resp.class": "0x00000001",
27428 "dns.resp.ttl": "3473",
27429 "dns.resp.len": "6",
27430 "dns.ns": "n5b.akamaiedge.net"
27432 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
27433 "dns.resp.name": "b.akamaiedge.net",
27434 "dns.resp.type": "2",
27435 "dns.resp.class": "0x00000001",
27436 "dns.resp.ttl": "3473",
27437 "dns.resp.len": "6",
27438 "dns.ns": "n1b.akamaiedge.net"
27440 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
27441 "dns.resp.name": "b.akamaiedge.net",
27442 "dns.resp.type": "2",
27443 "dns.resp.class": "0x00000001",
27444 "dns.resp.ttl": "3473",
27445 "dns.resp.len": "6",
27446 "dns.ns": "n2b.akamaiedge.net"
27449 "Additional records": {
27450 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
27451 "dns.resp.name": "n0b.akamaiedge.net",
27452 "dns.resp.type": "1",
27453 "dns.resp.class": "0x00000001",
27454 "dns.resp.ttl": "3004",
27455 "dns.resp.len": "4",
27456 "dns.a": "88.221.81.192"
27458 "n1b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
27459 "dns.resp.name": "n1b.akamaiedge.net",
27460 "dns.resp.type": "1",
27461 "dns.resp.class": "0x00000001",
27462 "dns.resp.ttl": "3543",
27463 "dns.resp.len": "4",
27464 "dns.a": "204.2.166.154"
27466 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
27467 "dns.resp.name": "n2b.akamaiedge.net",
27468 "dns.resp.type": "1",
27469 "dns.resp.class": "0x00000001",
27470 "dns.resp.ttl": "6317",
27471 "dns.resp.len": "4",
27472 "dns.a": "96.17.70.175"
27474 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.174": {
27475 "dns.resp.name": "n3b.akamaiedge.net",
27476 "dns.resp.type": "1",
27477 "dns.resp.class": "0x00000001",
27478 "dns.resp.ttl": "2384",
27479 "dns.resp.len": "4",
27480 "dns.a": "96.17.70.174"
27482 "n4b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
27483 "dns.resp.name": "n4b.akamaiedge.net",
27484 "dns.resp.type": "1",
27485 "dns.resp.class": "0x00000001",
27486 "dns.resp.ttl": "790",
27487 "dns.resp.len": "4",
27488 "dns.a": "96.17.70.175"
27490 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
27491 "dns.resp.name": "n5b.akamaiedge.net",
27492 "dns.resp.type": "1",
27493 "dns.resp.class": "0x00000001",
27494 "dns.resp.ttl": "3343",
27495 "dns.resp.len": "4",
27496 "dns.a": "204.2.166.150"
27498 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
27499 "dns.resp.name": "n6b.akamaiedge.net",
27500 "dns.resp.type": "1",
27501 "dns.resp.class": "0x00000001",
27502 "dns.resp.ttl": "2927",
27503 "dns.resp.len": "4",
27504 "dns.a": "204.2.166.154"
27506 "n7b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
27507 "dns.resp.name": "n7b.akamaiedge.net",
27508 "dns.resp.type": "1",
27509 "dns.resp.class": "0x00000001",
27510 "dns.resp.ttl": "5029",
27511 "dns.resp.len": "4",
27512 "dns.a": "204.2.166.158"
27514 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
27515 "dns.resp.name": "a0b.akamaiedge.net",
27516 "dns.resp.type": "28",
27517 "dns.resp.class": "0x00000001",
27518 "dns.resp.ttl": "2476",
27519 "dns.resp.len": "16",
27520 "dns.aaaa": "2600:1480:e800::c0"
27529 "_index": "packets-2017-10-26",
27530 "_type": "pcap_file",
27535 "frame.encap_type": "1",
27536 "frame.time": "Oct 20, 2017 03:07:53.107570000 PDT",
27537 "frame.offset_shift": "0.000000000",
27538 "frame.time_epoch": "1508494073.107570000",
27539 "frame.time_delta": "7.786097000",
27540 "frame.time_delta_displayed": "900.005828000",
27541 "frame.time_relative": "36360.702366000",
27542 "frame.number": "34517",
27544 "frame.cap_len": "76",
27545 "frame.marked": "0",
27546 "frame.ignored": "0",
27547 "frame.protocols": "eth:ethertype:ip:udp:dns",
27548 "frame.coloring_rule.name": "UDP",
27549 "frame.coloring_rule.string": "udp"
27552 "eth.dst": "b0:b9:8a:73:69:8e",
27554 "eth.dst_resolved": "Netgear_73:69:8e",
27555 "eth.addr": "b0:b9:8a:73:69:8e",
27556 "eth.addr_resolved": "Netgear_73:69:8e",
27560 "eth.src": "00:17:88:69:ee:e4",
27562 "eth.src_resolved": "PhilipsL_69:ee:e4",
27563 "eth.addr": "00:17:88:69:ee:e4",
27564 "eth.addr_resolved": "PhilipsL_69:ee:e4",
27568 "eth.type": "0x00000800"
27572 "ip.hdr_len": "20",
27573 "ip.dsfield": "0x00000000",
27574 "ip.dsfield_tree": {
27575 "ip.dsfield.dscp": "0",
27576 "ip.dsfield.ecn": "0"
27579 "ip.id": "0x0000f210",
27580 "ip.flags": "0x00000002",
27582 "ip.flags.rb": "0",
27583 "ip.flags.df": "1",
27586 "ip.frag_offset": "0",
27589 "ip.checksum": "0x0000c6ac",
27590 "ip.checksum.status": "2",
27591 "ip.src": "192.168.0.160",
27592 "ip.addr": "192.168.0.160",
27593 "ip.src_host": "192.168.0.160",
27594 "ip.host": "192.168.0.160",
27595 "ip.dst": "192.168.0.1",
27596 "ip.addr": "192.168.0.1",
27597 "ip.dst_host": "192.168.0.1",
27598 "ip.host": "192.168.0.1",
27599 "Source GeoIP: Unknown": "",
27600 "Destination GeoIP: Unknown": ""
27603 "udp.srcport": "49914",
27604 "udp.dstport": "53",
27605 "udp.port": "49914",
27607 "udp.length": "42",
27608 "udp.checksum": "0x000095e5",
27609 "udp.checksum.status": "2",
27610 "udp.stream": "368"
27613 "dns.response_in": "34518",
27614 "dns.id": "0x000004d8",
27615 "dns.flags": "0x00000100",
27616 "dns.flags_tree": {
27617 "dns.flags.response": "0",
27618 "dns.flags.opcode": "0",
27619 "dns.flags.truncated": "0",
27620 "dns.flags.recdesired": "1",
27621 "dns.flags.z": "0",
27622 "dns.flags.checkdisable": "0"
27624 "dns.count.queries": "1",
27625 "dns.count.answers": "0",
27626 "dns.count.auth_rr": "0",
27627 "dns.count.add_rr": "0",
27629 "www2.meethue.com: type A, class IN": {
27630 "dns.qry.name": "www2.meethue.com",
27631 "dns.qry.name.len": "16",
27632 "dns.count.labels": "3",
27633 "dns.qry.type": "1",
27634 "dns.qry.class": "0x00000001"
27643 "_index": "packets-2017-10-26",
27644 "_type": "pcap_file",
27649 "frame.encap_type": "1",
27650 "frame.time": "Oct 20, 2017 03:07:53.114086000 PDT",
27651 "frame.offset_shift": "0.000000000",
27652 "frame.time_epoch": "1508494073.114086000",
27653 "frame.time_delta": "0.006516000",
27654 "frame.time_delta_displayed": "0.006516000",
27655 "frame.time_relative": "36360.708882000",
27656 "frame.number": "34518",
27657 "frame.len": "513",
27658 "frame.cap_len": "513",
27659 "frame.marked": "0",
27660 "frame.ignored": "0",
27661 "frame.protocols": "eth:ethertype:ip:udp:dns",
27662 "frame.coloring_rule.name": "UDP",
27663 "frame.coloring_rule.string": "udp"
27666 "eth.dst": "00:17:88:69:ee:e4",
27668 "eth.dst_resolved": "PhilipsL_69:ee:e4",
27669 "eth.addr": "00:17:88:69:ee:e4",
27670 "eth.addr_resolved": "PhilipsL_69:ee:e4",
27674 "eth.src": "b0:b9:8a:73:69:8e",
27676 "eth.src_resolved": "Netgear_73:69:8e",
27677 "eth.addr": "b0:b9:8a:73:69:8e",
27678 "eth.addr_resolved": "Netgear_73:69:8e",
27682 "eth.type": "0x00000800"
27686 "ip.hdr_len": "20",
27687 "ip.dsfield": "0x00000000",
27688 "ip.dsfield_tree": {
27689 "ip.dsfield.dscp": "0",
27690 "ip.dsfield.ecn": "0"
27693 "ip.id": "0x0000cccb",
27694 "ip.flags": "0x00000002",
27696 "ip.flags.rb": "0",
27697 "ip.flags.df": "1",
27700 "ip.frag_offset": "0",
27703 "ip.checksum": "0x0000ea3c",
27704 "ip.checksum.status": "2",
27705 "ip.src": "192.168.0.1",
27706 "ip.addr": "192.168.0.1",
27707 "ip.src_host": "192.168.0.1",
27708 "ip.host": "192.168.0.1",
27709 "ip.dst": "192.168.0.160",
27710 "ip.addr": "192.168.0.160",
27711 "ip.dst_host": "192.168.0.160",
27712 "ip.host": "192.168.0.160",
27713 "Source GeoIP: Unknown": "",
27714 "Destination GeoIP: Unknown": ""
27717 "udp.srcport": "53",
27718 "udp.dstport": "49914",
27720 "udp.port": "49914",
27721 "udp.length": "479",
27722 "udp.checksum": "0x000083e2",
27723 "udp.checksum.status": "2",
27724 "udp.stream": "368"
27727 "dns.response_to": "34517",
27728 "dns.time": "0.006516000",
27729 "dns.id": "0x000004d8",
27730 "dns.flags": "0x00008180",
27731 "dns.flags_tree": {
27732 "dns.flags.response": "1",
27733 "dns.flags.opcode": "0",
27734 "dns.flags.authoritative": "0",
27735 "dns.flags.truncated": "0",
27736 "dns.flags.recdesired": "1",
27737 "dns.flags.recavail": "1",
27738 "dns.flags.z": "0",
27739 "dns.flags.authenticated": "0",
27740 "dns.flags.checkdisable": "0",
27741 "dns.flags.rcode": "0"
27743 "dns.count.queries": "1",
27744 "dns.count.answers": "4",
27745 "dns.count.auth_rr": "9",
27746 "dns.count.add_rr": "9",
27748 "www2.meethue.com: type A, class IN": {
27749 "dns.qry.name": "www2.meethue.com",
27750 "dns.qry.name.len": "16",
27751 "dns.count.labels": "3",
27752 "dns.qry.type": "1",
27753 "dns.qry.class": "0x00000001"
27757 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
27758 "dns.resp.name": "www2.meethue.com",
27759 "dns.resp.type": "5",
27760 "dns.resp.class": "0x00000001",
27761 "dns.resp.ttl": "143",
27762 "dns.resp.len": "41",
27763 "dns.cname": "brands.lighting.philips.com.edgekey.net"
27765 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
27766 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
27767 "dns.resp.type": "5",
27768 "dns.resp.class": "0x00000001",
27769 "dns.resp.ttl": "557",
27770 "dns.resp.len": "22",
27771 "dns.cname": "e15361.b.akamaiedge.net"
27773 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
27774 "dns.resp.name": "e15361.b.akamaiedge.net",
27775 "dns.resp.type": "1",
27776 "dns.resp.class": "0x00000001",
27777 "dns.resp.ttl": "20",
27778 "dns.resp.len": "4",
27779 "dns.a": "184.84.242.27"
27781 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
27782 "dns.resp.name": "e15361.b.akamaiedge.net",
27783 "dns.resp.type": "1",
27784 "dns.resp.class": "0x00000001",
27785 "dns.resp.ttl": "20",
27786 "dns.resp.len": "4",
27787 "dns.a": "184.84.242.42"
27790 "Authoritative nameservers": {
27791 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
27792 "dns.resp.name": "b.akamaiedge.net",
27793 "dns.resp.type": "2",
27794 "dns.resp.class": "0x00000001",
27795 "dns.resp.ttl": "2573",
27796 "dns.resp.len": "6",
27797 "dns.ns": "n4b.akamaiedge.net"
27799 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
27800 "dns.resp.name": "b.akamaiedge.net",
27801 "dns.resp.type": "2",
27802 "dns.resp.class": "0x00000001",
27803 "dns.resp.ttl": "2573",
27804 "dns.resp.len": "6",
27805 "dns.ns": "n7b.akamaiedge.net"
27807 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
27808 "dns.resp.name": "b.akamaiedge.net",
27809 "dns.resp.type": "2",
27810 "dns.resp.class": "0x00000001",
27811 "dns.resp.ttl": "2573",
27812 "dns.resp.len": "6",
27813 "dns.ns": "n5b.akamaiedge.net"
27815 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
27816 "dns.resp.name": "b.akamaiedge.net",
27817 "dns.resp.type": "2",
27818 "dns.resp.class": "0x00000001",
27819 "dns.resp.ttl": "2573",
27820 "dns.resp.len": "6",
27821 "dns.ns": "a0b.akamaiedge.net"
27823 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
27824 "dns.resp.name": "b.akamaiedge.net",
27825 "dns.resp.type": "2",
27826 "dns.resp.class": "0x00000001",
27827 "dns.resp.ttl": "2573",
27828 "dns.resp.len": "6",
27829 "dns.ns": "n6b.akamaiedge.net"
27831 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
27832 "dns.resp.name": "b.akamaiedge.net",
27833 "dns.resp.type": "2",
27834 "dns.resp.class": "0x00000001",
27835 "dns.resp.ttl": "2573",
27836 "dns.resp.len": "6",
27837 "dns.ns": "n2b.akamaiedge.net"
27839 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
27840 "dns.resp.name": "b.akamaiedge.net",
27841 "dns.resp.type": "2",
27842 "dns.resp.class": "0x00000001",
27843 "dns.resp.ttl": "2573",
27844 "dns.resp.len": "6",
27845 "dns.ns": "n0b.akamaiedge.net"
27847 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
27848 "dns.resp.name": "b.akamaiedge.net",
27849 "dns.resp.type": "2",
27850 "dns.resp.class": "0x00000001",
27851 "dns.resp.ttl": "2573",
27852 "dns.resp.len": "6",
27853 "dns.ns": "n1b.akamaiedge.net"
27855 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
27856 "dns.resp.name": "b.akamaiedge.net",
27857 "dns.resp.type": "2",
27858 "dns.resp.class": "0x00000001",
27859 "dns.resp.ttl": "2573",
27860 "dns.resp.len": "6",
27861 "dns.ns": "n3b.akamaiedge.net"
27864 "Additional records": {
27865 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
27866 "dns.resp.name": "n0b.akamaiedge.net",
27867 "dns.resp.type": "1",
27868 "dns.resp.class": "0x00000001",
27869 "dns.resp.ttl": "2104",
27870 "dns.resp.len": "4",
27871 "dns.a": "88.221.81.192"
27873 "n1b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
27874 "dns.resp.name": "n1b.akamaiedge.net",
27875 "dns.resp.type": "1",
27876 "dns.resp.class": "0x00000001",
27877 "dns.resp.ttl": "2643",
27878 "dns.resp.len": "4",
27879 "dns.a": "204.2.166.154"
27881 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
27882 "dns.resp.name": "n2b.akamaiedge.net",
27883 "dns.resp.type": "1",
27884 "dns.resp.class": "0x00000001",
27885 "dns.resp.ttl": "5417",
27886 "dns.resp.len": "4",
27887 "dns.a": "96.17.70.175"
27889 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.174": {
27890 "dns.resp.name": "n3b.akamaiedge.net",
27891 "dns.resp.type": "1",
27892 "dns.resp.class": "0x00000001",
27893 "dns.resp.ttl": "1484",
27894 "dns.resp.len": "4",
27895 "dns.a": "96.17.70.174"
27897 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.225": {
27898 "dns.resp.name": "n4b.akamaiedge.net",
27899 "dns.resp.type": "1",
27900 "dns.resp.class": "0x00000001",
27901 "dns.resp.ttl": "5891",
27902 "dns.resp.len": "4",
27903 "dns.a": "209.18.46.225"
27905 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
27906 "dns.resp.name": "n5b.akamaiedge.net",
27907 "dns.resp.type": "1",
27908 "dns.resp.class": "0x00000001",
27909 "dns.resp.ttl": "2443",
27910 "dns.resp.len": "4",
27911 "dns.a": "204.2.166.150"
27913 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
27914 "dns.resp.name": "n6b.akamaiedge.net",
27915 "dns.resp.type": "1",
27916 "dns.resp.class": "0x00000001",
27917 "dns.resp.ttl": "2027",
27918 "dns.resp.len": "4",
27919 "dns.a": "204.2.166.154"
27921 "n7b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
27922 "dns.resp.name": "n7b.akamaiedge.net",
27923 "dns.resp.type": "1",
27924 "dns.resp.class": "0x00000001",
27925 "dns.resp.ttl": "4129",
27926 "dns.resp.len": "4",
27927 "dns.a": "204.2.166.158"
27929 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
27930 "dns.resp.name": "a0b.akamaiedge.net",
27931 "dns.resp.type": "28",
27932 "dns.resp.class": "0x00000001",
27933 "dns.resp.ttl": "1576",
27934 "dns.resp.len": "16",
27935 "dns.aaaa": "2600:1480:e800::c0"
27944 "_index": "packets-2017-10-26",
27945 "_type": "pcap_file",
27950 "frame.encap_type": "1",
27951 "frame.time": "Oct 20, 2017 03:22:53.123990000 PDT",
27952 "frame.offset_shift": "0.000000000",
27953 "frame.time_epoch": "1508494973.123990000",
27954 "frame.time_delta": "1.660357000",
27955 "frame.time_delta_displayed": "900.009904000",
27956 "frame.time_relative": "37260.718786000",
27957 "frame.number": "35283",
27959 "frame.cap_len": "76",
27960 "frame.marked": "0",
27961 "frame.ignored": "0",
27962 "frame.protocols": "eth:ethertype:ip:udp:dns",
27963 "frame.coloring_rule.name": "UDP",
27964 "frame.coloring_rule.string": "udp"
27967 "eth.dst": "b0:b9:8a:73:69:8e",
27969 "eth.dst_resolved": "Netgear_73:69:8e",
27970 "eth.addr": "b0:b9:8a:73:69:8e",
27971 "eth.addr_resolved": "Netgear_73:69:8e",
27975 "eth.src": "00:17:88:69:ee:e4",
27977 "eth.src_resolved": "PhilipsL_69:ee:e4",
27978 "eth.addr": "00:17:88:69:ee:e4",
27979 "eth.addr_resolved": "PhilipsL_69:ee:e4",
27983 "eth.type": "0x00000800"
27987 "ip.hdr_len": "20",
27988 "ip.dsfield": "0x00000000",
27989 "ip.dsfield_tree": {
27990 "ip.dsfield.dscp": "0",
27991 "ip.dsfield.ecn": "0"
27994 "ip.id": "0x000001f8",
27995 "ip.flags": "0x00000002",
27997 "ip.flags.rb": "0",
27998 "ip.flags.df": "1",
28001 "ip.frag_offset": "0",
28004 "ip.checksum": "0x0000b6c5",
28005 "ip.checksum.status": "2",
28006 "ip.src": "192.168.0.160",
28007 "ip.addr": "192.168.0.160",
28008 "ip.src_host": "192.168.0.160",
28009 "ip.host": "192.168.0.160",
28010 "ip.dst": "192.168.0.1",
28011 "ip.addr": "192.168.0.1",
28012 "ip.dst_host": "192.168.0.1",
28013 "ip.host": "192.168.0.1",
28014 "Source GeoIP: Unknown": "",
28015 "Destination GeoIP: Unknown": ""
28018 "udp.srcport": "44922",
28019 "udp.dstport": "53",
28020 "udp.port": "44922",
28022 "udp.length": "42",
28023 "udp.checksum": "0x0000a964",
28024 "udp.checksum.status": "2",
28025 "udp.stream": "372"
28028 "dns.response_in": "35284",
28029 "dns.id": "0x000004d9",
28030 "dns.flags": "0x00000100",
28031 "dns.flags_tree": {
28032 "dns.flags.response": "0",
28033 "dns.flags.opcode": "0",
28034 "dns.flags.truncated": "0",
28035 "dns.flags.recdesired": "1",
28036 "dns.flags.z": "0",
28037 "dns.flags.checkdisable": "0"
28039 "dns.count.queries": "1",
28040 "dns.count.answers": "0",
28041 "dns.count.auth_rr": "0",
28042 "dns.count.add_rr": "0",
28044 "www2.meethue.com: type A, class IN": {
28045 "dns.qry.name": "www2.meethue.com",
28046 "dns.qry.name.len": "16",
28047 "dns.count.labels": "3",
28048 "dns.qry.type": "1",
28049 "dns.qry.class": "0x00000001"
28058 "_index": "packets-2017-10-26",
28059 "_type": "pcap_file",
28064 "frame.encap_type": "1",
28065 "frame.time": "Oct 20, 2017 03:22:53.134103000 PDT",
28066 "frame.offset_shift": "0.000000000",
28067 "frame.time_epoch": "1508494973.134103000",
28068 "frame.time_delta": "0.010113000",
28069 "frame.time_delta_displayed": "0.010113000",
28070 "frame.time_relative": "37260.728899000",
28071 "frame.number": "35284",
28072 "frame.len": "513",
28073 "frame.cap_len": "513",
28074 "frame.marked": "0",
28075 "frame.ignored": "0",
28076 "frame.protocols": "eth:ethertype:ip:udp:dns",
28077 "frame.coloring_rule.name": "UDP",
28078 "frame.coloring_rule.string": "udp"
28081 "eth.dst": "00:17:88:69:ee:e4",
28083 "eth.dst_resolved": "PhilipsL_69:ee:e4",
28084 "eth.addr": "00:17:88:69:ee:e4",
28085 "eth.addr_resolved": "PhilipsL_69:ee:e4",
28089 "eth.src": "b0:b9:8a:73:69:8e",
28091 "eth.src_resolved": "Netgear_73:69:8e",
28092 "eth.addr": "b0:b9:8a:73:69:8e",
28093 "eth.addr_resolved": "Netgear_73:69:8e",
28097 "eth.type": "0x00000800"
28101 "ip.hdr_len": "20",
28102 "ip.dsfield": "0x00000000",
28103 "ip.dsfield_tree": {
28104 "ip.dsfield.dscp": "0",
28105 "ip.dsfield.ecn": "0"
28108 "ip.id": "0x000006d5",
28109 "ip.flags": "0x00000002",
28111 "ip.flags.rb": "0",
28112 "ip.flags.df": "1",
28115 "ip.frag_offset": "0",
28118 "ip.checksum": "0x0000b033",
28119 "ip.checksum.status": "2",
28120 "ip.src": "192.168.0.1",
28121 "ip.addr": "192.168.0.1",
28122 "ip.src_host": "192.168.0.1",
28123 "ip.host": "192.168.0.1",
28124 "ip.dst": "192.168.0.160",
28125 "ip.addr": "192.168.0.160",
28126 "ip.dst_host": "192.168.0.160",
28127 "ip.host": "192.168.0.160",
28128 "Source GeoIP: Unknown": "",
28129 "Destination GeoIP: Unknown": ""
28132 "udp.srcport": "53",
28133 "udp.dstport": "44922",
28135 "udp.port": "44922",
28136 "udp.length": "479",
28137 "udp.checksum": "0x000083e2",
28138 "udp.checksum.status": "2",
28139 "udp.stream": "372"
28142 "dns.response_to": "35283",
28143 "dns.time": "0.010113000",
28144 "dns.id": "0x000004d9",
28145 "dns.flags": "0x00008180",
28146 "dns.flags_tree": {
28147 "dns.flags.response": "1",
28148 "dns.flags.opcode": "0",
28149 "dns.flags.authoritative": "0",
28150 "dns.flags.truncated": "0",
28151 "dns.flags.recdesired": "1",
28152 "dns.flags.recavail": "1",
28153 "dns.flags.z": "0",
28154 "dns.flags.authenticated": "0",
28155 "dns.flags.checkdisable": "0",
28156 "dns.flags.rcode": "0"
28158 "dns.count.queries": "1",
28159 "dns.count.answers": "4",
28160 "dns.count.auth_rr": "9",
28161 "dns.count.add_rr": "9",
28163 "www2.meethue.com: type A, class IN": {
28164 "dns.qry.name": "www2.meethue.com",
28165 "dns.qry.name.len": "16",
28166 "dns.count.labels": "3",
28167 "dns.qry.type": "1",
28168 "dns.qry.class": "0x00000001"
28172 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
28173 "dns.resp.name": "www2.meethue.com",
28174 "dns.resp.type": "5",
28175 "dns.resp.class": "0x00000001",
28176 "dns.resp.ttl": "144",
28177 "dns.resp.len": "41",
28178 "dns.cname": "brands.lighting.philips.com.edgekey.net"
28180 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
28181 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
28182 "dns.resp.type": "5",
28183 "dns.resp.class": "0x00000001",
28184 "dns.resp.ttl": "21444",
28185 "dns.resp.len": "22",
28186 "dns.cname": "e15361.b.akamaiedge.net"
28188 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
28189 "dns.resp.name": "e15361.b.akamaiedge.net",
28190 "dns.resp.type": "1",
28191 "dns.resp.class": "0x00000001",
28192 "dns.resp.ttl": "20",
28193 "dns.resp.len": "4",
28194 "dns.a": "184.84.242.42"
28196 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
28197 "dns.resp.name": "e15361.b.akamaiedge.net",
28198 "dns.resp.type": "1",
28199 "dns.resp.class": "0x00000001",
28200 "dns.resp.ttl": "20",
28201 "dns.resp.len": "4",
28202 "dns.a": "184.84.242.27"
28205 "Authoritative nameservers": {
28206 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
28207 "dns.resp.name": "b.akamaiedge.net",
28208 "dns.resp.type": "2",
28209 "dns.resp.class": "0x00000001",
28210 "dns.resp.ttl": "1673",
28211 "dns.resp.len": "6",
28212 "dns.ns": "n0b.akamaiedge.net"
28214 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
28215 "dns.resp.name": "b.akamaiedge.net",
28216 "dns.resp.type": "2",
28217 "dns.resp.class": "0x00000001",
28218 "dns.resp.ttl": "1673",
28219 "dns.resp.len": "6",
28220 "dns.ns": "n4b.akamaiedge.net"
28222 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
28223 "dns.resp.name": "b.akamaiedge.net",
28224 "dns.resp.type": "2",
28225 "dns.resp.class": "0x00000001",
28226 "dns.resp.ttl": "1673",
28227 "dns.resp.len": "6",
28228 "dns.ns": "a0b.akamaiedge.net"
28230 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
28231 "dns.resp.name": "b.akamaiedge.net",
28232 "dns.resp.type": "2",
28233 "dns.resp.class": "0x00000001",
28234 "dns.resp.ttl": "1673",
28235 "dns.resp.len": "6",
28236 "dns.ns": "n6b.akamaiedge.net"
28238 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
28239 "dns.resp.name": "b.akamaiedge.net",
28240 "dns.resp.type": "2",
28241 "dns.resp.class": "0x00000001",
28242 "dns.resp.ttl": "1673",
28243 "dns.resp.len": "6",
28244 "dns.ns": "n1b.akamaiedge.net"
28246 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
28247 "dns.resp.name": "b.akamaiedge.net",
28248 "dns.resp.type": "2",
28249 "dns.resp.class": "0x00000001",
28250 "dns.resp.ttl": "1673",
28251 "dns.resp.len": "6",
28252 "dns.ns": "n3b.akamaiedge.net"
28254 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
28255 "dns.resp.name": "b.akamaiedge.net",
28256 "dns.resp.type": "2",
28257 "dns.resp.class": "0x00000001",
28258 "dns.resp.ttl": "1673",
28259 "dns.resp.len": "6",
28260 "dns.ns": "n7b.akamaiedge.net"
28262 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
28263 "dns.resp.name": "b.akamaiedge.net",
28264 "dns.resp.type": "2",
28265 "dns.resp.class": "0x00000001",
28266 "dns.resp.ttl": "1673",
28267 "dns.resp.len": "6",
28268 "dns.ns": "n5b.akamaiedge.net"
28270 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
28271 "dns.resp.name": "b.akamaiedge.net",
28272 "dns.resp.type": "2",
28273 "dns.resp.class": "0x00000001",
28274 "dns.resp.ttl": "1673",
28275 "dns.resp.len": "6",
28276 "dns.ns": "n2b.akamaiedge.net"
28279 "Additional records": {
28280 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
28281 "dns.resp.name": "n0b.akamaiedge.net",
28282 "dns.resp.type": "1",
28283 "dns.resp.class": "0x00000001",
28284 "dns.resp.ttl": "1204",
28285 "dns.resp.len": "4",
28286 "dns.a": "88.221.81.192"
28288 "n1b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
28289 "dns.resp.name": "n1b.akamaiedge.net",
28290 "dns.resp.type": "1",
28291 "dns.resp.class": "0x00000001",
28292 "dns.resp.ttl": "1743",
28293 "dns.resp.len": "4",
28294 "dns.a": "204.2.166.154"
28296 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
28297 "dns.resp.name": "n2b.akamaiedge.net",
28298 "dns.resp.type": "1",
28299 "dns.resp.class": "0x00000001",
28300 "dns.resp.ttl": "4517",
28301 "dns.resp.len": "4",
28302 "dns.a": "96.17.70.175"
28304 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.174": {
28305 "dns.resp.name": "n3b.akamaiedge.net",
28306 "dns.resp.type": "1",
28307 "dns.resp.class": "0x00000001",
28308 "dns.resp.ttl": "584",
28309 "dns.resp.len": "4",
28310 "dns.a": "96.17.70.174"
28312 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.225": {
28313 "dns.resp.name": "n4b.akamaiedge.net",
28314 "dns.resp.type": "1",
28315 "dns.resp.class": "0x00000001",
28316 "dns.resp.ttl": "4991",
28317 "dns.resp.len": "4",
28318 "dns.a": "209.18.46.225"
28320 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
28321 "dns.resp.name": "n5b.akamaiedge.net",
28322 "dns.resp.type": "1",
28323 "dns.resp.class": "0x00000001",
28324 "dns.resp.ttl": "1543",
28325 "dns.resp.len": "4",
28326 "dns.a": "204.2.166.150"
28328 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
28329 "dns.resp.name": "n6b.akamaiedge.net",
28330 "dns.resp.type": "1",
28331 "dns.resp.class": "0x00000001",
28332 "dns.resp.ttl": "1127",
28333 "dns.resp.len": "4",
28334 "dns.a": "204.2.166.154"
28336 "n7b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
28337 "dns.resp.name": "n7b.akamaiedge.net",
28338 "dns.resp.type": "1",
28339 "dns.resp.class": "0x00000001",
28340 "dns.resp.ttl": "3229",
28341 "dns.resp.len": "4",
28342 "dns.a": "204.2.166.158"
28344 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
28345 "dns.resp.name": "a0b.akamaiedge.net",
28346 "dns.resp.type": "28",
28347 "dns.resp.class": "0x00000001",
28348 "dns.resp.ttl": "676",
28349 "dns.resp.len": "16",
28350 "dns.aaaa": "2600:1480:e800::c0"
28359 "_index": "packets-2017-10-26",
28360 "_type": "pcap_file",
28365 "frame.encap_type": "1",
28366 "frame.time": "Oct 20, 2017 03:33:22.916241000 PDT",
28367 "frame.offset_shift": "0.000000000",
28368 "frame.time_epoch": "1508495602.916241000",
28369 "frame.time_delta": "3.559096000",
28370 "frame.time_delta_displayed": "629.782138000",
28371 "frame.time_relative": "37890.511037000",
28372 "frame.number": "35811",
28374 "frame.cap_len": "79",
28375 "frame.marked": "0",
28376 "frame.ignored": "0",
28377 "frame.protocols": "eth:ethertype:ip:udp:dns",
28378 "frame.coloring_rule.name": "UDP",
28379 "frame.coloring_rule.string": "udp"
28382 "eth.dst": "b0:b9:8a:73:69:8e",
28384 "eth.dst_resolved": "Netgear_73:69:8e",
28385 "eth.addr": "b0:b9:8a:73:69:8e",
28386 "eth.addr_resolved": "Netgear_73:69:8e",
28390 "eth.src": "00:17:88:69:ee:e4",
28392 "eth.src_resolved": "PhilipsL_69:ee:e4",
28393 "eth.addr": "00:17:88:69:ee:e4",
28394 "eth.addr_resolved": "PhilipsL_69:ee:e4",
28398 "eth.type": "0x00000800"
28402 "ip.hdr_len": "20",
28403 "ip.dsfield": "0x00000000",
28404 "ip.dsfield_tree": {
28405 "ip.dsfield.dscp": "0",
28406 "ip.dsfield.ecn": "0"
28409 "ip.id": "0x00007ba1",
28410 "ip.flags": "0x00000002",
28412 "ip.flags.rb": "0",
28413 "ip.flags.df": "1",
28416 "ip.frag_offset": "0",
28419 "ip.checksum": "0x00003d19",
28420 "ip.checksum.status": "2",
28421 "ip.src": "192.168.0.160",
28422 "ip.addr": "192.168.0.160",
28423 "ip.src_host": "192.168.0.160",
28424 "ip.host": "192.168.0.160",
28425 "ip.dst": "192.168.0.1",
28426 "ip.addr": "192.168.0.1",
28427 "ip.dst_host": "192.168.0.1",
28428 "ip.host": "192.168.0.1",
28429 "Source GeoIP: Unknown": "",
28430 "Destination GeoIP: Unknown": ""
28433 "udp.srcport": "49663",
28434 "udp.dstport": "53",
28435 "udp.port": "49663",
28437 "udp.length": "45",
28438 "udp.checksum": "0x0000fe63",
28439 "udp.checksum.status": "2",
28440 "udp.stream": "376"
28443 "dns.response_in": "35812",
28444 "dns.id": "0x000004da",
28445 "dns.flags": "0x00000100",
28446 "dns.flags_tree": {
28447 "dns.flags.response": "0",
28448 "dns.flags.opcode": "0",
28449 "dns.flags.truncated": "0",
28450 "dns.flags.recdesired": "1",
28451 "dns.flags.z": "0",
28452 "dns.flags.checkdisable": "0"
28454 "dns.count.queries": "1",
28455 "dns.count.answers": "0",
28456 "dns.count.auth_rr": "0",
28457 "dns.count.add_rr": "0",
28459 "dcp.cpp.philips.com: type AAAA, class IN": {
28460 "dns.qry.name": "dcp.cpp.philips.com",
28461 "dns.qry.name.len": "19",
28462 "dns.count.labels": "4",
28463 "dns.qry.type": "28",
28464 "dns.qry.class": "0x00000001"
28473 "_index": "packets-2017-10-26",
28474 "_type": "pcap_file",
28479 "frame.encap_type": "1",
28480 "frame.time": "Oct 20, 2017 03:33:22.918183000 PDT",
28481 "frame.offset_shift": "0.000000000",
28482 "frame.time_epoch": "1508495602.918183000",
28483 "frame.time_delta": "0.001942000",
28484 "frame.time_delta_displayed": "0.001942000",
28485 "frame.time_relative": "37890.512979000",
28486 "frame.number": "35812",
28487 "frame.len": "137",
28488 "frame.cap_len": "137",
28489 "frame.marked": "0",
28490 "frame.ignored": "0",
28491 "frame.protocols": "eth:ethertype:ip:udp:dns",
28492 "frame.coloring_rule.name": "UDP",
28493 "frame.coloring_rule.string": "udp"
28496 "eth.dst": "00:17:88:69:ee:e4",
28498 "eth.dst_resolved": "PhilipsL_69:ee:e4",
28499 "eth.addr": "00:17:88:69:ee:e4",
28500 "eth.addr_resolved": "PhilipsL_69:ee:e4",
28504 "eth.src": "b0:b9:8a:73:69:8e",
28506 "eth.src_resolved": "Netgear_73:69:8e",
28507 "eth.addr": "b0:b9:8a:73:69:8e",
28508 "eth.addr_resolved": "Netgear_73:69:8e",
28512 "eth.type": "0x00000800"
28516 "ip.hdr_len": "20",
28517 "ip.dsfield": "0x00000000",
28518 "ip.dsfield_tree": {
28519 "ip.dsfield.dscp": "0",
28520 "ip.dsfield.ecn": "0"
28523 "ip.id": "0x0000d276",
28524 "ip.flags": "0x00000002",
28526 "ip.flags.rb": "0",
28527 "ip.flags.df": "1",
28530 "ip.frag_offset": "0",
28533 "ip.checksum": "0x0000e609",
28534 "ip.checksum.status": "2",
28535 "ip.src": "192.168.0.1",
28536 "ip.addr": "192.168.0.1",
28537 "ip.src_host": "192.168.0.1",
28538 "ip.host": "192.168.0.1",
28539 "ip.dst": "192.168.0.160",
28540 "ip.addr": "192.168.0.160",
28541 "ip.dst_host": "192.168.0.160",
28542 "ip.host": "192.168.0.160",
28543 "Source GeoIP: Unknown": "",
28544 "Destination GeoIP: Unknown": ""
28547 "udp.srcport": "53",
28548 "udp.dstport": "49663",
28550 "udp.port": "49663",
28551 "udp.length": "103",
28552 "udp.checksum": "0x0000826a",
28553 "udp.checksum.status": "2",
28554 "udp.stream": "376"
28557 "dns.response_to": "35811",
28558 "dns.time": "0.001942000",
28559 "dns.id": "0x000004da",
28560 "dns.flags": "0x00008180",
28561 "dns.flags_tree": {
28562 "dns.flags.response": "1",
28563 "dns.flags.opcode": "0",
28564 "dns.flags.authoritative": "0",
28565 "dns.flags.truncated": "0",
28566 "dns.flags.recdesired": "1",
28567 "dns.flags.recavail": "1",
28568 "dns.flags.z": "0",
28569 "dns.flags.authenticated": "0",
28570 "dns.flags.checkdisable": "0",
28571 "dns.flags.rcode": "0"
28573 "dns.count.queries": "1",
28574 "dns.count.answers": "0",
28575 "dns.count.auth_rr": "1",
28576 "dns.count.add_rr": "0",
28578 "dcp.cpp.philips.com: type AAAA, class IN": {
28579 "dns.qry.name": "dcp.cpp.philips.com",
28580 "dns.qry.name.len": "19",
28581 "dns.count.labels": "4",
28582 "dns.qry.type": "28",
28583 "dns.qry.class": "0x00000001"
28586 "Authoritative nameservers": {
28587 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
28588 "dns.resp.name": "cpp.philips.com",
28589 "dns.resp.type": "6",
28590 "dns.resp.class": "0x00000001",
28591 "dns.resp.ttl": "1787",
28592 "dns.resp.len": "46",
28593 "dns.soa.mname": "ns1.ext.philips.com",
28594 "dns.soa.rname": "ddi-authority.philips.com",
28595 "dns.soa.serial_number": "387",
28596 "dns.soa.refresh_interval": "1200",
28597 "dns.soa.retry_interval": "300",
28598 "dns.soa.expire_limit": "1209600",
28599 "dns.soa.mininum_ttl": "3600"
28608 "_index": "packets-2017-10-26",
28609 "_type": "pcap_file",
28614 "frame.encap_type": "1",
28615 "frame.time": "Oct 20, 2017 03:33:22.920557000 PDT",
28616 "frame.offset_shift": "0.000000000",
28617 "frame.time_epoch": "1508495602.920557000",
28618 "frame.time_delta": "0.002374000",
28619 "frame.time_delta_displayed": "0.002374000",
28620 "frame.time_relative": "37890.515353000",
28621 "frame.number": "35813",
28623 "frame.cap_len": "79",
28624 "frame.marked": "0",
28625 "frame.ignored": "0",
28626 "frame.protocols": "eth:ethertype:ip:udp:dns",
28627 "frame.coloring_rule.name": "UDP",
28628 "frame.coloring_rule.string": "udp"
28631 "eth.dst": "b0:b9:8a:73:69:8e",
28633 "eth.dst_resolved": "Netgear_73:69:8e",
28634 "eth.addr": "b0:b9:8a:73:69:8e",
28635 "eth.addr_resolved": "Netgear_73:69:8e",
28639 "eth.src": "00:17:88:69:ee:e4",
28641 "eth.src_resolved": "PhilipsL_69:ee:e4",
28642 "eth.addr": "00:17:88:69:ee:e4",
28643 "eth.addr_resolved": "PhilipsL_69:ee:e4",
28647 "eth.type": "0x00000800"
28651 "ip.hdr_len": "20",
28652 "ip.dsfield": "0x00000000",
28653 "ip.dsfield_tree": {
28654 "ip.dsfield.dscp": "0",
28655 "ip.dsfield.ecn": "0"
28658 "ip.id": "0x00007ba2",
28659 "ip.flags": "0x00000002",
28661 "ip.flags.rb": "0",
28662 "ip.flags.df": "1",
28665 "ip.frag_offset": "0",
28668 "ip.checksum": "0x00003d18",
28669 "ip.checksum.status": "2",
28670 "ip.src": "192.168.0.160",
28671 "ip.addr": "192.168.0.160",
28672 "ip.src_host": "192.168.0.160",
28673 "ip.host": "192.168.0.160",
28674 "ip.dst": "192.168.0.1",
28675 "ip.addr": "192.168.0.1",
28676 "ip.dst_host": "192.168.0.1",
28677 "ip.host": "192.168.0.1",
28678 "Source GeoIP: Unknown": "",
28679 "Destination GeoIP: Unknown": ""
28682 "udp.srcport": "33688",
28683 "udp.dstport": "53",
28684 "udp.port": "33688",
28686 "udp.length": "45",
28687 "udp.checksum": "0x000057ca",
28688 "udp.checksum.status": "2",
28689 "udp.stream": "377"
28692 "dns.response_in": "35814",
28693 "dns.id": "0x000004db",
28694 "dns.flags": "0x00000100",
28695 "dns.flags_tree": {
28696 "dns.flags.response": "0",
28697 "dns.flags.opcode": "0",
28698 "dns.flags.truncated": "0",
28699 "dns.flags.recdesired": "1",
28700 "dns.flags.z": "0",
28701 "dns.flags.checkdisable": "0"
28703 "dns.count.queries": "1",
28704 "dns.count.answers": "0",
28705 "dns.count.auth_rr": "0",
28706 "dns.count.add_rr": "0",
28708 "dcp.cpp.philips.com: type A, class IN": {
28709 "dns.qry.name": "dcp.cpp.philips.com",
28710 "dns.qry.name.len": "19",
28711 "dns.count.labels": "4",
28712 "dns.qry.type": "1",
28713 "dns.qry.class": "0x00000001"
28722 "_index": "packets-2017-10-26",
28723 "_type": "pcap_file",
28728 "frame.encap_type": "1",
28729 "frame.time": "Oct 20, 2017 03:33:22.922284000 PDT",
28730 "frame.offset_shift": "0.000000000",
28731 "frame.time_epoch": "1508495602.922284000",
28732 "frame.time_delta": "0.001727000",
28733 "frame.time_delta_displayed": "0.001727000",
28734 "frame.time_relative": "37890.517080000",
28735 "frame.number": "35814",
28736 "frame.len": "285",
28737 "frame.cap_len": "285",
28738 "frame.marked": "0",
28739 "frame.ignored": "0",
28740 "frame.protocols": "eth:ethertype:ip:udp:dns",
28741 "frame.coloring_rule.name": "UDP",
28742 "frame.coloring_rule.string": "udp"
28745 "eth.dst": "00:17:88:69:ee:e4",
28747 "eth.dst_resolved": "PhilipsL_69:ee:e4",
28748 "eth.addr": "00:17:88:69:ee:e4",
28749 "eth.addr_resolved": "PhilipsL_69:ee:e4",
28753 "eth.src": "b0:b9:8a:73:69:8e",
28755 "eth.src_resolved": "Netgear_73:69:8e",
28756 "eth.addr": "b0:b9:8a:73:69:8e",
28757 "eth.addr_resolved": "Netgear_73:69:8e",
28761 "eth.type": "0x00000800"
28765 "ip.hdr_len": "20",
28766 "ip.dsfield": "0x00000000",
28767 "ip.dsfield_tree": {
28768 "ip.dsfield.dscp": "0",
28769 "ip.dsfield.ecn": "0"
28772 "ip.id": "0x0000d277",
28773 "ip.flags": "0x00000002",
28775 "ip.flags.rb": "0",
28776 "ip.flags.df": "1",
28779 "ip.frag_offset": "0",
28782 "ip.checksum": "0x0000e574",
28783 "ip.checksum.status": "2",
28784 "ip.src": "192.168.0.1",
28785 "ip.addr": "192.168.0.1",
28786 "ip.src_host": "192.168.0.1",
28787 "ip.host": "192.168.0.1",
28788 "ip.dst": "192.168.0.160",
28789 "ip.addr": "192.168.0.160",
28790 "ip.dst_host": "192.168.0.160",
28791 "ip.host": "192.168.0.160",
28792 "Source GeoIP: Unknown": "",
28793 "Destination GeoIP: Unknown": ""
28796 "udp.srcport": "53",
28797 "udp.dstport": "33688",
28799 "udp.port": "33688",
28800 "udp.length": "251",
28801 "udp.checksum": "0x000082fe",
28802 "udp.checksum.status": "2",
28803 "udp.stream": "377"
28806 "dns.response_to": "35813",
28807 "dns.time": "0.001727000",
28808 "dns.id": "0x000004db",
28809 "dns.flags": "0x00008180",
28810 "dns.flags_tree": {
28811 "dns.flags.response": "1",
28812 "dns.flags.opcode": "0",
28813 "dns.flags.authoritative": "0",
28814 "dns.flags.truncated": "0",
28815 "dns.flags.recdesired": "1",
28816 "dns.flags.recavail": "1",
28817 "dns.flags.z": "0",
28818 "dns.flags.authenticated": "0",
28819 "dns.flags.checkdisable": "0",
28820 "dns.flags.rcode": "0"
28822 "dns.count.queries": "1",
28823 "dns.count.answers": "1",
28824 "dns.count.auth_rr": "3",
28825 "dns.count.add_rr": "6",
28827 "dcp.cpp.philips.com: type A, class IN": {
28828 "dns.qry.name": "dcp.cpp.philips.com",
28829 "dns.qry.name.len": "19",
28830 "dns.count.labels": "4",
28831 "dns.qry.type": "1",
28832 "dns.qry.class": "0x00000001"
28836 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
28837 "dns.resp.name": "dcp.cpp.philips.com",
28838 "dns.resp.type": "1",
28839 "dns.resp.class": "0x00000001",
28840 "dns.resp.ttl": "2989",
28841 "dns.resp.len": "4",
28842 "dns.a": "5.79.62.93"
28845 "Authoritative nameservers": {
28846 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
28847 "dns.resp.name": "cpp.philips.com",
28848 "dns.resp.type": "2",
28849 "dns.resp.class": "0x00000001",
28850 "dns.resp.ttl": "1787",
28851 "dns.resp.len": "10",
28852 "dns.ns": "ns3.ext.philips.com"
28854 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
28855 "dns.resp.name": "cpp.philips.com",
28856 "dns.resp.type": "2",
28857 "dns.resp.class": "0x00000001",
28858 "dns.resp.ttl": "1787",
28859 "dns.resp.len": "6",
28860 "dns.ns": "ns1.ext.philips.com"
28862 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
28863 "dns.resp.name": "cpp.philips.com",
28864 "dns.resp.type": "2",
28865 "dns.resp.class": "0x00000001",
28866 "dns.resp.ttl": "1787",
28867 "dns.resp.len": "6",
28868 "dns.ns": "ns2.ext.philips.com"
28871 "Additional records": {
28872 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
28873 "dns.resp.name": "ns1.ext.philips.com",
28874 "dns.resp.type": "1",
28875 "dns.resp.class": "0x00000001",
28876 "dns.resp.ttl": "119008",
28877 "dns.resp.len": "4",
28878 "dns.a": "57.67.40.20"
28880 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
28881 "dns.resp.name": "ns2.ext.philips.com",
28882 "dns.resp.type": "1",
28883 "dns.resp.class": "0x00000001",
28884 "dns.resp.ttl": "143726",
28885 "dns.resp.len": "4",
28886 "dns.a": "57.77.21.76"
28888 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
28889 "dns.resp.name": "ns3.ext.philips.com",
28890 "dns.resp.type": "1",
28891 "dns.resp.class": "0x00000001",
28892 "dns.resp.ttl": "143726",
28893 "dns.resp.len": "4",
28894 "dns.a": "57.73.36.68"
28896 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
28897 "dns.resp.name": "ns1.ext.philips.com",
28898 "dns.resp.type": "28",
28899 "dns.resp.class": "0x00000001",
28900 "dns.resp.ttl": "122627",
28901 "dns.resp.len": "16",
28902 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
28904 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
28905 "dns.resp.name": "ns2.ext.philips.com",
28906 "dns.resp.type": "28",
28907 "dns.resp.class": "0x00000001",
28908 "dns.resp.ttl": "115200",
28909 "dns.resp.len": "16",
28910 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
28912 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
28913 "dns.resp.name": "ns3.ext.philips.com",
28914 "dns.resp.type": "28",
28915 "dns.resp.class": "0x00000001",
28916 "dns.resp.ttl": "115200",
28917 "dns.resp.len": "16",
28918 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
28927 "_index": "packets-2017-10-26",
28928 "_type": "pcap_file",
28933 "frame.encap_type": "1",
28934 "frame.time": "Oct 20, 2017 03:33:23.341511000 PDT",
28935 "frame.offset_shift": "0.000000000",
28936 "frame.time_epoch": "1508495603.341511000",
28937 "frame.time_delta": "0.001324000",
28938 "frame.time_delta_displayed": "0.419227000",
28939 "frame.time_relative": "37890.936307000",
28940 "frame.number": "35830",
28942 "frame.cap_len": "79",
28943 "frame.marked": "0",
28944 "frame.ignored": "0",
28945 "frame.protocols": "eth:ethertype:ip:udp:dns",
28946 "frame.coloring_rule.name": "UDP",
28947 "frame.coloring_rule.string": "udp"
28950 "eth.dst": "b0:b9:8a:73:69:8e",
28952 "eth.dst_resolved": "Netgear_73:69:8e",
28953 "eth.addr": "b0:b9:8a:73:69:8e",
28954 "eth.addr_resolved": "Netgear_73:69:8e",
28958 "eth.src": "00:17:88:69:ee:e4",
28960 "eth.src_resolved": "PhilipsL_69:ee:e4",
28961 "eth.addr": "00:17:88:69:ee:e4",
28962 "eth.addr_resolved": "PhilipsL_69:ee:e4",
28966 "eth.type": "0x00000800"
28970 "ip.hdr_len": "20",
28971 "ip.dsfield": "0x00000000",
28972 "ip.dsfield_tree": {
28973 "ip.dsfield.dscp": "0",
28974 "ip.dsfield.ecn": "0"
28977 "ip.id": "0x00007bba",
28978 "ip.flags": "0x00000002",
28980 "ip.flags.rb": "0",
28981 "ip.flags.df": "1",
28984 "ip.frag_offset": "0",
28987 "ip.checksum": "0x00003d00",
28988 "ip.checksum.status": "2",
28989 "ip.src": "192.168.0.160",
28990 "ip.addr": "192.168.0.160",
28991 "ip.src_host": "192.168.0.160",
28992 "ip.host": "192.168.0.160",
28993 "ip.dst": "192.168.0.1",
28994 "ip.addr": "192.168.0.1",
28995 "ip.dst_host": "192.168.0.1",
28996 "ip.host": "192.168.0.1",
28997 "Source GeoIP: Unknown": "",
28998 "Destination GeoIP: Unknown": ""
29001 "udp.srcport": "36096",
29002 "udp.dstport": "53",
29003 "udp.port": "36096",
29005 "udp.length": "45",
29006 "udp.checksum": "0x00003361",
29007 "udp.checksum.status": "2",
29008 "udp.stream": "378"
29011 "dns.response_in": "35831",
29012 "dns.id": "0x000004dc",
29013 "dns.flags": "0x00000100",
29014 "dns.flags_tree": {
29015 "dns.flags.response": "0",
29016 "dns.flags.opcode": "0",
29017 "dns.flags.truncated": "0",
29018 "dns.flags.recdesired": "1",
29019 "dns.flags.z": "0",
29020 "dns.flags.checkdisable": "0"
29022 "dns.count.queries": "1",
29023 "dns.count.answers": "0",
29024 "dns.count.auth_rr": "0",
29025 "dns.count.add_rr": "0",
29027 "dcp.cpp.philips.com: type AAAA, class IN": {
29028 "dns.qry.name": "dcp.cpp.philips.com",
29029 "dns.qry.name.len": "19",
29030 "dns.count.labels": "4",
29031 "dns.qry.type": "28",
29032 "dns.qry.class": "0x00000001"
29041 "_index": "packets-2017-10-26",
29042 "_type": "pcap_file",
29047 "frame.encap_type": "1",
29048 "frame.time": "Oct 20, 2017 03:33:23.341806000 PDT",
29049 "frame.offset_shift": "0.000000000",
29050 "frame.time_epoch": "1508495603.341806000",
29051 "frame.time_delta": "0.000295000",
29052 "frame.time_delta_displayed": "0.000295000",
29053 "frame.time_relative": "37890.936602000",
29054 "frame.number": "35831",
29056 "frame.cap_len": "79",
29057 "frame.marked": "0",
29058 "frame.ignored": "0",
29059 "frame.protocols": "eth:ethertype:ip:udp:dns",
29060 "frame.coloring_rule.name": "UDP",
29061 "frame.coloring_rule.string": "udp"
29064 "eth.dst": "00:17:88:69:ee:e4",
29066 "eth.dst_resolved": "PhilipsL_69:ee:e4",
29067 "eth.addr": "00:17:88:69:ee:e4",
29068 "eth.addr_resolved": "PhilipsL_69:ee:e4",
29072 "eth.src": "b0:b9:8a:73:69:8e",
29074 "eth.src_resolved": "Netgear_73:69:8e",
29075 "eth.addr": "b0:b9:8a:73:69:8e",
29076 "eth.addr_resolved": "Netgear_73:69:8e",
29080 "eth.type": "0x00000800"
29084 "ip.hdr_len": "20",
29085 "ip.dsfield": "0x00000000",
29086 "ip.dsfield_tree": {
29087 "ip.dsfield.dscp": "0",
29088 "ip.dsfield.ecn": "0"
29091 "ip.id": "0x0000d284",
29092 "ip.flags": "0x00000002",
29094 "ip.flags.rb": "0",
29095 "ip.flags.df": "1",
29098 "ip.frag_offset": "0",
29101 "ip.checksum": "0x0000e635",
29102 "ip.checksum.status": "2",
29103 "ip.src": "192.168.0.1",
29104 "ip.addr": "192.168.0.1",
29105 "ip.src_host": "192.168.0.1",
29106 "ip.host": "192.168.0.1",
29107 "ip.dst": "192.168.0.160",
29108 "ip.addr": "192.168.0.160",
29109 "ip.dst_host": "192.168.0.160",
29110 "ip.host": "192.168.0.160",
29111 "Source GeoIP: Unknown": "",
29112 "Destination GeoIP: Unknown": ""
29115 "udp.srcport": "53",
29116 "udp.dstport": "36096",
29118 "udp.port": "36096",
29119 "udp.length": "45",
29120 "udp.checksum": "0x00008230",
29121 "udp.checksum.status": "2",
29122 "udp.stream": "378"
29125 "dns.response_to": "35830",
29126 "dns.time": "0.000295000",
29127 "dns.id": "0x000004dc",
29128 "dns.flags": "0x00008180",
29129 "dns.flags_tree": {
29130 "dns.flags.response": "1",
29131 "dns.flags.opcode": "0",
29132 "dns.flags.authoritative": "0",
29133 "dns.flags.truncated": "0",
29134 "dns.flags.recdesired": "1",
29135 "dns.flags.recavail": "1",
29136 "dns.flags.z": "0",
29137 "dns.flags.authenticated": "0",
29138 "dns.flags.checkdisable": "0",
29139 "dns.flags.rcode": "0"
29141 "dns.count.queries": "1",
29142 "dns.count.answers": "0",
29143 "dns.count.auth_rr": "0",
29144 "dns.count.add_rr": "0",
29146 "dcp.cpp.philips.com: type AAAA, class IN": {
29147 "dns.qry.name": "dcp.cpp.philips.com",
29148 "dns.qry.name.len": "19",
29149 "dns.count.labels": "4",
29150 "dns.qry.type": "28",
29151 "dns.qry.class": "0x00000001"
29160 "_index": "packets-2017-10-26",
29161 "_type": "pcap_file",
29166 "frame.encap_type": "1",
29167 "frame.time": "Oct 20, 2017 03:33:23.342577000 PDT",
29168 "frame.offset_shift": "0.000000000",
29169 "frame.time_epoch": "1508495603.342577000",
29170 "frame.time_delta": "0.000771000",
29171 "frame.time_delta_displayed": "0.000771000",
29172 "frame.time_relative": "37890.937373000",
29173 "frame.number": "35832",
29175 "frame.cap_len": "79",
29176 "frame.marked": "0",
29177 "frame.ignored": "0",
29178 "frame.protocols": "eth:ethertype:ip:udp:dns",
29179 "frame.coloring_rule.name": "UDP",
29180 "frame.coloring_rule.string": "udp"
29183 "eth.dst": "b0:b9:8a:73:69:8e",
29185 "eth.dst_resolved": "Netgear_73:69:8e",
29186 "eth.addr": "b0:b9:8a:73:69:8e",
29187 "eth.addr_resolved": "Netgear_73:69:8e",
29191 "eth.src": "00:17:88:69:ee:e4",
29193 "eth.src_resolved": "PhilipsL_69:ee:e4",
29194 "eth.addr": "00:17:88:69:ee:e4",
29195 "eth.addr_resolved": "PhilipsL_69:ee:e4",
29199 "eth.type": "0x00000800"
29203 "ip.hdr_len": "20",
29204 "ip.dsfield": "0x00000000",
29205 "ip.dsfield_tree": {
29206 "ip.dsfield.dscp": "0",
29207 "ip.dsfield.ecn": "0"
29210 "ip.id": "0x00007bbb",
29211 "ip.flags": "0x00000002",
29213 "ip.flags.rb": "0",
29214 "ip.flags.df": "1",
29217 "ip.frag_offset": "0",
29220 "ip.checksum": "0x00003cff",
29221 "ip.checksum.status": "2",
29222 "ip.src": "192.168.0.160",
29223 "ip.addr": "192.168.0.160",
29224 "ip.src_host": "192.168.0.160",
29225 "ip.host": "192.168.0.160",
29226 "ip.dst": "192.168.0.1",
29227 "ip.addr": "192.168.0.1",
29228 "ip.dst_host": "192.168.0.1",
29229 "ip.host": "192.168.0.1",
29230 "Source GeoIP: Unknown": "",
29231 "Destination GeoIP: Unknown": ""
29234 "udp.srcport": "49358",
29235 "udp.dstport": "53",
29236 "udp.port": "49358",
29238 "udp.length": "45",
29239 "udp.checksum": "0x00001a92",
29240 "udp.checksum.status": "2",
29241 "udp.stream": "379"
29244 "dns.response_in": "35833",
29245 "dns.id": "0x000004dd",
29246 "dns.flags": "0x00000100",
29247 "dns.flags_tree": {
29248 "dns.flags.response": "0",
29249 "dns.flags.opcode": "0",
29250 "dns.flags.truncated": "0",
29251 "dns.flags.recdesired": "1",
29252 "dns.flags.z": "0",
29253 "dns.flags.checkdisable": "0"
29255 "dns.count.queries": "1",
29256 "dns.count.answers": "0",
29257 "dns.count.auth_rr": "0",
29258 "dns.count.add_rr": "0",
29260 "dcp.cpp.philips.com: type A, class IN": {
29261 "dns.qry.name": "dcp.cpp.philips.com",
29262 "dns.qry.name.len": "19",
29263 "dns.count.labels": "4",
29264 "dns.qry.type": "1",
29265 "dns.qry.class": "0x00000001"
29274 "_index": "packets-2017-10-26",
29275 "_type": "pcap_file",
29280 "frame.encap_type": "1",
29281 "frame.time": "Oct 20, 2017 03:33:23.342908000 PDT",
29282 "frame.offset_shift": "0.000000000",
29283 "frame.time_epoch": "1508495603.342908000",
29284 "frame.time_delta": "0.000331000",
29285 "frame.time_delta_displayed": "0.000331000",
29286 "frame.time_relative": "37890.937704000",
29287 "frame.number": "35833",
29289 "frame.cap_len": "95",
29290 "frame.marked": "0",
29291 "frame.ignored": "0",
29292 "frame.protocols": "eth:ethertype:ip:udp:dns",
29293 "frame.coloring_rule.name": "UDP",
29294 "frame.coloring_rule.string": "udp"
29297 "eth.dst": "00:17:88:69:ee:e4",
29299 "eth.dst_resolved": "PhilipsL_69:ee:e4",
29300 "eth.addr": "00:17:88:69:ee:e4",
29301 "eth.addr_resolved": "PhilipsL_69:ee:e4",
29305 "eth.src": "b0:b9:8a:73:69:8e",
29307 "eth.src_resolved": "Netgear_73:69:8e",
29308 "eth.addr": "b0:b9:8a:73:69:8e",
29309 "eth.addr_resolved": "Netgear_73:69:8e",
29313 "eth.type": "0x00000800"
29317 "ip.hdr_len": "20",
29318 "ip.dsfield": "0x00000000",
29319 "ip.dsfield_tree": {
29320 "ip.dsfield.dscp": "0",
29321 "ip.dsfield.ecn": "0"
29324 "ip.id": "0x0000d285",
29325 "ip.flags": "0x00000002",
29327 "ip.flags.rb": "0",
29328 "ip.flags.df": "1",
29331 "ip.frag_offset": "0",
29334 "ip.checksum": "0x0000e624",
29335 "ip.checksum.status": "2",
29336 "ip.src": "192.168.0.1",
29337 "ip.addr": "192.168.0.1",
29338 "ip.src_host": "192.168.0.1",
29339 "ip.host": "192.168.0.1",
29340 "ip.dst": "192.168.0.160",
29341 "ip.addr": "192.168.0.160",
29342 "ip.dst_host": "192.168.0.160",
29343 "ip.host": "192.168.0.160",
29344 "Source GeoIP: Unknown": "",
29345 "Destination GeoIP: Unknown": ""
29348 "udp.srcport": "53",
29349 "udp.dstport": "49358",
29351 "udp.port": "49358",
29352 "udp.length": "61",
29353 "udp.checksum": "0x00008240",
29354 "udp.checksum.status": "2",
29355 "udp.stream": "379"
29358 "dns.response_to": "35832",
29359 "dns.time": "0.000331000",
29360 "dns.id": "0x000004dd",
29361 "dns.flags": "0x00008180",
29362 "dns.flags_tree": {
29363 "dns.flags.response": "1",
29364 "dns.flags.opcode": "0",
29365 "dns.flags.authoritative": "0",
29366 "dns.flags.truncated": "0",
29367 "dns.flags.recdesired": "1",
29368 "dns.flags.recavail": "1",
29369 "dns.flags.z": "0",
29370 "dns.flags.authenticated": "0",
29371 "dns.flags.checkdisable": "0",
29372 "dns.flags.rcode": "0"
29374 "dns.count.queries": "1",
29375 "dns.count.answers": "1",
29376 "dns.count.auth_rr": "0",
29377 "dns.count.add_rr": "0",
29379 "dcp.cpp.philips.com: type A, class IN": {
29380 "dns.qry.name": "dcp.cpp.philips.com",
29381 "dns.qry.name.len": "19",
29382 "dns.count.labels": "4",
29383 "dns.qry.type": "1",
29384 "dns.qry.class": "0x00000001"
29388 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
29389 "dns.resp.name": "dcp.cpp.philips.com",
29390 "dns.resp.type": "1",
29391 "dns.resp.class": "0x00000001",
29392 "dns.resp.ttl": "2988",
29393 "dns.resp.len": "4",
29394 "dns.a": "5.79.62.93"
29403 "_index": "packets-2017-10-26",
29404 "_type": "pcap_file",
29409 "frame.encap_type": "1",
29410 "frame.time": "Oct 20, 2017 03:37:53.142390000 PDT",
29411 "frame.offset_shift": "0.000000000",
29412 "frame.time_epoch": "1508495873.142390000",
29413 "frame.time_delta": "3.770169000",
29414 "frame.time_delta_displayed": "269.799482000",
29415 "frame.time_relative": "38160.737186000",
29416 "frame.number": "36053",
29418 "frame.cap_len": "76",
29419 "frame.marked": "0",
29420 "frame.ignored": "0",
29421 "frame.protocols": "eth:ethertype:ip:udp:dns",
29422 "frame.coloring_rule.name": "UDP",
29423 "frame.coloring_rule.string": "udp"
29426 "eth.dst": "b0:b9:8a:73:69:8e",
29428 "eth.dst_resolved": "Netgear_73:69:8e",
29429 "eth.addr": "b0:b9:8a:73:69:8e",
29430 "eth.addr_resolved": "Netgear_73:69:8e",
29434 "eth.src": "00:17:88:69:ee:e4",
29436 "eth.src_resolved": "PhilipsL_69:ee:e4",
29437 "eth.addr": "00:17:88:69:ee:e4",
29438 "eth.addr_resolved": "PhilipsL_69:ee:e4",
29442 "eth.type": "0x00000800"
29446 "ip.hdr_len": "20",
29447 "ip.dsfield": "0x00000000",
29448 "ip.dsfield_tree": {
29449 "ip.dsfield.dscp": "0",
29450 "ip.dsfield.ecn": "0"
29453 "ip.id": "0x0000d08e",
29454 "ip.flags": "0x00000002",
29456 "ip.flags.rb": "0",
29457 "ip.flags.df": "1",
29460 "ip.frag_offset": "0",
29463 "ip.checksum": "0x0000e82e",
29464 "ip.checksum.status": "2",
29465 "ip.src": "192.168.0.160",
29466 "ip.addr": "192.168.0.160",
29467 "ip.src_host": "192.168.0.160",
29468 "ip.host": "192.168.0.160",
29469 "ip.dst": "192.168.0.1",
29470 "ip.addr": "192.168.0.1",
29471 "ip.dst_host": "192.168.0.1",
29472 "ip.host": "192.168.0.1",
29473 "Source GeoIP: Unknown": "",
29474 "Destination GeoIP: Unknown": ""
29477 "udp.srcport": "36775",
29478 "udp.dstport": "53",
29479 "udp.port": "36775",
29481 "udp.length": "42",
29482 "udp.checksum": "0x0000c932",
29483 "udp.checksum.status": "2",
29484 "udp.stream": "380"
29487 "dns.response_in": "36054",
29488 "dns.id": "0x000004de",
29489 "dns.flags": "0x00000100",
29490 "dns.flags_tree": {
29491 "dns.flags.response": "0",
29492 "dns.flags.opcode": "0",
29493 "dns.flags.truncated": "0",
29494 "dns.flags.recdesired": "1",
29495 "dns.flags.z": "0",
29496 "dns.flags.checkdisable": "0"
29498 "dns.count.queries": "1",
29499 "dns.count.answers": "0",
29500 "dns.count.auth_rr": "0",
29501 "dns.count.add_rr": "0",
29503 "www2.meethue.com: type A, class IN": {
29504 "dns.qry.name": "www2.meethue.com",
29505 "dns.qry.name.len": "16",
29506 "dns.count.labels": "3",
29507 "dns.qry.type": "1",
29508 "dns.qry.class": "0x00000001"
29517 "_index": "packets-2017-10-26",
29518 "_type": "pcap_file",
29523 "frame.encap_type": "1",
29524 "frame.time": "Oct 20, 2017 03:37:53.148990000 PDT",
29525 "frame.offset_shift": "0.000000000",
29526 "frame.time_epoch": "1508495873.148990000",
29527 "frame.time_delta": "0.006600000",
29528 "frame.time_delta_displayed": "0.006600000",
29529 "frame.time_relative": "38160.743786000",
29530 "frame.number": "36054",
29531 "frame.len": "513",
29532 "frame.cap_len": "513",
29533 "frame.marked": "0",
29534 "frame.ignored": "0",
29535 "frame.protocols": "eth:ethertype:ip:udp:dns",
29536 "frame.coloring_rule.name": "UDP",
29537 "frame.coloring_rule.string": "udp"
29540 "eth.dst": "00:17:88:69:ee:e4",
29542 "eth.dst_resolved": "PhilipsL_69:ee:e4",
29543 "eth.addr": "00:17:88:69:ee:e4",
29544 "eth.addr_resolved": "PhilipsL_69:ee:e4",
29548 "eth.src": "b0:b9:8a:73:69:8e",
29550 "eth.src_resolved": "Netgear_73:69:8e",
29551 "eth.addr": "b0:b9:8a:73:69:8e",
29552 "eth.addr_resolved": "Netgear_73:69:8e",
29556 "eth.type": "0x00000800"
29560 "ip.hdr_len": "20",
29561 "ip.dsfield": "0x00000000",
29562 "ip.dsfield_tree": {
29563 "ip.dsfield.dscp": "0",
29564 "ip.dsfield.ecn": "0"
29567 "ip.id": "0x0000fff7",
29568 "ip.flags": "0x00000002",
29570 "ip.flags.rb": "0",
29571 "ip.flags.df": "1",
29574 "ip.frag_offset": "0",
29577 "ip.checksum": "0x0000b710",
29578 "ip.checksum.status": "2",
29579 "ip.src": "192.168.0.1",
29580 "ip.addr": "192.168.0.1",
29581 "ip.src_host": "192.168.0.1",
29582 "ip.host": "192.168.0.1",
29583 "ip.dst": "192.168.0.160",
29584 "ip.addr": "192.168.0.160",
29585 "ip.dst_host": "192.168.0.160",
29586 "ip.host": "192.168.0.160",
29587 "Source GeoIP: Unknown": "",
29588 "Destination GeoIP: Unknown": ""
29591 "udp.srcport": "53",
29592 "udp.dstport": "36775",
29594 "udp.port": "36775",
29595 "udp.length": "479",
29596 "udp.checksum": "0x000083e2",
29597 "udp.checksum.status": "2",
29598 "udp.stream": "380"
29601 "dns.response_to": "36053",
29602 "dns.time": "0.006600000",
29603 "dns.id": "0x000004de",
29604 "dns.flags": "0x00008180",
29605 "dns.flags_tree": {
29606 "dns.flags.response": "1",
29607 "dns.flags.opcode": "0",
29608 "dns.flags.authoritative": "0",
29609 "dns.flags.truncated": "0",
29610 "dns.flags.recdesired": "1",
29611 "dns.flags.recavail": "1",
29612 "dns.flags.z": "0",
29613 "dns.flags.authenticated": "0",
29614 "dns.flags.checkdisable": "0",
29615 "dns.flags.rcode": "0"
29617 "dns.count.queries": "1",
29618 "dns.count.answers": "4",
29619 "dns.count.auth_rr": "9",
29620 "dns.count.add_rr": "9",
29622 "www2.meethue.com: type A, class IN": {
29623 "dns.qry.name": "www2.meethue.com",
29624 "dns.qry.name.len": "16",
29625 "dns.count.labels": "3",
29626 "dns.qry.type": "1",
29627 "dns.qry.class": "0x00000001"
29631 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
29632 "dns.resp.name": "www2.meethue.com",
29633 "dns.resp.type": "5",
29634 "dns.resp.class": "0x00000001",
29635 "dns.resp.ttl": "144",
29636 "dns.resp.len": "41",
29637 "dns.cname": "brands.lighting.philips.com.edgekey.net"
29639 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
29640 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
29641 "dns.resp.type": "5",
29642 "dns.resp.class": "0x00000001",
29643 "dns.resp.ttl": "20544",
29644 "dns.resp.len": "22",
29645 "dns.cname": "e15361.b.akamaiedge.net"
29647 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
29648 "dns.resp.name": "e15361.b.akamaiedge.net",
29649 "dns.resp.type": "1",
29650 "dns.resp.class": "0x00000001",
29651 "dns.resp.ttl": "20",
29652 "dns.resp.len": "4",
29653 "dns.a": "184.84.242.27"
29655 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
29656 "dns.resp.name": "e15361.b.akamaiedge.net",
29657 "dns.resp.type": "1",
29658 "dns.resp.class": "0x00000001",
29659 "dns.resp.ttl": "20",
29660 "dns.resp.len": "4",
29661 "dns.a": "184.84.242.42"
29664 "Authoritative nameservers": {
29665 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
29666 "dns.resp.name": "b.akamaiedge.net",
29667 "dns.resp.type": "2",
29668 "dns.resp.class": "0x00000001",
29669 "dns.resp.ttl": "773",
29670 "dns.resp.len": "6",
29671 "dns.ns": "n6b.akamaiedge.net"
29673 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
29674 "dns.resp.name": "b.akamaiedge.net",
29675 "dns.resp.type": "2",
29676 "dns.resp.class": "0x00000001",
29677 "dns.resp.ttl": "773",
29678 "dns.resp.len": "6",
29679 "dns.ns": "n5b.akamaiedge.net"
29681 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
29682 "dns.resp.name": "b.akamaiedge.net",
29683 "dns.resp.type": "2",
29684 "dns.resp.class": "0x00000001",
29685 "dns.resp.ttl": "773",
29686 "dns.resp.len": "6",
29687 "dns.ns": "n1b.akamaiedge.net"
29689 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
29690 "dns.resp.name": "b.akamaiedge.net",
29691 "dns.resp.type": "2",
29692 "dns.resp.class": "0x00000001",
29693 "dns.resp.ttl": "773",
29694 "dns.resp.len": "6",
29695 "dns.ns": "a0b.akamaiedge.net"
29697 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
29698 "dns.resp.name": "b.akamaiedge.net",
29699 "dns.resp.type": "2",
29700 "dns.resp.class": "0x00000001",
29701 "dns.resp.ttl": "773",
29702 "dns.resp.len": "6",
29703 "dns.ns": "n2b.akamaiedge.net"
29705 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
29706 "dns.resp.name": "b.akamaiedge.net",
29707 "dns.resp.type": "2",
29708 "dns.resp.class": "0x00000001",
29709 "dns.resp.ttl": "773",
29710 "dns.resp.len": "6",
29711 "dns.ns": "n3b.akamaiedge.net"
29713 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
29714 "dns.resp.name": "b.akamaiedge.net",
29715 "dns.resp.type": "2",
29716 "dns.resp.class": "0x00000001",
29717 "dns.resp.ttl": "773",
29718 "dns.resp.len": "6",
29719 "dns.ns": "n7b.akamaiedge.net"
29721 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
29722 "dns.resp.name": "b.akamaiedge.net",
29723 "dns.resp.type": "2",
29724 "dns.resp.class": "0x00000001",
29725 "dns.resp.ttl": "773",
29726 "dns.resp.len": "6",
29727 "dns.ns": "n4b.akamaiedge.net"
29729 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
29730 "dns.resp.name": "b.akamaiedge.net",
29731 "dns.resp.type": "2",
29732 "dns.resp.class": "0x00000001",
29733 "dns.resp.ttl": "773",
29734 "dns.resp.len": "6",
29735 "dns.ns": "n0b.akamaiedge.net"
29738 "Additional records": {
29739 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
29740 "dns.resp.name": "n0b.akamaiedge.net",
29741 "dns.resp.type": "1",
29742 "dns.resp.class": "0x00000001",
29743 "dns.resp.ttl": "304",
29744 "dns.resp.len": "4",
29745 "dns.a": "88.221.81.192"
29747 "n1b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
29748 "dns.resp.name": "n1b.akamaiedge.net",
29749 "dns.resp.type": "1",
29750 "dns.resp.class": "0x00000001",
29751 "dns.resp.ttl": "843",
29752 "dns.resp.len": "4",
29753 "dns.a": "204.2.166.154"
29755 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
29756 "dns.resp.name": "n2b.akamaiedge.net",
29757 "dns.resp.type": "1",
29758 "dns.resp.class": "0x00000001",
29759 "dns.resp.ttl": "3617",
29760 "dns.resp.len": "4",
29761 "dns.a": "96.17.70.175"
29763 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
29764 "dns.resp.name": "n3b.akamaiedge.net",
29765 "dns.resp.type": "1",
29766 "dns.resp.class": "0x00000001",
29767 "dns.resp.ttl": "3691",
29768 "dns.resp.len": "4",
29769 "dns.a": "173.223.52.108"
29771 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.225": {
29772 "dns.resp.name": "n4b.akamaiedge.net",
29773 "dns.resp.type": "1",
29774 "dns.resp.class": "0x00000001",
29775 "dns.resp.ttl": "4091",
29776 "dns.resp.len": "4",
29777 "dns.a": "209.18.46.225"
29779 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
29780 "dns.resp.name": "n5b.akamaiedge.net",
29781 "dns.resp.type": "1",
29782 "dns.resp.class": "0x00000001",
29783 "dns.resp.ttl": "643",
29784 "dns.resp.len": "4",
29785 "dns.a": "204.2.166.150"
29787 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.154": {
29788 "dns.resp.name": "n6b.akamaiedge.net",
29789 "dns.resp.type": "1",
29790 "dns.resp.class": "0x00000001",
29791 "dns.resp.ttl": "227",
29792 "dns.resp.len": "4",
29793 "dns.a": "204.2.166.154"
29795 "n7b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
29796 "dns.resp.name": "n7b.akamaiedge.net",
29797 "dns.resp.type": "1",
29798 "dns.resp.class": "0x00000001",
29799 "dns.resp.ttl": "2329",
29800 "dns.resp.len": "4",
29801 "dns.a": "204.2.166.158"
29803 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
29804 "dns.resp.name": "a0b.akamaiedge.net",
29805 "dns.resp.type": "28",
29806 "dns.resp.class": "0x00000001",
29807 "dns.resp.ttl": "5779",
29808 "dns.resp.len": "16",
29809 "dns.aaaa": "2600:1480:e800::c0"
29818 "_index": "packets-2017-10-26",
29819 "_type": "pcap_file",
29824 "frame.encap_type": "1",
29825 "frame.time": "Oct 20, 2017 03:52:53.157944000 PDT",
29826 "frame.offset_shift": "0.000000000",
29827 "frame.time_epoch": "1508496773.157944000",
29828 "frame.time_delta": "0.549528000",
29829 "frame.time_delta_displayed": "900.008954000",
29830 "frame.time_relative": "39060.752740000",
29831 "frame.number": "36810",
29833 "frame.cap_len": "76",
29834 "frame.marked": "0",
29835 "frame.ignored": "0",
29836 "frame.protocols": "eth:ethertype:ip:udp:dns",
29837 "frame.coloring_rule.name": "UDP",
29838 "frame.coloring_rule.string": "udp"
29841 "eth.dst": "b0:b9:8a:73:69:8e",
29843 "eth.dst_resolved": "Netgear_73:69:8e",
29844 "eth.addr": "b0:b9:8a:73:69:8e",
29845 "eth.addr_resolved": "Netgear_73:69:8e",
29849 "eth.src": "00:17:88:69:ee:e4",
29851 "eth.src_resolved": "PhilipsL_69:ee:e4",
29852 "eth.addr": "00:17:88:69:ee:e4",
29853 "eth.addr_resolved": "PhilipsL_69:ee:e4",
29857 "eth.type": "0x00000800"
29861 "ip.hdr_len": "20",
29862 "ip.dsfield": "0x00000000",
29863 "ip.dsfield_tree": {
29864 "ip.dsfield.dscp": "0",
29865 "ip.dsfield.ecn": "0"
29868 "ip.id": "0x0000fe35",
29869 "ip.flags": "0x00000002",
29871 "ip.flags.rb": "0",
29872 "ip.flags.df": "1",
29875 "ip.frag_offset": "0",
29878 "ip.checksum": "0x0000ba87",
29879 "ip.checksum.status": "2",
29880 "ip.src": "192.168.0.160",
29881 "ip.addr": "192.168.0.160",
29882 "ip.src_host": "192.168.0.160",
29883 "ip.host": "192.168.0.160",
29884 "ip.dst": "192.168.0.1",
29885 "ip.addr": "192.168.0.1",
29886 "ip.dst_host": "192.168.0.1",
29887 "ip.host": "192.168.0.1",
29888 "Source GeoIP: Unknown": "",
29889 "Destination GeoIP: Unknown": ""
29892 "udp.srcport": "58619",
29893 "udp.dstport": "53",
29894 "udp.port": "58619",
29896 "udp.length": "42",
29897 "udp.checksum": "0x000073dd",
29898 "udp.checksum.status": "2",
29899 "udp.stream": "384"
29902 "dns.response_in": "36811",
29903 "dns.id": "0x000004df",
29904 "dns.flags": "0x00000100",
29905 "dns.flags_tree": {
29906 "dns.flags.response": "0",
29907 "dns.flags.opcode": "0",
29908 "dns.flags.truncated": "0",
29909 "dns.flags.recdesired": "1",
29910 "dns.flags.z": "0",
29911 "dns.flags.checkdisable": "0"
29913 "dns.count.queries": "1",
29914 "dns.count.answers": "0",
29915 "dns.count.auth_rr": "0",
29916 "dns.count.add_rr": "0",
29918 "www2.meethue.com: type A, class IN": {
29919 "dns.qry.name": "www2.meethue.com",
29920 "dns.qry.name.len": "16",
29921 "dns.count.labels": "3",
29922 "dns.qry.type": "1",
29923 "dns.qry.class": "0x00000001"
29932 "_index": "packets-2017-10-26",
29933 "_type": "pcap_file",
29938 "frame.encap_type": "1",
29939 "frame.time": "Oct 20, 2017 03:52:53.164664000 PDT",
29940 "frame.offset_shift": "0.000000000",
29941 "frame.time_epoch": "1508496773.164664000",
29942 "frame.time_delta": "0.006720000",
29943 "frame.time_delta_displayed": "0.006720000",
29944 "frame.time_relative": "39060.759460000",
29945 "frame.number": "36811",
29946 "frame.len": "513",
29947 "frame.cap_len": "513",
29948 "frame.marked": "0",
29949 "frame.ignored": "0",
29950 "frame.protocols": "eth:ethertype:ip:udp:dns",
29951 "frame.coloring_rule.name": "UDP",
29952 "frame.coloring_rule.string": "udp"
29955 "eth.dst": "00:17:88:69:ee:e4",
29957 "eth.dst_resolved": "PhilipsL_69:ee:e4",
29958 "eth.addr": "00:17:88:69:ee:e4",
29959 "eth.addr_resolved": "PhilipsL_69:ee:e4",
29963 "eth.src": "b0:b9:8a:73:69:8e",
29965 "eth.src_resolved": "Netgear_73:69:8e",
29966 "eth.addr": "b0:b9:8a:73:69:8e",
29967 "eth.addr_resolved": "Netgear_73:69:8e",
29971 "eth.type": "0x00000800"
29975 "ip.hdr_len": "20",
29976 "ip.dsfield": "0x00000000",
29977 "ip.dsfield_tree": {
29978 "ip.dsfield.dscp": "0",
29979 "ip.dsfield.ecn": "0"
29982 "ip.id": "0x00004af7",
29983 "ip.flags": "0x00000002",
29985 "ip.flags.rb": "0",
29986 "ip.flags.df": "1",
29989 "ip.frag_offset": "0",
29992 "ip.checksum": "0x00006c11",
29993 "ip.checksum.status": "2",
29994 "ip.src": "192.168.0.1",
29995 "ip.addr": "192.168.0.1",
29996 "ip.src_host": "192.168.0.1",
29997 "ip.host": "192.168.0.1",
29998 "ip.dst": "192.168.0.160",
29999 "ip.addr": "192.168.0.160",
30000 "ip.dst_host": "192.168.0.160",
30001 "ip.host": "192.168.0.160",
30002 "Source GeoIP: Unknown": "",
30003 "Destination GeoIP: Unknown": ""
30006 "udp.srcport": "53",
30007 "udp.dstport": "58619",
30009 "udp.port": "58619",
30010 "udp.length": "479",
30011 "udp.checksum": "0x000083e2",
30012 "udp.checksum.status": "2",
30013 "udp.stream": "384"
30016 "dns.response_to": "36810",
30017 "dns.time": "0.006720000",
30018 "dns.id": "0x000004df",
30019 "dns.flags": "0x00008180",
30020 "dns.flags_tree": {
30021 "dns.flags.response": "1",
30022 "dns.flags.opcode": "0",
30023 "dns.flags.authoritative": "0",
30024 "dns.flags.truncated": "0",
30025 "dns.flags.recdesired": "1",
30026 "dns.flags.recavail": "1",
30027 "dns.flags.z": "0",
30028 "dns.flags.authenticated": "0",
30029 "dns.flags.checkdisable": "0",
30030 "dns.flags.rcode": "0"
30032 "dns.count.queries": "1",
30033 "dns.count.answers": "4",
30034 "dns.count.auth_rr": "9",
30035 "dns.count.add_rr": "9",
30037 "www2.meethue.com: type A, class IN": {
30038 "dns.qry.name": "www2.meethue.com",
30039 "dns.qry.name.len": "16",
30040 "dns.count.labels": "3",
30041 "dns.qry.type": "1",
30042 "dns.qry.class": "0x00000001"
30046 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
30047 "dns.resp.name": "www2.meethue.com",
30048 "dns.resp.type": "5",
30049 "dns.resp.class": "0x00000001",
30050 "dns.resp.ttl": "144",
30051 "dns.resp.len": "41",
30052 "dns.cname": "brands.lighting.philips.com.edgekey.net"
30054 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
30055 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
30056 "dns.resp.type": "5",
30057 "dns.resp.class": "0x00000001",
30058 "dns.resp.ttl": "19644",
30059 "dns.resp.len": "22",
30060 "dns.cname": "e15361.b.akamaiedge.net"
30062 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
30063 "dns.resp.name": "e15361.b.akamaiedge.net",
30064 "dns.resp.type": "1",
30065 "dns.resp.class": "0x00000001",
30066 "dns.resp.ttl": "20",
30067 "dns.resp.len": "4",
30068 "dns.a": "184.84.242.27"
30070 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
30071 "dns.resp.name": "e15361.b.akamaiedge.net",
30072 "dns.resp.type": "1",
30073 "dns.resp.class": "0x00000001",
30074 "dns.resp.ttl": "20",
30075 "dns.resp.len": "4",
30076 "dns.a": "184.84.242.42"
30079 "Authoritative nameservers": {
30080 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
30081 "dns.resp.name": "b.akamaiedge.net",
30082 "dns.resp.type": "2",
30083 "dns.resp.class": "0x00000001",
30084 "dns.resp.ttl": "3873",
30085 "dns.resp.len": "6",
30086 "dns.ns": "n6b.akamaiedge.net"
30088 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
30089 "dns.resp.name": "b.akamaiedge.net",
30090 "dns.resp.type": "2",
30091 "dns.resp.class": "0x00000001",
30092 "dns.resp.ttl": "3873",
30093 "dns.resp.len": "6",
30094 "dns.ns": "a0b.akamaiedge.net"
30096 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
30097 "dns.resp.name": "b.akamaiedge.net",
30098 "dns.resp.type": "2",
30099 "dns.resp.class": "0x00000001",
30100 "dns.resp.ttl": "3873",
30101 "dns.resp.len": "6",
30102 "dns.ns": "n5b.akamaiedge.net"
30104 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
30105 "dns.resp.name": "b.akamaiedge.net",
30106 "dns.resp.type": "2",
30107 "dns.resp.class": "0x00000001",
30108 "dns.resp.ttl": "3873",
30109 "dns.resp.len": "6",
30110 "dns.ns": "n3b.akamaiedge.net"
30112 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
30113 "dns.resp.name": "b.akamaiedge.net",
30114 "dns.resp.type": "2",
30115 "dns.resp.class": "0x00000001",
30116 "dns.resp.ttl": "3873",
30117 "dns.resp.len": "6",
30118 "dns.ns": "n4b.akamaiedge.net"
30120 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
30121 "dns.resp.name": "b.akamaiedge.net",
30122 "dns.resp.type": "2",
30123 "dns.resp.class": "0x00000001",
30124 "dns.resp.ttl": "3873",
30125 "dns.resp.len": "6",
30126 "dns.ns": "n2b.akamaiedge.net"
30128 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
30129 "dns.resp.name": "b.akamaiedge.net",
30130 "dns.resp.type": "2",
30131 "dns.resp.class": "0x00000001",
30132 "dns.resp.ttl": "3873",
30133 "dns.resp.len": "6",
30134 "dns.ns": "n7b.akamaiedge.net"
30136 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
30137 "dns.resp.name": "b.akamaiedge.net",
30138 "dns.resp.type": "2",
30139 "dns.resp.class": "0x00000001",
30140 "dns.resp.ttl": "3873",
30141 "dns.resp.len": "6",
30142 "dns.ns": "n1b.akamaiedge.net"
30144 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
30145 "dns.resp.name": "b.akamaiedge.net",
30146 "dns.resp.type": "2",
30147 "dns.resp.class": "0x00000001",
30148 "dns.resp.ttl": "3873",
30149 "dns.resp.len": "6",
30150 "dns.ns": "n0b.akamaiedge.net"
30153 "Additional records": {
30154 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
30155 "dns.resp.name": "n0b.akamaiedge.net",
30156 "dns.resp.type": "1",
30157 "dns.resp.class": "0x00000001",
30158 "dns.resp.ttl": "3407",
30159 "dns.resp.len": "4",
30160 "dns.a": "88.221.81.192"
30162 "n1b.akamaiedge.net: type A, class IN, addr 96.17.70.173": {
30163 "dns.resp.name": "n1b.akamaiedge.net",
30164 "dns.resp.type": "1",
30165 "dns.resp.class": "0x00000001",
30166 "dns.resp.ttl": "7948",
30167 "dns.resp.len": "4",
30168 "dns.a": "96.17.70.173"
30170 "n2b.akamaiedge.net: type A, class IN, addr 96.17.70.175": {
30171 "dns.resp.name": "n2b.akamaiedge.net",
30172 "dns.resp.type": "1",
30173 "dns.resp.class": "0x00000001",
30174 "dns.resp.ttl": "2717",
30175 "dns.resp.len": "4",
30176 "dns.a": "96.17.70.175"
30178 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
30179 "dns.resp.name": "n3b.akamaiedge.net",
30180 "dns.resp.type": "1",
30181 "dns.resp.class": "0x00000001",
30182 "dns.resp.ttl": "2791",
30183 "dns.resp.len": "4",
30184 "dns.a": "173.223.52.108"
30186 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.225": {
30187 "dns.resp.name": "n4b.akamaiedge.net",
30188 "dns.resp.type": "1",
30189 "dns.resp.class": "0x00000001",
30190 "dns.resp.ttl": "3191",
30191 "dns.resp.len": "4",
30192 "dns.a": "209.18.46.225"
30194 "n5b.akamaiedge.net: type A, class IN, addr 209.18.46.218": {
30195 "dns.resp.name": "n5b.akamaiedge.net",
30196 "dns.resp.type": "1",
30197 "dns.resp.class": "0x00000001",
30198 "dns.resp.ttl": "7745",
30199 "dns.resp.len": "4",
30200 "dns.a": "209.18.46.218"
30202 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.131": {
30203 "dns.resp.name": "n6b.akamaiedge.net",
30204 "dns.resp.type": "1",
30205 "dns.resp.class": "0x00000001",
30206 "dns.resp.ttl": "3330",
30207 "dns.resp.len": "4",
30208 "dns.a": "173.223.52.131"
30210 "n7b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
30211 "dns.resp.name": "n7b.akamaiedge.net",
30212 "dns.resp.type": "1",
30213 "dns.resp.class": "0x00000001",
30214 "dns.resp.ttl": "1429",
30215 "dns.resp.len": "4",
30216 "dns.a": "204.2.166.158"
30218 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
30219 "dns.resp.name": "a0b.akamaiedge.net",
30220 "dns.resp.type": "28",
30221 "dns.resp.class": "0x00000001",
30222 "dns.resp.ttl": "4879",
30223 "dns.resp.len": "16",
30224 "dns.aaaa": "2600:1480:e800::c0"
30233 "_index": "packets-2017-10-26",
30234 "_type": "pcap_file",
30239 "frame.encap_type": "1",
30240 "frame.time": "Oct 20, 2017 04:07:53.171491000 PDT",
30241 "frame.offset_shift": "0.000000000",
30242 "frame.time_epoch": "1508497673.171491000",
30243 "frame.time_delta": "3.380707000",
30244 "frame.time_delta_displayed": "900.006827000",
30245 "frame.time_relative": "39960.766287000",
30246 "frame.number": "37558",
30248 "frame.cap_len": "76",
30249 "frame.marked": "0",
30250 "frame.ignored": "0",
30251 "frame.protocols": "eth:ethertype:ip:udp:dns",
30252 "frame.coloring_rule.name": "UDP",
30253 "frame.coloring_rule.string": "udp"
30256 "eth.dst": "b0:b9:8a:73:69:8e",
30258 "eth.dst_resolved": "Netgear_73:69:8e",
30259 "eth.addr": "b0:b9:8a:73:69:8e",
30260 "eth.addr_resolved": "Netgear_73:69:8e",
30264 "eth.src": "00:17:88:69:ee:e4",
30266 "eth.src_resolved": "PhilipsL_69:ee:e4",
30267 "eth.addr": "00:17:88:69:ee:e4",
30268 "eth.addr_resolved": "PhilipsL_69:ee:e4",
30272 "eth.type": "0x00000800"
30276 "ip.hdr_len": "20",
30277 "ip.dsfield": "0x00000000",
30278 "ip.dsfield_tree": {
30279 "ip.dsfield.dscp": "0",
30280 "ip.dsfield.ecn": "0"
30283 "ip.id": "0x00001426",
30284 "ip.flags": "0x00000002",
30286 "ip.flags.rb": "0",
30287 "ip.flags.df": "1",
30290 "ip.frag_offset": "0",
30293 "ip.checksum": "0x0000a497",
30294 "ip.checksum.status": "2",
30295 "ip.src": "192.168.0.160",
30296 "ip.addr": "192.168.0.160",
30297 "ip.src_host": "192.168.0.160",
30298 "ip.host": "192.168.0.160",
30299 "ip.dst": "192.168.0.1",
30300 "ip.addr": "192.168.0.1",
30301 "ip.dst_host": "192.168.0.1",
30302 "ip.host": "192.168.0.1",
30303 "Source GeoIP: Unknown": "",
30304 "Destination GeoIP: Unknown": ""
30307 "udp.srcport": "46109",
30308 "udp.dstport": "53",
30309 "udp.port": "46109",
30311 "udp.length": "42",
30312 "udp.checksum": "0x0000a4ba",
30313 "udp.checksum.status": "2",
30314 "udp.stream": "388"
30317 "dns.response_in": "37559",
30318 "dns.id": "0x000004e0",
30319 "dns.flags": "0x00000100",
30320 "dns.flags_tree": {
30321 "dns.flags.response": "0",
30322 "dns.flags.opcode": "0",
30323 "dns.flags.truncated": "0",
30324 "dns.flags.recdesired": "1",
30325 "dns.flags.z": "0",
30326 "dns.flags.checkdisable": "0"
30328 "dns.count.queries": "1",
30329 "dns.count.answers": "0",
30330 "dns.count.auth_rr": "0",
30331 "dns.count.add_rr": "0",
30333 "www2.meethue.com: type A, class IN": {
30334 "dns.qry.name": "www2.meethue.com",
30335 "dns.qry.name.len": "16",
30336 "dns.count.labels": "3",
30337 "dns.qry.type": "1",
30338 "dns.qry.class": "0x00000001"
30347 "_index": "packets-2017-10-26",
30348 "_type": "pcap_file",
30353 "frame.encap_type": "1",
30354 "frame.time": "Oct 20, 2017 04:07:53.178025000 PDT",
30355 "frame.offset_shift": "0.000000000",
30356 "frame.time_epoch": "1508497673.178025000",
30357 "frame.time_delta": "0.006534000",
30358 "frame.time_delta_displayed": "0.006534000",
30359 "frame.time_relative": "39960.772821000",
30360 "frame.number": "37559",
30361 "frame.len": "513",
30362 "frame.cap_len": "513",
30363 "frame.marked": "0",
30364 "frame.ignored": "0",
30365 "frame.protocols": "eth:ethertype:ip:udp:dns",
30366 "frame.coloring_rule.name": "UDP",
30367 "frame.coloring_rule.string": "udp"
30370 "eth.dst": "00:17:88:69:ee:e4",
30372 "eth.dst_resolved": "PhilipsL_69:ee:e4",
30373 "eth.addr": "00:17:88:69:ee:e4",
30374 "eth.addr_resolved": "PhilipsL_69:ee:e4",
30378 "eth.src": "b0:b9:8a:73:69:8e",
30380 "eth.src_resolved": "Netgear_73:69:8e",
30381 "eth.addr": "b0:b9:8a:73:69:8e",
30382 "eth.addr_resolved": "Netgear_73:69:8e",
30386 "eth.type": "0x00000800"
30390 "ip.hdr_len": "20",
30391 "ip.dsfield": "0x00000000",
30392 "ip.dsfield_tree": {
30393 "ip.dsfield.dscp": "0",
30394 "ip.dsfield.ecn": "0"
30397 "ip.id": "0x0000d1c0",
30398 "ip.flags": "0x00000002",
30400 "ip.flags.rb": "0",
30401 "ip.flags.df": "1",
30404 "ip.frag_offset": "0",
30407 "ip.checksum": "0x0000e547",
30408 "ip.checksum.status": "2",
30409 "ip.src": "192.168.0.1",
30410 "ip.addr": "192.168.0.1",
30411 "ip.src_host": "192.168.0.1",
30412 "ip.host": "192.168.0.1",
30413 "ip.dst": "192.168.0.160",
30414 "ip.addr": "192.168.0.160",
30415 "ip.dst_host": "192.168.0.160",
30416 "ip.host": "192.168.0.160",
30417 "Source GeoIP: Unknown": "",
30418 "Destination GeoIP: Unknown": ""
30421 "udp.srcport": "53",
30422 "udp.dstport": "46109",
30424 "udp.port": "46109",
30425 "udp.length": "479",
30426 "udp.checksum": "0x000083e2",
30427 "udp.checksum.status": "2",
30428 "udp.stream": "388"
30431 "dns.response_to": "37558",
30432 "dns.time": "0.006534000",
30433 "dns.id": "0x000004e0",
30434 "dns.flags": "0x00008180",
30435 "dns.flags_tree": {
30436 "dns.flags.response": "1",
30437 "dns.flags.opcode": "0",
30438 "dns.flags.authoritative": "0",
30439 "dns.flags.truncated": "0",
30440 "dns.flags.recdesired": "1",
30441 "dns.flags.recavail": "1",
30442 "dns.flags.z": "0",
30443 "dns.flags.authenticated": "0",
30444 "dns.flags.checkdisable": "0",
30445 "dns.flags.rcode": "0"
30447 "dns.count.queries": "1",
30448 "dns.count.answers": "4",
30449 "dns.count.auth_rr": "9",
30450 "dns.count.add_rr": "9",
30452 "www2.meethue.com: type A, class IN": {
30453 "dns.qry.name": "www2.meethue.com",
30454 "dns.qry.name.len": "16",
30455 "dns.count.labels": "3",
30456 "dns.qry.type": "1",
30457 "dns.qry.class": "0x00000001"
30461 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
30462 "dns.resp.name": "www2.meethue.com",
30463 "dns.resp.type": "5",
30464 "dns.resp.class": "0x00000001",
30465 "dns.resp.ttl": "121",
30466 "dns.resp.len": "41",
30467 "dns.cname": "brands.lighting.philips.com.edgekey.net"
30469 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
30470 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
30471 "dns.resp.type": "5",
30472 "dns.resp.class": "0x00000001",
30473 "dns.resp.ttl": "16919",
30474 "dns.resp.len": "22",
30475 "dns.cname": "e15361.b.akamaiedge.net"
30477 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
30478 "dns.resp.name": "e15361.b.akamaiedge.net",
30479 "dns.resp.type": "1",
30480 "dns.resp.class": "0x00000001",
30481 "dns.resp.ttl": "20",
30482 "dns.resp.len": "4",
30483 "dns.a": "184.84.242.27"
30485 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
30486 "dns.resp.name": "e15361.b.akamaiedge.net",
30487 "dns.resp.type": "1",
30488 "dns.resp.class": "0x00000001",
30489 "dns.resp.ttl": "20",
30490 "dns.resp.len": "4",
30491 "dns.a": "184.84.242.42"
30494 "Authoritative nameservers": {
30495 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
30496 "dns.resp.name": "b.akamaiedge.net",
30497 "dns.resp.type": "2",
30498 "dns.resp.class": "0x00000001",
30499 "dns.resp.ttl": "2890",
30500 "dns.resp.len": "6",
30501 "dns.ns": "n1b.akamaiedge.net"
30503 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
30504 "dns.resp.name": "b.akamaiedge.net",
30505 "dns.resp.type": "2",
30506 "dns.resp.class": "0x00000001",
30507 "dns.resp.ttl": "2890",
30508 "dns.resp.len": "6",
30509 "dns.ns": "n5b.akamaiedge.net"
30511 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
30512 "dns.resp.name": "b.akamaiedge.net",
30513 "dns.resp.type": "2",
30514 "dns.resp.class": "0x00000001",
30515 "dns.resp.ttl": "2890",
30516 "dns.resp.len": "6",
30517 "dns.ns": "a0b.akamaiedge.net"
30519 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
30520 "dns.resp.name": "b.akamaiedge.net",
30521 "dns.resp.type": "2",
30522 "dns.resp.class": "0x00000001",
30523 "dns.resp.ttl": "2890",
30524 "dns.resp.len": "6",
30525 "dns.ns": "n7b.akamaiedge.net"
30527 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
30528 "dns.resp.name": "b.akamaiedge.net",
30529 "dns.resp.type": "2",
30530 "dns.resp.class": "0x00000001",
30531 "dns.resp.ttl": "2890",
30532 "dns.resp.len": "6",
30533 "dns.ns": "n4b.akamaiedge.net"
30535 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
30536 "dns.resp.name": "b.akamaiedge.net",
30537 "dns.resp.type": "2",
30538 "dns.resp.class": "0x00000001",
30539 "dns.resp.ttl": "2890",
30540 "dns.resp.len": "6",
30541 "dns.ns": "n2b.akamaiedge.net"
30543 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
30544 "dns.resp.name": "b.akamaiedge.net",
30545 "dns.resp.type": "2",
30546 "dns.resp.class": "0x00000001",
30547 "dns.resp.ttl": "2890",
30548 "dns.resp.len": "6",
30549 "dns.ns": "n6b.akamaiedge.net"
30551 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
30552 "dns.resp.name": "b.akamaiedge.net",
30553 "dns.resp.type": "2",
30554 "dns.resp.class": "0x00000001",
30555 "dns.resp.ttl": "2890",
30556 "dns.resp.len": "6",
30557 "dns.ns": "n3b.akamaiedge.net"
30559 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
30560 "dns.resp.name": "b.akamaiedge.net",
30561 "dns.resp.type": "2",
30562 "dns.resp.class": "0x00000001",
30563 "dns.resp.ttl": "2890",
30564 "dns.resp.len": "6",
30565 "dns.ns": "n0b.akamaiedge.net"
30568 "Additional records": {
30569 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
30570 "dns.resp.name": "n0b.akamaiedge.net",
30571 "dns.resp.type": "1",
30572 "dns.resp.class": "0x00000001",
30573 "dns.resp.ttl": "220",
30574 "dns.resp.len": "4",
30575 "dns.a": "88.221.81.192"
30577 "n1b.akamaiedge.net: type A, class IN, addr 173.197.192.233": {
30578 "dns.resp.name": "n1b.akamaiedge.net",
30579 "dns.resp.type": "1",
30580 "dns.resp.class": "0x00000001",
30581 "dns.resp.ttl": "2919",
30582 "dns.resp.len": "4",
30583 "dns.a": "173.197.192.233"
30585 "n2b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
30586 "dns.resp.name": "n2b.akamaiedge.net",
30587 "dns.resp.type": "1",
30588 "dns.resp.class": "0x00000001",
30589 "dns.resp.ttl": "3429",
30590 "dns.resp.len": "4",
30591 "dns.a": "204.1.137.41"
30593 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
30594 "dns.resp.name": "n3b.akamaiedge.net",
30595 "dns.resp.type": "1",
30596 "dns.resp.class": "0x00000001",
30597 "dns.resp.ttl": "3625",
30598 "dns.resp.len": "4",
30599 "dns.a": "173.223.52.108"
30601 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.217": {
30602 "dns.resp.name": "n4b.akamaiedge.net",
30603 "dns.resp.type": "1",
30604 "dns.resp.class": "0x00000001",
30605 "dns.resp.ttl": "4526",
30606 "dns.resp.len": "4",
30607 "dns.a": "209.18.46.217"
30609 "n5b.akamaiedge.net: type A, class IN, addr 209.18.46.223": {
30610 "dns.resp.name": "n5b.akamaiedge.net",
30611 "dns.resp.type": "1",
30612 "dns.resp.class": "0x00000001",
30613 "dns.resp.ttl": "4270",
30614 "dns.resp.len": "4",
30615 "dns.a": "209.18.46.223"
30617 "n6b.akamaiedge.net: type A, class IN, addr 209.18.46.221": {
30618 "dns.resp.name": "n6b.akamaiedge.net",
30619 "dns.resp.type": "1",
30620 "dns.resp.class": "0x00000001",
30621 "dns.resp.ttl": "83",
30622 "dns.resp.len": "4",
30623 "dns.a": "209.18.46.221"
30625 "n7b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
30626 "dns.resp.name": "n7b.akamaiedge.net",
30627 "dns.resp.type": "1",
30628 "dns.resp.class": "0x00000001",
30629 "dns.resp.ttl": "127",
30630 "dns.resp.len": "4",
30631 "dns.a": "173.223.52.108"
30633 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
30634 "dns.resp.name": "a0b.akamaiedge.net",
30635 "dns.resp.type": "28",
30636 "dns.resp.class": "0x00000001",
30637 "dns.resp.ttl": "5928",
30638 "dns.resp.len": "16",
30639 "dns.aaaa": "2600:1480:e800::c0"
30648 "_index": "packets-2017-10-26",
30649 "_type": "pcap_file",
30654 "frame.encap_type": "1",
30655 "frame.time": "Oct 20, 2017 04:22:53.188284000 PDT",
30656 "frame.offset_shift": "0.000000000",
30657 "frame.time_epoch": "1508498573.188284000",
30658 "frame.time_delta": "2.605383000",
30659 "frame.time_delta_displayed": "900.010259000",
30660 "frame.time_relative": "40860.783080000",
30661 "frame.number": "38342",
30663 "frame.cap_len": "76",
30664 "frame.marked": "0",
30665 "frame.ignored": "0",
30666 "frame.protocols": "eth:ethertype:ip:udp:dns",
30667 "frame.coloring_rule.name": "UDP",
30668 "frame.coloring_rule.string": "udp"
30671 "eth.dst": "b0:b9:8a:73:69:8e",
30673 "eth.dst_resolved": "Netgear_73:69:8e",
30674 "eth.addr": "b0:b9:8a:73:69:8e",
30675 "eth.addr_resolved": "Netgear_73:69:8e",
30679 "eth.src": "00:17:88:69:ee:e4",
30681 "eth.src_resolved": "PhilipsL_69:ee:e4",
30682 "eth.addr": "00:17:88:69:ee:e4",
30683 "eth.addr_resolved": "PhilipsL_69:ee:e4",
30687 "eth.type": "0x00000800"
30691 "ip.hdr_len": "20",
30692 "ip.dsfield": "0x00000000",
30693 "ip.dsfield_tree": {
30694 "ip.dsfield.dscp": "0",
30695 "ip.dsfield.ecn": "0"
30698 "ip.id": "0x00001f18",
30699 "ip.flags": "0x00000002",
30701 "ip.flags.rb": "0",
30702 "ip.flags.df": "1",
30705 "ip.frag_offset": "0",
30708 "ip.checksum": "0x000099a5",
30709 "ip.checksum.status": "2",
30710 "ip.src": "192.168.0.160",
30711 "ip.addr": "192.168.0.160",
30712 "ip.src_host": "192.168.0.160",
30713 "ip.host": "192.168.0.160",
30714 "ip.dst": "192.168.0.1",
30715 "ip.addr": "192.168.0.1",
30716 "ip.dst_host": "192.168.0.1",
30717 "ip.host": "192.168.0.1",
30718 "Source GeoIP: Unknown": "",
30719 "Destination GeoIP: Unknown": ""
30722 "udp.srcport": "55484",
30723 "udp.dstport": "53",
30724 "udp.port": "55484",
30726 "udp.length": "42",
30727 "udp.checksum": "0x0000801a",
30728 "udp.checksum.status": "2",
30729 "udp.stream": "397"
30732 "dns.response_in": "38343",
30733 "dns.id": "0x000004e1",
30734 "dns.flags": "0x00000100",
30735 "dns.flags_tree": {
30736 "dns.flags.response": "0",
30737 "dns.flags.opcode": "0",
30738 "dns.flags.truncated": "0",
30739 "dns.flags.recdesired": "1",
30740 "dns.flags.z": "0",
30741 "dns.flags.checkdisable": "0"
30743 "dns.count.queries": "1",
30744 "dns.count.answers": "0",
30745 "dns.count.auth_rr": "0",
30746 "dns.count.add_rr": "0",
30748 "www2.meethue.com: type A, class IN": {
30749 "dns.qry.name": "www2.meethue.com",
30750 "dns.qry.name.len": "16",
30751 "dns.count.labels": "3",
30752 "dns.qry.type": "1",
30753 "dns.qry.class": "0x00000001"
30762 "_index": "packets-2017-10-26",
30763 "_type": "pcap_file",
30768 "frame.encap_type": "1",
30769 "frame.time": "Oct 20, 2017 04:22:53.198461000 PDT",
30770 "frame.offset_shift": "0.000000000",
30771 "frame.time_epoch": "1508498573.198461000",
30772 "frame.time_delta": "0.010177000",
30773 "frame.time_delta_displayed": "0.010177000",
30774 "frame.time_relative": "40860.793257000",
30775 "frame.number": "38343",
30776 "frame.len": "513",
30777 "frame.cap_len": "513",
30778 "frame.marked": "0",
30779 "frame.ignored": "0",
30780 "frame.protocols": "eth:ethertype:ip:udp:dns",
30781 "frame.coloring_rule.name": "UDP",
30782 "frame.coloring_rule.string": "udp"
30785 "eth.dst": "00:17:88:69:ee:e4",
30787 "eth.dst_resolved": "PhilipsL_69:ee:e4",
30788 "eth.addr": "00:17:88:69:ee:e4",
30789 "eth.addr_resolved": "PhilipsL_69:ee:e4",
30793 "eth.src": "b0:b9:8a:73:69:8e",
30795 "eth.src_resolved": "Netgear_73:69:8e",
30796 "eth.addr": "b0:b9:8a:73:69:8e",
30797 "eth.addr_resolved": "Netgear_73:69:8e",
30801 "eth.type": "0x00000800"
30805 "ip.hdr_len": "20",
30806 "ip.dsfield": "0x00000000",
30807 "ip.dsfield_tree": {
30808 "ip.dsfield.dscp": "0",
30809 "ip.dsfield.ecn": "0"
30812 "ip.id": "0x00000c8c",
30813 "ip.flags": "0x00000002",
30815 "ip.flags.rb": "0",
30816 "ip.flags.df": "1",
30819 "ip.frag_offset": "0",
30822 "ip.checksum": "0x0000aa7c",
30823 "ip.checksum.status": "2",
30824 "ip.src": "192.168.0.1",
30825 "ip.addr": "192.168.0.1",
30826 "ip.src_host": "192.168.0.1",
30827 "ip.host": "192.168.0.1",
30828 "ip.dst": "192.168.0.160",
30829 "ip.addr": "192.168.0.160",
30830 "ip.dst_host": "192.168.0.160",
30831 "ip.host": "192.168.0.160",
30832 "Source GeoIP: Unknown": "",
30833 "Destination GeoIP: Unknown": ""
30836 "udp.srcport": "53",
30837 "udp.dstport": "55484",
30839 "udp.port": "55484",
30840 "udp.length": "479",
30841 "udp.checksum": "0x000083e2",
30842 "udp.checksum.status": "2",
30843 "udp.stream": "397"
30846 "dns.response_to": "38342",
30847 "dns.time": "0.010177000",
30848 "dns.id": "0x000004e1",
30849 "dns.flags": "0x00008180",
30850 "dns.flags_tree": {
30851 "dns.flags.response": "1",
30852 "dns.flags.opcode": "0",
30853 "dns.flags.authoritative": "0",
30854 "dns.flags.truncated": "0",
30855 "dns.flags.recdesired": "1",
30856 "dns.flags.recavail": "1",
30857 "dns.flags.z": "0",
30858 "dns.flags.authenticated": "0",
30859 "dns.flags.checkdisable": "0",
30860 "dns.flags.rcode": "0"
30862 "dns.count.queries": "1",
30863 "dns.count.answers": "4",
30864 "dns.count.auth_rr": "9",
30865 "dns.count.add_rr": "9",
30867 "www2.meethue.com: type A, class IN": {
30868 "dns.qry.name": "www2.meethue.com",
30869 "dns.qry.name.len": "16",
30870 "dns.count.labels": "3",
30871 "dns.qry.type": "1",
30872 "dns.qry.class": "0x00000001"
30876 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
30877 "dns.resp.name": "www2.meethue.com",
30878 "dns.resp.type": "5",
30879 "dns.resp.class": "0x00000001",
30880 "dns.resp.ttl": "121",
30881 "dns.resp.len": "41",
30882 "dns.cname": "brands.lighting.philips.com.edgekey.net"
30884 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
30885 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
30886 "dns.resp.type": "5",
30887 "dns.resp.class": "0x00000001",
30888 "dns.resp.ttl": "16019",
30889 "dns.resp.len": "22",
30890 "dns.cname": "e15361.b.akamaiedge.net"
30892 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
30893 "dns.resp.name": "e15361.b.akamaiedge.net",
30894 "dns.resp.type": "1",
30895 "dns.resp.class": "0x00000001",
30896 "dns.resp.ttl": "20",
30897 "dns.resp.len": "4",
30898 "dns.a": "184.84.242.27"
30900 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
30901 "dns.resp.name": "e15361.b.akamaiedge.net",
30902 "dns.resp.type": "1",
30903 "dns.resp.class": "0x00000001",
30904 "dns.resp.ttl": "20",
30905 "dns.resp.len": "4",
30906 "dns.a": "184.84.242.42"
30909 "Authoritative nameservers": {
30910 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
30911 "dns.resp.name": "b.akamaiedge.net",
30912 "dns.resp.type": "2",
30913 "dns.resp.class": "0x00000001",
30914 "dns.resp.ttl": "1990",
30915 "dns.resp.len": "6",
30916 "dns.ns": "n3b.akamaiedge.net"
30918 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
30919 "dns.resp.name": "b.akamaiedge.net",
30920 "dns.resp.type": "2",
30921 "dns.resp.class": "0x00000001",
30922 "dns.resp.ttl": "1990",
30923 "dns.resp.len": "6",
30924 "dns.ns": "n1b.akamaiedge.net"
30926 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
30927 "dns.resp.name": "b.akamaiedge.net",
30928 "dns.resp.type": "2",
30929 "dns.resp.class": "0x00000001",
30930 "dns.resp.ttl": "1990",
30931 "dns.resp.len": "6",
30932 "dns.ns": "n4b.akamaiedge.net"
30934 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
30935 "dns.resp.name": "b.akamaiedge.net",
30936 "dns.resp.type": "2",
30937 "dns.resp.class": "0x00000001",
30938 "dns.resp.ttl": "1990",
30939 "dns.resp.len": "6",
30940 "dns.ns": "n2b.akamaiedge.net"
30942 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
30943 "dns.resp.name": "b.akamaiedge.net",
30944 "dns.resp.type": "2",
30945 "dns.resp.class": "0x00000001",
30946 "dns.resp.ttl": "1990",
30947 "dns.resp.len": "6",
30948 "dns.ns": "n5b.akamaiedge.net"
30950 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
30951 "dns.resp.name": "b.akamaiedge.net",
30952 "dns.resp.type": "2",
30953 "dns.resp.class": "0x00000001",
30954 "dns.resp.ttl": "1990",
30955 "dns.resp.len": "6",
30956 "dns.ns": "n6b.akamaiedge.net"
30958 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
30959 "dns.resp.name": "b.akamaiedge.net",
30960 "dns.resp.type": "2",
30961 "dns.resp.class": "0x00000001",
30962 "dns.resp.ttl": "1990",
30963 "dns.resp.len": "6",
30964 "dns.ns": "a0b.akamaiedge.net"
30966 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
30967 "dns.resp.name": "b.akamaiedge.net",
30968 "dns.resp.type": "2",
30969 "dns.resp.class": "0x00000001",
30970 "dns.resp.ttl": "1990",
30971 "dns.resp.len": "6",
30972 "dns.ns": "n0b.akamaiedge.net"
30974 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
30975 "dns.resp.name": "b.akamaiedge.net",
30976 "dns.resp.type": "2",
30977 "dns.resp.class": "0x00000001",
30978 "dns.resp.ttl": "1990",
30979 "dns.resp.len": "6",
30980 "dns.ns": "n7b.akamaiedge.net"
30983 "Additional records": {
30984 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
30985 "dns.resp.name": "n0b.akamaiedge.net",
30986 "dns.resp.type": "1",
30987 "dns.resp.class": "0x00000001",
30988 "dns.resp.ttl": "3326",
30989 "dns.resp.len": "4",
30990 "dns.a": "88.221.81.192"
30992 "n1b.akamaiedge.net: type A, class IN, addr 173.197.192.233": {
30993 "dns.resp.name": "n1b.akamaiedge.net",
30994 "dns.resp.type": "1",
30995 "dns.resp.class": "0x00000001",
30996 "dns.resp.ttl": "2019",
30997 "dns.resp.len": "4",
30998 "dns.a": "173.197.192.233"
31000 "n2b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
31001 "dns.resp.name": "n2b.akamaiedge.net",
31002 "dns.resp.type": "1",
31003 "dns.resp.class": "0x00000001",
31004 "dns.resp.ttl": "2529",
31005 "dns.resp.len": "4",
31006 "dns.a": "204.1.137.41"
31008 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
31009 "dns.resp.name": "n3b.akamaiedge.net",
31010 "dns.resp.type": "1",
31011 "dns.resp.class": "0x00000001",
31012 "dns.resp.ttl": "2725",
31013 "dns.resp.len": "4",
31014 "dns.a": "173.223.52.108"
31016 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.217": {
31017 "dns.resp.name": "n4b.akamaiedge.net",
31018 "dns.resp.type": "1",
31019 "dns.resp.class": "0x00000001",
31020 "dns.resp.ttl": "3626",
31021 "dns.resp.len": "4",
31022 "dns.a": "209.18.46.217"
31024 "n5b.akamaiedge.net: type A, class IN, addr 209.18.46.223": {
31025 "dns.resp.name": "n5b.akamaiedge.net",
31026 "dns.resp.type": "1",
31027 "dns.resp.class": "0x00000001",
31028 "dns.resp.ttl": "3370",
31029 "dns.resp.len": "4",
31030 "dns.a": "209.18.46.223"
31032 "n6b.akamaiedge.net: type A, class IN, addr 173.197.192.232": {
31033 "dns.resp.name": "n6b.akamaiedge.net",
31034 "dns.resp.type": "1",
31035 "dns.resp.class": "0x00000001",
31036 "dns.resp.ttl": "3208",
31037 "dns.resp.len": "4",
31038 "dns.a": "173.197.192.232"
31040 "n7b.akamaiedge.net: type A, class IN, addr 96.17.70.173": {
31041 "dns.resp.name": "n7b.akamaiedge.net",
31042 "dns.resp.type": "1",
31043 "dns.resp.class": "0x00000001",
31044 "dns.resp.ttl": "5231",
31045 "dns.resp.len": "4",
31046 "dns.a": "96.17.70.173"
31048 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
31049 "dns.resp.name": "a0b.akamaiedge.net",
31050 "dns.resp.type": "28",
31051 "dns.resp.class": "0x00000001",
31052 "dns.resp.ttl": "5028",
31053 "dns.resp.len": "16",
31054 "dns.aaaa": "2600:1480:e800::c0"
31063 "_index": "packets-2017-10-26",
31064 "_type": "pcap_file",
31069 "frame.encap_type": "1",
31070 "frame.time": "Oct 20, 2017 04:33:23.646883000 PDT",
31071 "frame.offset_shift": "0.000000000",
31072 "frame.time_epoch": "1508499203.646883000",
31073 "frame.time_delta": "3.475755000",
31074 "frame.time_delta_displayed": "630.448422000",
31075 "frame.time_relative": "41491.241679000",
31076 "frame.number": "38816",
31078 "frame.cap_len": "79",
31079 "frame.marked": "0",
31080 "frame.ignored": "0",
31081 "frame.protocols": "eth:ethertype:ip:udp:dns",
31082 "frame.coloring_rule.name": "UDP",
31083 "frame.coloring_rule.string": "udp"
31086 "eth.dst": "b0:b9:8a:73:69:8e",
31088 "eth.dst_resolved": "Netgear_73:69:8e",
31089 "eth.addr": "b0:b9:8a:73:69:8e",
31090 "eth.addr_resolved": "Netgear_73:69:8e",
31094 "eth.src": "00:17:88:69:ee:e4",
31096 "eth.src_resolved": "PhilipsL_69:ee:e4",
31097 "eth.addr": "00:17:88:69:ee:e4",
31098 "eth.addr_resolved": "PhilipsL_69:ee:e4",
31102 "eth.type": "0x00000800"
31106 "ip.hdr_len": "20",
31107 "ip.dsfield": "0x00000000",
31108 "ip.dsfield_tree": {
31109 "ip.dsfield.dscp": "0",
31110 "ip.dsfield.ecn": "0"
31113 "ip.id": "0x0000984f",
31114 "ip.flags": "0x00000002",
31116 "ip.flags.rb": "0",
31117 "ip.flags.df": "1",
31120 "ip.frag_offset": "0",
31123 "ip.checksum": "0x0000206b",
31124 "ip.checksum.status": "2",
31125 "ip.src": "192.168.0.160",
31126 "ip.addr": "192.168.0.160",
31127 "ip.src_host": "192.168.0.160",
31128 "ip.host": "192.168.0.160",
31129 "ip.dst": "192.168.0.1",
31130 "ip.addr": "192.168.0.1",
31131 "ip.dst_host": "192.168.0.1",
31132 "ip.host": "192.168.0.1",
31133 "Source GeoIP: Unknown": "",
31134 "Destination GeoIP: Unknown": ""
31137 "udp.srcport": "49413",
31138 "udp.dstport": "53",
31139 "udp.port": "49413",
31141 "udp.length": "45",
31142 "udp.checksum": "0x0000ff55",
31143 "udp.checksum.status": "2",
31144 "udp.stream": "398"
31147 "dns.response_in": "38817",
31148 "dns.id": "0x000004e2",
31149 "dns.flags": "0x00000100",
31150 "dns.flags_tree": {
31151 "dns.flags.response": "0",
31152 "dns.flags.opcode": "0",
31153 "dns.flags.truncated": "0",
31154 "dns.flags.recdesired": "1",
31155 "dns.flags.z": "0",
31156 "dns.flags.checkdisable": "0"
31158 "dns.count.queries": "1",
31159 "dns.count.answers": "0",
31160 "dns.count.auth_rr": "0",
31161 "dns.count.add_rr": "0",
31163 "dcp.cpp.philips.com: type AAAA, class IN": {
31164 "dns.qry.name": "dcp.cpp.philips.com",
31165 "dns.qry.name.len": "19",
31166 "dns.count.labels": "4",
31167 "dns.qry.type": "28",
31168 "dns.qry.class": "0x00000001"
31177 "_index": "packets-2017-10-26",
31178 "_type": "pcap_file",
31183 "frame.encap_type": "1",
31184 "frame.time": "Oct 20, 2017 04:33:23.648923000 PDT",
31185 "frame.offset_shift": "0.000000000",
31186 "frame.time_epoch": "1508499203.648923000",
31187 "frame.time_delta": "0.002040000",
31188 "frame.time_delta_displayed": "0.002040000",
31189 "frame.time_relative": "41491.243719000",
31190 "frame.number": "38817",
31191 "frame.len": "137",
31192 "frame.cap_len": "137",
31193 "frame.marked": "0",
31194 "frame.ignored": "0",
31195 "frame.protocols": "eth:ethertype:ip:udp:dns",
31196 "frame.coloring_rule.name": "UDP",
31197 "frame.coloring_rule.string": "udp"
31200 "eth.dst": "00:17:88:69:ee:e4",
31202 "eth.dst_resolved": "PhilipsL_69:ee:e4",
31203 "eth.addr": "00:17:88:69:ee:e4",
31204 "eth.addr_resolved": "PhilipsL_69:ee:e4",
31208 "eth.src": "b0:b9:8a:73:69:8e",
31210 "eth.src_resolved": "Netgear_73:69:8e",
31211 "eth.addr": "b0:b9:8a:73:69:8e",
31212 "eth.addr_resolved": "Netgear_73:69:8e",
31216 "eth.type": "0x00000800"
31220 "ip.hdr_len": "20",
31221 "ip.dsfield": "0x00000000",
31222 "ip.dsfield_tree": {
31223 "ip.dsfield.dscp": "0",
31224 "ip.dsfield.ecn": "0"
31227 "ip.id": "0x000050e3",
31228 "ip.flags": "0x00000002",
31230 "ip.flags.rb": "0",
31231 "ip.flags.df": "1",
31234 "ip.frag_offset": "0",
31237 "ip.checksum": "0x0000679d",
31238 "ip.checksum.status": "2",
31239 "ip.src": "192.168.0.1",
31240 "ip.addr": "192.168.0.1",
31241 "ip.src_host": "192.168.0.1",
31242 "ip.host": "192.168.0.1",
31243 "ip.dst": "192.168.0.160",
31244 "ip.addr": "192.168.0.160",
31245 "ip.dst_host": "192.168.0.160",
31246 "ip.host": "192.168.0.160",
31247 "Source GeoIP: Unknown": "",
31248 "Destination GeoIP: Unknown": ""
31251 "udp.srcport": "53",
31252 "udp.dstport": "49413",
31254 "udp.port": "49413",
31255 "udp.length": "103",
31256 "udp.checksum": "0x0000826a",
31257 "udp.checksum.status": "2",
31258 "udp.stream": "398"
31261 "dns.response_to": "38816",
31262 "dns.time": "0.002040000",
31263 "dns.id": "0x000004e2",
31264 "dns.flags": "0x00008180",
31265 "dns.flags_tree": {
31266 "dns.flags.response": "1",
31267 "dns.flags.opcode": "0",
31268 "dns.flags.authoritative": "0",
31269 "dns.flags.truncated": "0",
31270 "dns.flags.recdesired": "1",
31271 "dns.flags.recavail": "1",
31272 "dns.flags.z": "0",
31273 "dns.flags.authenticated": "0",
31274 "dns.flags.checkdisable": "0",
31275 "dns.flags.rcode": "0"
31277 "dns.count.queries": "1",
31278 "dns.count.answers": "0",
31279 "dns.count.auth_rr": "1",
31280 "dns.count.add_rr": "0",
31282 "dcp.cpp.philips.com: type AAAA, class IN": {
31283 "dns.qry.name": "dcp.cpp.philips.com",
31284 "dns.qry.name.len": "19",
31285 "dns.count.labels": "4",
31286 "dns.qry.type": "28",
31287 "dns.qry.class": "0x00000001"
31290 "Authoritative nameservers": {
31291 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
31292 "dns.resp.name": "cpp.philips.com",
31293 "dns.resp.type": "6",
31294 "dns.resp.class": "0x00000001",
31295 "dns.resp.ttl": "1786",
31296 "dns.resp.len": "46",
31297 "dns.soa.mname": "ns1.ext.philips.com",
31298 "dns.soa.rname": "ddi-authority.philips.com",
31299 "dns.soa.serial_number": "387",
31300 "dns.soa.refresh_interval": "1200",
31301 "dns.soa.retry_interval": "300",
31302 "dns.soa.expire_limit": "1209600",
31303 "dns.soa.mininum_ttl": "3600"
31312 "_index": "packets-2017-10-26",
31313 "_type": "pcap_file",
31318 "frame.encap_type": "1",
31319 "frame.time": "Oct 20, 2017 04:33:23.651769000 PDT",
31320 "frame.offset_shift": "0.000000000",
31321 "frame.time_epoch": "1508499203.651769000",
31322 "frame.time_delta": "0.002846000",
31323 "frame.time_delta_displayed": "0.002846000",
31324 "frame.time_relative": "41491.246565000",
31325 "frame.number": "38818",
31327 "frame.cap_len": "79",
31328 "frame.marked": "0",
31329 "frame.ignored": "0",
31330 "frame.protocols": "eth:ethertype:ip:udp:dns",
31331 "frame.coloring_rule.name": "UDP",
31332 "frame.coloring_rule.string": "udp"
31335 "eth.dst": "b0:b9:8a:73:69:8e",
31337 "eth.dst_resolved": "Netgear_73:69:8e",
31338 "eth.addr": "b0:b9:8a:73:69:8e",
31339 "eth.addr_resolved": "Netgear_73:69:8e",
31343 "eth.src": "00:17:88:69:ee:e4",
31345 "eth.src_resolved": "PhilipsL_69:ee:e4",
31346 "eth.addr": "00:17:88:69:ee:e4",
31347 "eth.addr_resolved": "PhilipsL_69:ee:e4",
31351 "eth.type": "0x00000800"
31355 "ip.hdr_len": "20",
31356 "ip.dsfield": "0x00000000",
31357 "ip.dsfield_tree": {
31358 "ip.dsfield.dscp": "0",
31359 "ip.dsfield.ecn": "0"
31362 "ip.id": "0x00009850",
31363 "ip.flags": "0x00000002",
31365 "ip.flags.rb": "0",
31366 "ip.flags.df": "1",
31369 "ip.frag_offset": "0",
31372 "ip.checksum": "0x0000206a",
31373 "ip.checksum.status": "2",
31374 "ip.src": "192.168.0.160",
31375 "ip.addr": "192.168.0.160",
31376 "ip.src_host": "192.168.0.160",
31377 "ip.host": "192.168.0.160",
31378 "ip.dst": "192.168.0.1",
31379 "ip.addr": "192.168.0.1",
31380 "ip.dst_host": "192.168.0.1",
31381 "ip.host": "192.168.0.1",
31382 "Source GeoIP: Unknown": "",
31383 "Destination GeoIP: Unknown": ""
31386 "udp.srcport": "36635",
31387 "udp.dstport": "53",
31388 "udp.port": "36635",
31390 "udp.length": "45",
31391 "udp.checksum": "0x00004c3f",
31392 "udp.checksum.status": "2",
31393 "udp.stream": "399"
31396 "dns.response_in": "38819",
31397 "dns.id": "0x000004e3",
31398 "dns.flags": "0x00000100",
31399 "dns.flags_tree": {
31400 "dns.flags.response": "0",
31401 "dns.flags.opcode": "0",
31402 "dns.flags.truncated": "0",
31403 "dns.flags.recdesired": "1",
31404 "dns.flags.z": "0",
31405 "dns.flags.checkdisable": "0"
31407 "dns.count.queries": "1",
31408 "dns.count.answers": "0",
31409 "dns.count.auth_rr": "0",
31410 "dns.count.add_rr": "0",
31412 "dcp.cpp.philips.com: type A, class IN": {
31413 "dns.qry.name": "dcp.cpp.philips.com",
31414 "dns.qry.name.len": "19",
31415 "dns.count.labels": "4",
31416 "dns.qry.type": "1",
31417 "dns.qry.class": "0x00000001"
31426 "_index": "packets-2017-10-26",
31427 "_type": "pcap_file",
31432 "frame.encap_type": "1",
31433 "frame.time": "Oct 20, 2017 04:33:23.653376000 PDT",
31434 "frame.offset_shift": "0.000000000",
31435 "frame.time_epoch": "1508499203.653376000",
31436 "frame.time_delta": "0.001607000",
31437 "frame.time_delta_displayed": "0.001607000",
31438 "frame.time_relative": "41491.248172000",
31439 "frame.number": "38819",
31440 "frame.len": "285",
31441 "frame.cap_len": "285",
31442 "frame.marked": "0",
31443 "frame.ignored": "0",
31444 "frame.protocols": "eth:ethertype:ip:udp:dns",
31445 "frame.coloring_rule.name": "UDP",
31446 "frame.coloring_rule.string": "udp"
31449 "eth.dst": "00:17:88:69:ee:e4",
31451 "eth.dst_resolved": "PhilipsL_69:ee:e4",
31452 "eth.addr": "00:17:88:69:ee:e4",
31453 "eth.addr_resolved": "PhilipsL_69:ee:e4",
31457 "eth.src": "b0:b9:8a:73:69:8e",
31459 "eth.src_resolved": "Netgear_73:69:8e",
31460 "eth.addr": "b0:b9:8a:73:69:8e",
31461 "eth.addr_resolved": "Netgear_73:69:8e",
31465 "eth.type": "0x00000800"
31469 "ip.hdr_len": "20",
31470 "ip.dsfield": "0x00000000",
31471 "ip.dsfield_tree": {
31472 "ip.dsfield.dscp": "0",
31473 "ip.dsfield.ecn": "0"
31476 "ip.id": "0x000050e4",
31477 "ip.flags": "0x00000002",
31479 "ip.flags.rb": "0",
31480 "ip.flags.df": "1",
31483 "ip.frag_offset": "0",
31486 "ip.checksum": "0x00006708",
31487 "ip.checksum.status": "2",
31488 "ip.src": "192.168.0.1",
31489 "ip.addr": "192.168.0.1",
31490 "ip.src_host": "192.168.0.1",
31491 "ip.host": "192.168.0.1",
31492 "ip.dst": "192.168.0.160",
31493 "ip.addr": "192.168.0.160",
31494 "ip.dst_host": "192.168.0.160",
31495 "ip.host": "192.168.0.160",
31496 "Source GeoIP: Unknown": "",
31497 "Destination GeoIP: Unknown": ""
31500 "udp.srcport": "53",
31501 "udp.dstport": "36635",
31503 "udp.port": "36635",
31504 "udp.length": "251",
31505 "udp.checksum": "0x000082fe",
31506 "udp.checksum.status": "2",
31507 "udp.stream": "399"
31510 "dns.response_to": "38818",
31511 "dns.time": "0.001607000",
31512 "dns.id": "0x000004e3",
31513 "dns.flags": "0x00008180",
31514 "dns.flags_tree": {
31515 "dns.flags.response": "1",
31516 "dns.flags.opcode": "0",
31517 "dns.flags.authoritative": "0",
31518 "dns.flags.truncated": "0",
31519 "dns.flags.recdesired": "1",
31520 "dns.flags.recavail": "1",
31521 "dns.flags.z": "0",
31522 "dns.flags.authenticated": "0",
31523 "dns.flags.checkdisable": "0",
31524 "dns.flags.rcode": "0"
31526 "dns.count.queries": "1",
31527 "dns.count.answers": "1",
31528 "dns.count.auth_rr": "3",
31529 "dns.count.add_rr": "6",
31531 "dcp.cpp.philips.com: type A, class IN": {
31532 "dns.qry.name": "dcp.cpp.philips.com",
31533 "dns.qry.name.len": "19",
31534 "dns.count.labels": "4",
31535 "dns.qry.type": "1",
31536 "dns.qry.class": "0x00000001"
31540 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
31541 "dns.resp.name": "dcp.cpp.philips.com",
31542 "dns.resp.type": "1",
31543 "dns.resp.class": "0x00000001",
31544 "dns.resp.ttl": "2989",
31545 "dns.resp.len": "4",
31546 "dns.a": "5.79.62.93"
31549 "Authoritative nameservers": {
31550 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
31551 "dns.resp.name": "cpp.philips.com",
31552 "dns.resp.type": "2",
31553 "dns.resp.class": "0x00000001",
31554 "dns.resp.ttl": "1786",
31555 "dns.resp.len": "10",
31556 "dns.ns": "ns1.ext.philips.com"
31558 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
31559 "dns.resp.name": "cpp.philips.com",
31560 "dns.resp.type": "2",
31561 "dns.resp.class": "0x00000001",
31562 "dns.resp.ttl": "1786",
31563 "dns.resp.len": "6",
31564 "dns.ns": "ns2.ext.philips.com"
31566 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
31567 "dns.resp.name": "cpp.philips.com",
31568 "dns.resp.type": "2",
31569 "dns.resp.class": "0x00000001",
31570 "dns.resp.ttl": "1786",
31571 "dns.resp.len": "6",
31572 "dns.ns": "ns3.ext.philips.com"
31575 "Additional records": {
31576 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
31577 "dns.resp.name": "ns1.ext.philips.com",
31578 "dns.resp.type": "1",
31579 "dns.resp.class": "0x00000001",
31580 "dns.resp.ttl": "115407",
31581 "dns.resp.len": "4",
31582 "dns.a": "57.67.40.20"
31584 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
31585 "dns.resp.name": "ns2.ext.philips.com",
31586 "dns.resp.type": "1",
31587 "dns.resp.class": "0x00000001",
31588 "dns.resp.ttl": "140125",
31589 "dns.resp.len": "4",
31590 "dns.a": "57.77.21.76"
31592 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
31593 "dns.resp.name": "ns3.ext.philips.com",
31594 "dns.resp.type": "1",
31595 "dns.resp.class": "0x00000001",
31596 "dns.resp.ttl": "140125",
31597 "dns.resp.len": "4",
31598 "dns.a": "57.73.36.68"
31600 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
31601 "dns.resp.name": "ns1.ext.philips.com",
31602 "dns.resp.type": "28",
31603 "dns.resp.class": "0x00000001",
31604 "dns.resp.ttl": "119026",
31605 "dns.resp.len": "16",
31606 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
31608 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
31609 "dns.resp.name": "ns2.ext.philips.com",
31610 "dns.resp.type": "28",
31611 "dns.resp.class": "0x00000001",
31612 "dns.resp.ttl": "111599",
31613 "dns.resp.len": "16",
31614 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
31616 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
31617 "dns.resp.name": "ns3.ext.philips.com",
31618 "dns.resp.type": "28",
31619 "dns.resp.class": "0x00000001",
31620 "dns.resp.ttl": "111599",
31621 "dns.resp.len": "16",
31622 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
31631 "_index": "packets-2017-10-26",
31632 "_type": "pcap_file",
31637 "frame.encap_type": "1",
31638 "frame.time": "Oct 20, 2017 04:33:24.064209000 PDT",
31639 "frame.offset_shift": "0.000000000",
31640 "frame.time_epoch": "1508499204.064209000",
31641 "frame.time_delta": "0.000887000",
31642 "frame.time_delta_displayed": "0.410833000",
31643 "frame.time_relative": "41491.659005000",
31644 "frame.number": "38835",
31646 "frame.cap_len": "79",
31647 "frame.marked": "0",
31648 "frame.ignored": "0",
31649 "frame.protocols": "eth:ethertype:ip:udp:dns",
31650 "frame.coloring_rule.name": "UDP",
31651 "frame.coloring_rule.string": "udp"
31654 "eth.dst": "b0:b9:8a:73:69:8e",
31656 "eth.dst_resolved": "Netgear_73:69:8e",
31657 "eth.addr": "b0:b9:8a:73:69:8e",
31658 "eth.addr_resolved": "Netgear_73:69:8e",
31662 "eth.src": "00:17:88:69:ee:e4",
31664 "eth.src_resolved": "PhilipsL_69:ee:e4",
31665 "eth.addr": "00:17:88:69:ee:e4",
31666 "eth.addr_resolved": "PhilipsL_69:ee:e4",
31670 "eth.type": "0x00000800"
31674 "ip.hdr_len": "20",
31675 "ip.dsfield": "0x00000000",
31676 "ip.dsfield_tree": {
31677 "ip.dsfield.dscp": "0",
31678 "ip.dsfield.ecn": "0"
31681 "ip.id": "0x00009876",
31682 "ip.flags": "0x00000002",
31684 "ip.flags.rb": "0",
31685 "ip.flags.df": "1",
31688 "ip.frag_offset": "0",
31691 "ip.checksum": "0x00002044",
31692 "ip.checksum.status": "2",
31693 "ip.src": "192.168.0.160",
31694 "ip.addr": "192.168.0.160",
31695 "ip.src_host": "192.168.0.160",
31696 "ip.host": "192.168.0.160",
31697 "ip.dst": "192.168.0.1",
31698 "ip.addr": "192.168.0.1",
31699 "ip.dst_host": "192.168.0.1",
31700 "ip.host": "192.168.0.1",
31701 "Source GeoIP: Unknown": "",
31702 "Destination GeoIP: Unknown": ""
31705 "udp.srcport": "44523",
31706 "udp.dstport": "53",
31707 "udp.port": "44523",
31709 "udp.length": "45",
31710 "udp.checksum": "0x0000126e",
31711 "udp.checksum.status": "2",
31712 "udp.stream": "400"
31715 "dns.response_in": "38836",
31716 "dns.id": "0x000004e4",
31717 "dns.flags": "0x00000100",
31718 "dns.flags_tree": {
31719 "dns.flags.response": "0",
31720 "dns.flags.opcode": "0",
31721 "dns.flags.truncated": "0",
31722 "dns.flags.recdesired": "1",
31723 "dns.flags.z": "0",
31724 "dns.flags.checkdisable": "0"
31726 "dns.count.queries": "1",
31727 "dns.count.answers": "0",
31728 "dns.count.auth_rr": "0",
31729 "dns.count.add_rr": "0",
31731 "dcp.cpp.philips.com: type AAAA, class IN": {
31732 "dns.qry.name": "dcp.cpp.philips.com",
31733 "dns.qry.name.len": "19",
31734 "dns.count.labels": "4",
31735 "dns.qry.type": "28",
31736 "dns.qry.class": "0x00000001"
31745 "_index": "packets-2017-10-26",
31746 "_type": "pcap_file",
31751 "frame.encap_type": "1",
31752 "frame.time": "Oct 20, 2017 04:33:24.064806000 PDT",
31753 "frame.offset_shift": "0.000000000",
31754 "frame.time_epoch": "1508499204.064806000",
31755 "frame.time_delta": "0.000597000",
31756 "frame.time_delta_displayed": "0.000597000",
31757 "frame.time_relative": "41491.659602000",
31758 "frame.number": "38836",
31760 "frame.cap_len": "79",
31761 "frame.marked": "0",
31762 "frame.ignored": "0",
31763 "frame.protocols": "eth:ethertype:ip:udp:dns",
31764 "frame.coloring_rule.name": "UDP",
31765 "frame.coloring_rule.string": "udp"
31768 "eth.dst": "00:17:88:69:ee:e4",
31770 "eth.dst_resolved": "PhilipsL_69:ee:e4",
31771 "eth.addr": "00:17:88:69:ee:e4",
31772 "eth.addr_resolved": "PhilipsL_69:ee:e4",
31776 "eth.src": "b0:b9:8a:73:69:8e",
31778 "eth.src_resolved": "Netgear_73:69:8e",
31779 "eth.addr": "b0:b9:8a:73:69:8e",
31780 "eth.addr_resolved": "Netgear_73:69:8e",
31784 "eth.type": "0x00000800"
31788 "ip.hdr_len": "20",
31789 "ip.dsfield": "0x00000000",
31790 "ip.dsfield_tree": {
31791 "ip.dsfield.dscp": "0",
31792 "ip.dsfield.ecn": "0"
31795 "ip.id": "0x00005106",
31796 "ip.flags": "0x00000002",
31798 "ip.flags.rb": "0",
31799 "ip.flags.df": "1",
31802 "ip.frag_offset": "0",
31805 "ip.checksum": "0x000067b4",
31806 "ip.checksum.status": "2",
31807 "ip.src": "192.168.0.1",
31808 "ip.addr": "192.168.0.1",
31809 "ip.src_host": "192.168.0.1",
31810 "ip.host": "192.168.0.1",
31811 "ip.dst": "192.168.0.160",
31812 "ip.addr": "192.168.0.160",
31813 "ip.dst_host": "192.168.0.160",
31814 "ip.host": "192.168.0.160",
31815 "Source GeoIP: Unknown": "",
31816 "Destination GeoIP: Unknown": ""
31819 "udp.srcport": "53",
31820 "udp.dstport": "44523",
31822 "udp.port": "44523",
31823 "udp.length": "45",
31824 "udp.checksum": "0x00008230",
31825 "udp.checksum.status": "2",
31826 "udp.stream": "400"
31829 "dns.response_to": "38835",
31830 "dns.time": "0.000597000",
31831 "dns.id": "0x000004e4",
31832 "dns.flags": "0x00008180",
31833 "dns.flags_tree": {
31834 "dns.flags.response": "1",
31835 "dns.flags.opcode": "0",
31836 "dns.flags.authoritative": "0",
31837 "dns.flags.truncated": "0",
31838 "dns.flags.recdesired": "1",
31839 "dns.flags.recavail": "1",
31840 "dns.flags.z": "0",
31841 "dns.flags.authenticated": "0",
31842 "dns.flags.checkdisable": "0",
31843 "dns.flags.rcode": "0"
31845 "dns.count.queries": "1",
31846 "dns.count.answers": "0",
31847 "dns.count.auth_rr": "0",
31848 "dns.count.add_rr": "0",
31850 "dcp.cpp.philips.com: type AAAA, class IN": {
31851 "dns.qry.name": "dcp.cpp.philips.com",
31852 "dns.qry.name.len": "19",
31853 "dns.count.labels": "4",
31854 "dns.qry.type": "28",
31855 "dns.qry.class": "0x00000001"
31864 "_index": "packets-2017-10-26",
31865 "_type": "pcap_file",
31870 "frame.encap_type": "1",
31871 "frame.time": "Oct 20, 2017 04:33:24.065754000 PDT",
31872 "frame.offset_shift": "0.000000000",
31873 "frame.time_epoch": "1508499204.065754000",
31874 "frame.time_delta": "0.000948000",
31875 "frame.time_delta_displayed": "0.000948000",
31876 "frame.time_relative": "41491.660550000",
31877 "frame.number": "38837",
31879 "frame.cap_len": "79",
31880 "frame.marked": "0",
31881 "frame.ignored": "0",
31882 "frame.protocols": "eth:ethertype:ip:udp:dns",
31883 "frame.coloring_rule.name": "UDP",
31884 "frame.coloring_rule.string": "udp"
31887 "eth.dst": "b0:b9:8a:73:69:8e",
31889 "eth.dst_resolved": "Netgear_73:69:8e",
31890 "eth.addr": "b0:b9:8a:73:69:8e",
31891 "eth.addr_resolved": "Netgear_73:69:8e",
31895 "eth.src": "00:17:88:69:ee:e4",
31897 "eth.src_resolved": "PhilipsL_69:ee:e4",
31898 "eth.addr": "00:17:88:69:ee:e4",
31899 "eth.addr_resolved": "PhilipsL_69:ee:e4",
31903 "eth.type": "0x00000800"
31907 "ip.hdr_len": "20",
31908 "ip.dsfield": "0x00000000",
31909 "ip.dsfield_tree": {
31910 "ip.dsfield.dscp": "0",
31911 "ip.dsfield.ecn": "0"
31914 "ip.id": "0x00009877",
31915 "ip.flags": "0x00000002",
31917 "ip.flags.rb": "0",
31918 "ip.flags.df": "1",
31921 "ip.frag_offset": "0",
31924 "ip.checksum": "0x00002043",
31925 "ip.checksum.status": "2",
31926 "ip.src": "192.168.0.160",
31927 "ip.addr": "192.168.0.160",
31928 "ip.src_host": "192.168.0.160",
31929 "ip.host": "192.168.0.160",
31930 "ip.dst": "192.168.0.1",
31931 "ip.addr": "192.168.0.1",
31932 "ip.dst_host": "192.168.0.1",
31933 "ip.host": "192.168.0.1",
31934 "Source GeoIP: Unknown": "",
31935 "Destination GeoIP: Unknown": ""
31938 "udp.srcport": "44144",
31939 "udp.dstport": "53",
31940 "udp.port": "44144",
31942 "udp.length": "45",
31943 "udp.checksum": "0x00002ee8",
31944 "udp.checksum.status": "2",
31945 "udp.stream": "401"
31948 "dns.response_in": "38838",
31949 "dns.id": "0x000004e5",
31950 "dns.flags": "0x00000100",
31951 "dns.flags_tree": {
31952 "dns.flags.response": "0",
31953 "dns.flags.opcode": "0",
31954 "dns.flags.truncated": "0",
31955 "dns.flags.recdesired": "1",
31956 "dns.flags.z": "0",
31957 "dns.flags.checkdisable": "0"
31959 "dns.count.queries": "1",
31960 "dns.count.answers": "0",
31961 "dns.count.auth_rr": "0",
31962 "dns.count.add_rr": "0",
31964 "dcp.cpp.philips.com: type A, class IN": {
31965 "dns.qry.name": "dcp.cpp.philips.com",
31966 "dns.qry.name.len": "19",
31967 "dns.count.labels": "4",
31968 "dns.qry.type": "1",
31969 "dns.qry.class": "0x00000001"
31978 "_index": "packets-2017-10-26",
31979 "_type": "pcap_file",
31984 "frame.encap_type": "1",
31985 "frame.time": "Oct 20, 2017 04:33:24.066174000 PDT",
31986 "frame.offset_shift": "0.000000000",
31987 "frame.time_epoch": "1508499204.066174000",
31988 "frame.time_delta": "0.000420000",
31989 "frame.time_delta_displayed": "0.000420000",
31990 "frame.time_relative": "41491.660970000",
31991 "frame.number": "38838",
31993 "frame.cap_len": "95",
31994 "frame.marked": "0",
31995 "frame.ignored": "0",
31996 "frame.protocols": "eth:ethertype:ip:udp:dns",
31997 "frame.coloring_rule.name": "UDP",
31998 "frame.coloring_rule.string": "udp"
32001 "eth.dst": "00:17:88:69:ee:e4",
32003 "eth.dst_resolved": "PhilipsL_69:ee:e4",
32004 "eth.addr": "00:17:88:69:ee:e4",
32005 "eth.addr_resolved": "PhilipsL_69:ee:e4",
32009 "eth.src": "b0:b9:8a:73:69:8e",
32011 "eth.src_resolved": "Netgear_73:69:8e",
32012 "eth.addr": "b0:b9:8a:73:69:8e",
32013 "eth.addr_resolved": "Netgear_73:69:8e",
32017 "eth.type": "0x00000800"
32021 "ip.hdr_len": "20",
32022 "ip.dsfield": "0x00000000",
32023 "ip.dsfield_tree": {
32024 "ip.dsfield.dscp": "0",
32025 "ip.dsfield.ecn": "0"
32028 "ip.id": "0x00005107",
32029 "ip.flags": "0x00000002",
32031 "ip.flags.rb": "0",
32032 "ip.flags.df": "1",
32035 "ip.frag_offset": "0",
32038 "ip.checksum": "0x000067a3",
32039 "ip.checksum.status": "2",
32040 "ip.src": "192.168.0.1",
32041 "ip.addr": "192.168.0.1",
32042 "ip.src_host": "192.168.0.1",
32043 "ip.host": "192.168.0.1",
32044 "ip.dst": "192.168.0.160",
32045 "ip.addr": "192.168.0.160",
32046 "ip.dst_host": "192.168.0.160",
32047 "ip.host": "192.168.0.160",
32048 "Source GeoIP: Unknown": "",
32049 "Destination GeoIP: Unknown": ""
32052 "udp.srcport": "53",
32053 "udp.dstport": "44144",
32055 "udp.port": "44144",
32056 "udp.length": "61",
32057 "udp.checksum": "0x00008240",
32058 "udp.checksum.status": "2",
32059 "udp.stream": "401"
32062 "dns.response_to": "38837",
32063 "dns.time": "0.000420000",
32064 "dns.id": "0x000004e5",
32065 "dns.flags": "0x00008180",
32066 "dns.flags_tree": {
32067 "dns.flags.response": "1",
32068 "dns.flags.opcode": "0",
32069 "dns.flags.authoritative": "0",
32070 "dns.flags.truncated": "0",
32071 "dns.flags.recdesired": "1",
32072 "dns.flags.recavail": "1",
32073 "dns.flags.z": "0",
32074 "dns.flags.authenticated": "0",
32075 "dns.flags.checkdisable": "0",
32076 "dns.flags.rcode": "0"
32078 "dns.count.queries": "1",
32079 "dns.count.answers": "1",
32080 "dns.count.auth_rr": "0",
32081 "dns.count.add_rr": "0",
32083 "dcp.cpp.philips.com: type A, class IN": {
32084 "dns.qry.name": "dcp.cpp.philips.com",
32085 "dns.qry.name.len": "19",
32086 "dns.count.labels": "4",
32087 "dns.qry.type": "1",
32088 "dns.qry.class": "0x00000001"
32092 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
32093 "dns.resp.name": "dcp.cpp.philips.com",
32094 "dns.resp.type": "1",
32095 "dns.resp.class": "0x00000001",
32096 "dns.resp.ttl": "2988",
32097 "dns.resp.len": "4",
32098 "dns.a": "5.79.62.93"
32107 "_index": "packets-2017-10-26",
32108 "_type": "pcap_file",
32113 "frame.encap_type": "1",
32114 "frame.time": "Oct 20, 2017 04:37:53.206495000 PDT",
32115 "frame.offset_shift": "0.000000000",
32116 "frame.time_epoch": "1508499473.206495000",
32117 "frame.time_delta": "0.549295000",
32118 "frame.time_delta_displayed": "269.140321000",
32119 "frame.time_relative": "41760.801291000",
32120 "frame.number": "39097",
32122 "frame.cap_len": "76",
32123 "frame.marked": "0",
32124 "frame.ignored": "0",
32125 "frame.protocols": "eth:ethertype:ip:udp:dns",
32126 "frame.coloring_rule.name": "UDP",
32127 "frame.coloring_rule.string": "udp"
32130 "eth.dst": "b0:b9:8a:73:69:8e",
32132 "eth.dst_resolved": "Netgear_73:69:8e",
32133 "eth.addr": "b0:b9:8a:73:69:8e",
32134 "eth.addr_resolved": "Netgear_73:69:8e",
32138 "eth.src": "00:17:88:69:ee:e4",
32140 "eth.src_resolved": "PhilipsL_69:ee:e4",
32141 "eth.addr": "00:17:88:69:ee:e4",
32142 "eth.addr_resolved": "PhilipsL_69:ee:e4",
32146 "eth.type": "0x00000800"
32150 "ip.hdr_len": "20",
32151 "ip.dsfield": "0x00000000",
32152 "ip.dsfield_tree": {
32153 "ip.dsfield.dscp": "0",
32154 "ip.dsfield.ecn": "0"
32157 "ip.id": "0x0000dbe6",
32158 "ip.flags": "0x00000002",
32160 "ip.flags.rb": "0",
32161 "ip.flags.df": "1",
32164 "ip.frag_offset": "0",
32167 "ip.checksum": "0x0000dcd6",
32168 "ip.checksum.status": "2",
32169 "ip.src": "192.168.0.160",
32170 "ip.addr": "192.168.0.160",
32171 "ip.src_host": "192.168.0.160",
32172 "ip.host": "192.168.0.160",
32173 "ip.dst": "192.168.0.1",
32174 "ip.addr": "192.168.0.1",
32175 "ip.dst_host": "192.168.0.1",
32176 "ip.host": "192.168.0.1",
32177 "Source GeoIP: Unknown": "",
32178 "Destination GeoIP: Unknown": ""
32181 "udp.srcport": "45662",
32182 "udp.dstport": "53",
32183 "udp.port": "45662",
32185 "udp.length": "42",
32186 "udp.checksum": "0x0000a673",
32187 "udp.checksum.status": "2",
32188 "udp.stream": "405"
32191 "dns.response_in": "39098",
32192 "dns.id": "0x000004e6",
32193 "dns.flags": "0x00000100",
32194 "dns.flags_tree": {
32195 "dns.flags.response": "0",
32196 "dns.flags.opcode": "0",
32197 "dns.flags.truncated": "0",
32198 "dns.flags.recdesired": "1",
32199 "dns.flags.z": "0",
32200 "dns.flags.checkdisable": "0"
32202 "dns.count.queries": "1",
32203 "dns.count.answers": "0",
32204 "dns.count.auth_rr": "0",
32205 "dns.count.add_rr": "0",
32207 "www2.meethue.com: type A, class IN": {
32208 "dns.qry.name": "www2.meethue.com",
32209 "dns.qry.name.len": "16",
32210 "dns.count.labels": "3",
32211 "dns.qry.type": "1",
32212 "dns.qry.class": "0x00000001"
32221 "_index": "packets-2017-10-26",
32222 "_type": "pcap_file",
32227 "frame.encap_type": "1",
32228 "frame.time": "Oct 20, 2017 04:37:53.212525000 PDT",
32229 "frame.offset_shift": "0.000000000",
32230 "frame.time_epoch": "1508499473.212525000",
32231 "frame.time_delta": "0.006030000",
32232 "frame.time_delta_displayed": "0.006030000",
32233 "frame.time_relative": "41760.807321000",
32234 "frame.number": "39098",
32235 "frame.len": "513",
32236 "frame.cap_len": "513",
32237 "frame.marked": "0",
32238 "frame.ignored": "0",
32239 "frame.protocols": "eth:ethertype:ip:udp:dns",
32240 "frame.coloring_rule.name": "UDP",
32241 "frame.coloring_rule.string": "udp"
32244 "eth.dst": "00:17:88:69:ee:e4",
32246 "eth.dst_resolved": "PhilipsL_69:ee:e4",
32247 "eth.addr": "00:17:88:69:ee:e4",
32248 "eth.addr_resolved": "PhilipsL_69:ee:e4",
32252 "eth.src": "b0:b9:8a:73:69:8e",
32254 "eth.src_resolved": "Netgear_73:69:8e",
32255 "eth.addr": "b0:b9:8a:73:69:8e",
32256 "eth.addr_resolved": "Netgear_73:69:8e",
32260 "eth.type": "0x00000800"
32264 "ip.hdr_len": "20",
32265 "ip.dsfield": "0x00000000",
32266 "ip.dsfield_tree": {
32267 "ip.dsfield.dscp": "0",
32268 "ip.dsfield.ecn": "0"
32271 "ip.id": "0x0000808b",
32272 "ip.flags": "0x00000002",
32274 "ip.flags.rb": "0",
32275 "ip.flags.df": "1",
32278 "ip.frag_offset": "0",
32281 "ip.checksum": "0x0000367d",
32282 "ip.checksum.status": "2",
32283 "ip.src": "192.168.0.1",
32284 "ip.addr": "192.168.0.1",
32285 "ip.src_host": "192.168.0.1",
32286 "ip.host": "192.168.0.1",
32287 "ip.dst": "192.168.0.160",
32288 "ip.addr": "192.168.0.160",
32289 "ip.dst_host": "192.168.0.160",
32290 "ip.host": "192.168.0.160",
32291 "Source GeoIP: Unknown": "",
32292 "Destination GeoIP: Unknown": ""
32295 "udp.srcport": "53",
32296 "udp.dstport": "45662",
32298 "udp.port": "45662",
32299 "udp.length": "479",
32300 "udp.checksum": "0x000083e2",
32301 "udp.checksum.status": "2",
32302 "udp.stream": "405"
32305 "dns.response_to": "39097",
32306 "dns.time": "0.006030000",
32307 "dns.id": "0x000004e6",
32308 "dns.flags": "0x00008180",
32309 "dns.flags_tree": {
32310 "dns.flags.response": "1",
32311 "dns.flags.opcode": "0",
32312 "dns.flags.authoritative": "0",
32313 "dns.flags.truncated": "0",
32314 "dns.flags.recdesired": "1",
32315 "dns.flags.recavail": "1",
32316 "dns.flags.z": "0",
32317 "dns.flags.authenticated": "0",
32318 "dns.flags.checkdisable": "0",
32319 "dns.flags.rcode": "0"
32321 "dns.count.queries": "1",
32322 "dns.count.answers": "4",
32323 "dns.count.auth_rr": "9",
32324 "dns.count.add_rr": "9",
32326 "www2.meethue.com: type A, class IN": {
32327 "dns.qry.name": "www2.meethue.com",
32328 "dns.qry.name.len": "16",
32329 "dns.count.labels": "3",
32330 "dns.qry.type": "1",
32331 "dns.qry.class": "0x00000001"
32335 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
32336 "dns.resp.name": "www2.meethue.com",
32337 "dns.resp.type": "5",
32338 "dns.resp.class": "0x00000001",
32339 "dns.resp.ttl": "121",
32340 "dns.resp.len": "41",
32341 "dns.cname": "brands.lighting.philips.com.edgekey.net"
32343 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
32344 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
32345 "dns.resp.type": "5",
32346 "dns.resp.class": "0x00000001",
32347 "dns.resp.ttl": "15119",
32348 "dns.resp.len": "22",
32349 "dns.cname": "e15361.b.akamaiedge.net"
32351 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
32352 "dns.resp.name": "e15361.b.akamaiedge.net",
32353 "dns.resp.type": "1",
32354 "dns.resp.class": "0x00000001",
32355 "dns.resp.ttl": "20",
32356 "dns.resp.len": "4",
32357 "dns.a": "184.84.242.27"
32359 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
32360 "dns.resp.name": "e15361.b.akamaiedge.net",
32361 "dns.resp.type": "1",
32362 "dns.resp.class": "0x00000001",
32363 "dns.resp.ttl": "20",
32364 "dns.resp.len": "4",
32365 "dns.a": "184.84.242.42"
32368 "Authoritative nameservers": {
32369 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
32370 "dns.resp.name": "b.akamaiedge.net",
32371 "dns.resp.type": "2",
32372 "dns.resp.class": "0x00000001",
32373 "dns.resp.ttl": "1090",
32374 "dns.resp.len": "6",
32375 "dns.ns": "n4b.akamaiedge.net"
32377 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
32378 "dns.resp.name": "b.akamaiedge.net",
32379 "dns.resp.type": "2",
32380 "dns.resp.class": "0x00000001",
32381 "dns.resp.ttl": "1090",
32382 "dns.resp.len": "6",
32383 "dns.ns": "n3b.akamaiedge.net"
32385 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
32386 "dns.resp.name": "b.akamaiedge.net",
32387 "dns.resp.type": "2",
32388 "dns.resp.class": "0x00000001",
32389 "dns.resp.ttl": "1090",
32390 "dns.resp.len": "6",
32391 "dns.ns": "n1b.akamaiedge.net"
32393 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
32394 "dns.resp.name": "b.akamaiedge.net",
32395 "dns.resp.type": "2",
32396 "dns.resp.class": "0x00000001",
32397 "dns.resp.ttl": "1090",
32398 "dns.resp.len": "6",
32399 "dns.ns": "n5b.akamaiedge.net"
32401 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
32402 "dns.resp.name": "b.akamaiedge.net",
32403 "dns.resp.type": "2",
32404 "dns.resp.class": "0x00000001",
32405 "dns.resp.ttl": "1090",
32406 "dns.resp.len": "6",
32407 "dns.ns": "n0b.akamaiedge.net"
32409 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
32410 "dns.resp.name": "b.akamaiedge.net",
32411 "dns.resp.type": "2",
32412 "dns.resp.class": "0x00000001",
32413 "dns.resp.ttl": "1090",
32414 "dns.resp.len": "6",
32415 "dns.ns": "n6b.akamaiedge.net"
32417 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
32418 "dns.resp.name": "b.akamaiedge.net",
32419 "dns.resp.type": "2",
32420 "dns.resp.class": "0x00000001",
32421 "dns.resp.ttl": "1090",
32422 "dns.resp.len": "6",
32423 "dns.ns": "n7b.akamaiedge.net"
32425 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
32426 "dns.resp.name": "b.akamaiedge.net",
32427 "dns.resp.type": "2",
32428 "dns.resp.class": "0x00000001",
32429 "dns.resp.ttl": "1090",
32430 "dns.resp.len": "6",
32431 "dns.ns": "n2b.akamaiedge.net"
32433 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
32434 "dns.resp.name": "b.akamaiedge.net",
32435 "dns.resp.type": "2",
32436 "dns.resp.class": "0x00000001",
32437 "dns.resp.ttl": "1090",
32438 "dns.resp.len": "6",
32439 "dns.ns": "a0b.akamaiedge.net"
32442 "Additional records": {
32443 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
32444 "dns.resp.name": "n0b.akamaiedge.net",
32445 "dns.resp.type": "1",
32446 "dns.resp.class": "0x00000001",
32447 "dns.resp.ttl": "2426",
32448 "dns.resp.len": "4",
32449 "dns.a": "88.221.81.192"
32451 "n1b.akamaiedge.net: type A, class IN, addr 173.197.192.233": {
32452 "dns.resp.name": "n1b.akamaiedge.net",
32453 "dns.resp.type": "1",
32454 "dns.resp.class": "0x00000001",
32455 "dns.resp.ttl": "1119",
32456 "dns.resp.len": "4",
32457 "dns.a": "173.197.192.233"
32459 "n2b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
32460 "dns.resp.name": "n2b.akamaiedge.net",
32461 "dns.resp.type": "1",
32462 "dns.resp.class": "0x00000001",
32463 "dns.resp.ttl": "1629",
32464 "dns.resp.len": "4",
32465 "dns.a": "204.1.137.41"
32467 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
32468 "dns.resp.name": "n3b.akamaiedge.net",
32469 "dns.resp.type": "1",
32470 "dns.resp.class": "0x00000001",
32471 "dns.resp.ttl": "1825",
32472 "dns.resp.len": "4",
32473 "dns.a": "173.223.52.108"
32475 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.217": {
32476 "dns.resp.name": "n4b.akamaiedge.net",
32477 "dns.resp.type": "1",
32478 "dns.resp.class": "0x00000001",
32479 "dns.resp.ttl": "2726",
32480 "dns.resp.len": "4",
32481 "dns.a": "209.18.46.217"
32483 "n5b.akamaiedge.net: type A, class IN, addr 209.18.46.223": {
32484 "dns.resp.name": "n5b.akamaiedge.net",
32485 "dns.resp.type": "1",
32486 "dns.resp.class": "0x00000001",
32487 "dns.resp.ttl": "2470",
32488 "dns.resp.len": "4",
32489 "dns.a": "209.18.46.223"
32491 "n6b.akamaiedge.net: type A, class IN, addr 173.197.192.232": {
32492 "dns.resp.name": "n6b.akamaiedge.net",
32493 "dns.resp.type": "1",
32494 "dns.resp.class": "0x00000001",
32495 "dns.resp.ttl": "2308",
32496 "dns.resp.len": "4",
32497 "dns.a": "173.197.192.232"
32499 "n7b.akamaiedge.net: type A, class IN, addr 96.17.70.173": {
32500 "dns.resp.name": "n7b.akamaiedge.net",
32501 "dns.resp.type": "1",
32502 "dns.resp.class": "0x00000001",
32503 "dns.resp.ttl": "4331",
32504 "dns.resp.len": "4",
32505 "dns.a": "96.17.70.173"
32507 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
32508 "dns.resp.name": "a0b.akamaiedge.net",
32509 "dns.resp.type": "28",
32510 "dns.resp.class": "0x00000001",
32511 "dns.resp.ttl": "4128",
32512 "dns.resp.len": "16",
32513 "dns.aaaa": "2600:1480:e800::c0"
32522 "_index": "packets-2017-10-26",
32523 "_type": "pcap_file",
32528 "frame.encap_type": "1",
32529 "frame.time": "Oct 20, 2017 04:52:53.219299000 PDT",
32530 "frame.offset_shift": "0.000000000",
32531 "frame.time_epoch": "1508500373.219299000",
32532 "frame.time_delta": "3.495831000",
32533 "frame.time_delta_displayed": "900.006774000",
32534 "frame.time_relative": "42660.814095000",
32535 "frame.number": "39806",
32537 "frame.cap_len": "76",
32538 "frame.marked": "0",
32539 "frame.ignored": "0",
32540 "frame.protocols": "eth:ethertype:ip:udp:dns",
32541 "frame.coloring_rule.name": "UDP",
32542 "frame.coloring_rule.string": "udp"
32545 "eth.dst": "b0:b9:8a:73:69:8e",
32547 "eth.dst_resolved": "Netgear_73:69:8e",
32548 "eth.addr": "b0:b9:8a:73:69:8e",
32549 "eth.addr_resolved": "Netgear_73:69:8e",
32553 "eth.src": "00:17:88:69:ee:e4",
32555 "eth.src_resolved": "PhilipsL_69:ee:e4",
32556 "eth.addr": "00:17:88:69:ee:e4",
32557 "eth.addr_resolved": "PhilipsL_69:ee:e4",
32561 "eth.type": "0x00000800"
32565 "ip.hdr_len": "20",
32566 "ip.dsfield": "0x00000000",
32567 "ip.dsfield_tree": {
32568 "ip.dsfield.dscp": "0",
32569 "ip.dsfield.ecn": "0"
32572 "ip.id": "0x00005dbd",
32573 "ip.flags": "0x00000002",
32575 "ip.flags.rb": "0",
32576 "ip.flags.df": "1",
32579 "ip.frag_offset": "0",
32582 "ip.checksum": "0x00005b00",
32583 "ip.checksum.status": "2",
32584 "ip.src": "192.168.0.160",
32585 "ip.addr": "192.168.0.160",
32586 "ip.src_host": "192.168.0.160",
32587 "ip.host": "192.168.0.160",
32588 "ip.dst": "192.168.0.1",
32589 "ip.addr": "192.168.0.1",
32590 "ip.dst_host": "192.168.0.1",
32591 "ip.host": "192.168.0.1",
32592 "Source GeoIP: Unknown": "",
32593 "Destination GeoIP: Unknown": ""
32596 "udp.srcport": "40448",
32597 "udp.dstport": "53",
32598 "udp.port": "40448",
32600 "udp.length": "42",
32601 "udp.checksum": "0x0000bad0",
32602 "udp.checksum.status": "2",
32603 "udp.stream": "409"
32606 "dns.response_in": "39807",
32607 "dns.id": "0x000004e7",
32608 "dns.flags": "0x00000100",
32609 "dns.flags_tree": {
32610 "dns.flags.response": "0",
32611 "dns.flags.opcode": "0",
32612 "dns.flags.truncated": "0",
32613 "dns.flags.recdesired": "1",
32614 "dns.flags.z": "0",
32615 "dns.flags.checkdisable": "0"
32617 "dns.count.queries": "1",
32618 "dns.count.answers": "0",
32619 "dns.count.auth_rr": "0",
32620 "dns.count.add_rr": "0",
32622 "www2.meethue.com: type A, class IN": {
32623 "dns.qry.name": "www2.meethue.com",
32624 "dns.qry.name.len": "16",
32625 "dns.count.labels": "3",
32626 "dns.qry.type": "1",
32627 "dns.qry.class": "0x00000001"
32636 "_index": "packets-2017-10-26",
32637 "_type": "pcap_file",
32642 "frame.encap_type": "1",
32643 "frame.time": "Oct 20, 2017 04:52:53.225624000 PDT",
32644 "frame.offset_shift": "0.000000000",
32645 "frame.time_epoch": "1508500373.225624000",
32646 "frame.time_delta": "0.006325000",
32647 "frame.time_delta_displayed": "0.006325000",
32648 "frame.time_relative": "42660.820420000",
32649 "frame.number": "39807",
32650 "frame.len": "513",
32651 "frame.cap_len": "513",
32652 "frame.marked": "0",
32653 "frame.ignored": "0",
32654 "frame.protocols": "eth:ethertype:ip:udp:dns",
32655 "frame.coloring_rule.name": "UDP",
32656 "frame.coloring_rule.string": "udp"
32659 "eth.dst": "00:17:88:69:ee:e4",
32661 "eth.dst_resolved": "PhilipsL_69:ee:e4",
32662 "eth.addr": "00:17:88:69:ee:e4",
32663 "eth.addr_resolved": "PhilipsL_69:ee:e4",
32667 "eth.src": "b0:b9:8a:73:69:8e",
32669 "eth.src_resolved": "Netgear_73:69:8e",
32670 "eth.addr": "b0:b9:8a:73:69:8e",
32671 "eth.addr_resolved": "Netgear_73:69:8e",
32675 "eth.type": "0x00000800"
32679 "ip.hdr_len": "20",
32680 "ip.dsfield": "0x00000000",
32681 "ip.dsfield_tree": {
32682 "ip.dsfield.dscp": "0",
32683 "ip.dsfield.ecn": "0"
32686 "ip.id": "0x0000ac16",
32687 "ip.flags": "0x00000002",
32689 "ip.flags.rb": "0",
32690 "ip.flags.df": "1",
32693 "ip.frag_offset": "0",
32696 "ip.checksum": "0x00000af2",
32697 "ip.checksum.status": "2",
32698 "ip.src": "192.168.0.1",
32699 "ip.addr": "192.168.0.1",
32700 "ip.src_host": "192.168.0.1",
32701 "ip.host": "192.168.0.1",
32702 "ip.dst": "192.168.0.160",
32703 "ip.addr": "192.168.0.160",
32704 "ip.dst_host": "192.168.0.160",
32705 "ip.host": "192.168.0.160",
32706 "Source GeoIP: Unknown": "",
32707 "Destination GeoIP: Unknown": ""
32710 "udp.srcport": "53",
32711 "udp.dstport": "40448",
32713 "udp.port": "40448",
32714 "udp.length": "479",
32715 "udp.checksum": "0x000083e2",
32716 "udp.checksum.status": "2",
32717 "udp.stream": "409"
32720 "dns.response_to": "39806",
32721 "dns.time": "0.006325000",
32722 "dns.id": "0x000004e7",
32723 "dns.flags": "0x00008180",
32724 "dns.flags_tree": {
32725 "dns.flags.response": "1",
32726 "dns.flags.opcode": "0",
32727 "dns.flags.authoritative": "0",
32728 "dns.flags.truncated": "0",
32729 "dns.flags.recdesired": "1",
32730 "dns.flags.recavail": "1",
32731 "dns.flags.z": "0",
32732 "dns.flags.authenticated": "0",
32733 "dns.flags.checkdisable": "0",
32734 "dns.flags.rcode": "0"
32736 "dns.count.queries": "1",
32737 "dns.count.answers": "4",
32738 "dns.count.auth_rr": "9",
32739 "dns.count.add_rr": "9",
32741 "www2.meethue.com: type A, class IN": {
32742 "dns.qry.name": "www2.meethue.com",
32743 "dns.qry.name.len": "16",
32744 "dns.count.labels": "3",
32745 "dns.qry.type": "1",
32746 "dns.qry.class": "0x00000001"
32750 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
32751 "dns.resp.name": "www2.meethue.com",
32752 "dns.resp.type": "5",
32753 "dns.resp.class": "0x00000001",
32754 "dns.resp.ttl": "122",
32755 "dns.resp.len": "41",
32756 "dns.cname": "brands.lighting.philips.com.edgekey.net"
32758 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
32759 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
32760 "dns.resp.type": "5",
32761 "dns.resp.class": "0x00000001",
32762 "dns.resp.ttl": "14219",
32763 "dns.resp.len": "22",
32764 "dns.cname": "e15361.b.akamaiedge.net"
32766 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
32767 "dns.resp.name": "e15361.b.akamaiedge.net",
32768 "dns.resp.type": "1",
32769 "dns.resp.class": "0x00000001",
32770 "dns.resp.ttl": "20",
32771 "dns.resp.len": "4",
32772 "dns.a": "184.84.242.42"
32774 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
32775 "dns.resp.name": "e15361.b.akamaiedge.net",
32776 "dns.resp.type": "1",
32777 "dns.resp.class": "0x00000001",
32778 "dns.resp.ttl": "20",
32779 "dns.resp.len": "4",
32780 "dns.a": "184.84.242.27"
32783 "Authoritative nameservers": {
32784 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
32785 "dns.resp.name": "b.akamaiedge.net",
32786 "dns.resp.type": "2",
32787 "dns.resp.class": "0x00000001",
32788 "dns.resp.ttl": "190",
32789 "dns.resp.len": "6",
32790 "dns.ns": "n6b.akamaiedge.net"
32792 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
32793 "dns.resp.name": "b.akamaiedge.net",
32794 "dns.resp.type": "2",
32795 "dns.resp.class": "0x00000001",
32796 "dns.resp.ttl": "190",
32797 "dns.resp.len": "6",
32798 "dns.ns": "a0b.akamaiedge.net"
32800 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
32801 "dns.resp.name": "b.akamaiedge.net",
32802 "dns.resp.type": "2",
32803 "dns.resp.class": "0x00000001",
32804 "dns.resp.ttl": "190",
32805 "dns.resp.len": "6",
32806 "dns.ns": "n2b.akamaiedge.net"
32808 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
32809 "dns.resp.name": "b.akamaiedge.net",
32810 "dns.resp.type": "2",
32811 "dns.resp.class": "0x00000001",
32812 "dns.resp.ttl": "190",
32813 "dns.resp.len": "6",
32814 "dns.ns": "n1b.akamaiedge.net"
32816 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
32817 "dns.resp.name": "b.akamaiedge.net",
32818 "dns.resp.type": "2",
32819 "dns.resp.class": "0x00000001",
32820 "dns.resp.ttl": "190",
32821 "dns.resp.len": "6",
32822 "dns.ns": "n0b.akamaiedge.net"
32824 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
32825 "dns.resp.name": "b.akamaiedge.net",
32826 "dns.resp.type": "2",
32827 "dns.resp.class": "0x00000001",
32828 "dns.resp.ttl": "190",
32829 "dns.resp.len": "6",
32830 "dns.ns": "n5b.akamaiedge.net"
32832 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
32833 "dns.resp.name": "b.akamaiedge.net",
32834 "dns.resp.type": "2",
32835 "dns.resp.class": "0x00000001",
32836 "dns.resp.ttl": "190",
32837 "dns.resp.len": "6",
32838 "dns.ns": "n7b.akamaiedge.net"
32840 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
32841 "dns.resp.name": "b.akamaiedge.net",
32842 "dns.resp.type": "2",
32843 "dns.resp.class": "0x00000001",
32844 "dns.resp.ttl": "190",
32845 "dns.resp.len": "6",
32846 "dns.ns": "n4b.akamaiedge.net"
32848 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
32849 "dns.resp.name": "b.akamaiedge.net",
32850 "dns.resp.type": "2",
32851 "dns.resp.class": "0x00000001",
32852 "dns.resp.ttl": "190",
32853 "dns.resp.len": "6",
32854 "dns.ns": "n3b.akamaiedge.net"
32857 "Additional records": {
32858 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
32859 "dns.resp.name": "n0b.akamaiedge.net",
32860 "dns.resp.type": "1",
32861 "dns.resp.class": "0x00000001",
32862 "dns.resp.ttl": "1526",
32863 "dns.resp.len": "4",
32864 "dns.a": "88.221.81.192"
32866 "n1b.akamaiedge.net: type A, class IN, addr 173.197.192.233": {
32867 "dns.resp.name": "n1b.akamaiedge.net",
32868 "dns.resp.type": "1",
32869 "dns.resp.class": "0x00000001",
32870 "dns.resp.ttl": "219",
32871 "dns.resp.len": "4",
32872 "dns.a": "173.197.192.233"
32874 "n2b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
32875 "dns.resp.name": "n2b.akamaiedge.net",
32876 "dns.resp.type": "1",
32877 "dns.resp.class": "0x00000001",
32878 "dns.resp.ttl": "729",
32879 "dns.resp.len": "4",
32880 "dns.a": "204.1.137.41"
32882 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
32883 "dns.resp.name": "n3b.akamaiedge.net",
32884 "dns.resp.type": "1",
32885 "dns.resp.class": "0x00000001",
32886 "dns.resp.ttl": "925",
32887 "dns.resp.len": "4",
32888 "dns.a": "173.223.52.108"
32890 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.217": {
32891 "dns.resp.name": "n4b.akamaiedge.net",
32892 "dns.resp.type": "1",
32893 "dns.resp.class": "0x00000001",
32894 "dns.resp.ttl": "1826",
32895 "dns.resp.len": "4",
32896 "dns.a": "209.18.46.217"
32898 "n5b.akamaiedge.net: type A, class IN, addr 209.18.46.223": {
32899 "dns.resp.name": "n5b.akamaiedge.net",
32900 "dns.resp.type": "1",
32901 "dns.resp.class": "0x00000001",
32902 "dns.resp.ttl": "1570",
32903 "dns.resp.len": "4",
32904 "dns.a": "209.18.46.223"
32906 "n6b.akamaiedge.net: type A, class IN, addr 173.197.192.232": {
32907 "dns.resp.name": "n6b.akamaiedge.net",
32908 "dns.resp.type": "1",
32909 "dns.resp.class": "0x00000001",
32910 "dns.resp.ttl": "1408",
32911 "dns.resp.len": "4",
32912 "dns.a": "173.197.192.232"
32914 "n7b.akamaiedge.net: type A, class IN, addr 96.17.70.173": {
32915 "dns.resp.name": "n7b.akamaiedge.net",
32916 "dns.resp.type": "1",
32917 "dns.resp.class": "0x00000001",
32918 "dns.resp.ttl": "3431",
32919 "dns.resp.len": "4",
32920 "dns.a": "96.17.70.173"
32922 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
32923 "dns.resp.name": "a0b.akamaiedge.net",
32924 "dns.resp.type": "28",
32925 "dns.resp.class": "0x00000001",
32926 "dns.resp.ttl": "3228",
32927 "dns.resp.len": "16",
32928 "dns.aaaa": "2600:1480:e800::c0"
32937 "_index": "packets-2017-10-26",
32938 "_type": "pcap_file",
32943 "frame.encap_type": "1",
32944 "frame.time": "Oct 20, 2017 05:07:53.234776000 PDT",
32945 "frame.offset_shift": "0.000000000",
32946 "frame.time_epoch": "1508501273.234776000",
32947 "frame.time_delta": "0.078020000",
32948 "frame.time_delta_displayed": "900.009152000",
32949 "frame.time_relative": "43560.829572000",
32950 "frame.number": "40624",
32952 "frame.cap_len": "76",
32953 "frame.marked": "0",
32954 "frame.ignored": "0",
32955 "frame.protocols": "eth:ethertype:ip:udp:dns",
32956 "frame.coloring_rule.name": "UDP",
32957 "frame.coloring_rule.string": "udp"
32960 "eth.dst": "b0:b9:8a:73:69:8e",
32962 "eth.dst_resolved": "Netgear_73:69:8e",
32963 "eth.addr": "b0:b9:8a:73:69:8e",
32964 "eth.addr_resolved": "Netgear_73:69:8e",
32968 "eth.src": "00:17:88:69:ee:e4",
32970 "eth.src_resolved": "PhilipsL_69:ee:e4",
32971 "eth.addr": "00:17:88:69:ee:e4",
32972 "eth.addr_resolved": "PhilipsL_69:ee:e4",
32976 "eth.type": "0x00000800"
32980 "ip.hdr_len": "20",
32981 "ip.dsfield": "0x00000000",
32982 "ip.dsfield_tree": {
32983 "ip.dsfield.dscp": "0",
32984 "ip.dsfield.ecn": "0"
32987 "ip.id": "0x00006faa",
32988 "ip.flags": "0x00000002",
32990 "ip.flags.rb": "0",
32991 "ip.flags.df": "1",
32994 "ip.frag_offset": "0",
32997 "ip.checksum": "0x00004913",
32998 "ip.checksum.status": "2",
32999 "ip.src": "192.168.0.160",
33000 "ip.addr": "192.168.0.160",
33001 "ip.src_host": "192.168.0.160",
33002 "ip.host": "192.168.0.160",
33003 "ip.dst": "192.168.0.1",
33004 "ip.addr": "192.168.0.1",
33005 "ip.dst_host": "192.168.0.1",
33006 "ip.host": "192.168.0.1",
33007 "Source GeoIP: Unknown": "",
33008 "Destination GeoIP: Unknown": ""
33011 "udp.srcport": "56663",
33012 "udp.dstport": "53",
33013 "udp.port": "56663",
33015 "udp.length": "42",
33016 "udp.checksum": "0x00007b78",
33017 "udp.checksum.status": "2",
33018 "udp.stream": "410"
33021 "dns.response_in": "40625",
33022 "dns.id": "0x000004e8",
33023 "dns.flags": "0x00000100",
33024 "dns.flags_tree": {
33025 "dns.flags.response": "0",
33026 "dns.flags.opcode": "0",
33027 "dns.flags.truncated": "0",
33028 "dns.flags.recdesired": "1",
33029 "dns.flags.z": "0",
33030 "dns.flags.checkdisable": "0"
33032 "dns.count.queries": "1",
33033 "dns.count.answers": "0",
33034 "dns.count.auth_rr": "0",
33035 "dns.count.add_rr": "0",
33037 "www2.meethue.com: type A, class IN": {
33038 "dns.qry.name": "www2.meethue.com",
33039 "dns.qry.name.len": "16",
33040 "dns.count.labels": "3",
33041 "dns.qry.type": "1",
33042 "dns.qry.class": "0x00000001"
33051 "_index": "packets-2017-10-26",
33052 "_type": "pcap_file",
33057 "frame.encap_type": "1",
33058 "frame.time": "Oct 20, 2017 05:07:53.240805000 PDT",
33059 "frame.offset_shift": "0.000000000",
33060 "frame.time_epoch": "1508501273.240805000",
33061 "frame.time_delta": "0.006029000",
33062 "frame.time_delta_displayed": "0.006029000",
33063 "frame.time_relative": "43560.835601000",
33064 "frame.number": "40625",
33065 "frame.len": "513",
33066 "frame.cap_len": "513",
33067 "frame.marked": "0",
33068 "frame.ignored": "0",
33069 "frame.protocols": "eth:ethertype:ip:udp:dns",
33070 "frame.coloring_rule.name": "UDP",
33071 "frame.coloring_rule.string": "udp"
33074 "eth.dst": "00:17:88:69:ee:e4",
33076 "eth.dst_resolved": "PhilipsL_69:ee:e4",
33077 "eth.addr": "00:17:88:69:ee:e4",
33078 "eth.addr_resolved": "PhilipsL_69:ee:e4",
33082 "eth.src": "b0:b9:8a:73:69:8e",
33084 "eth.src_resolved": "Netgear_73:69:8e",
33085 "eth.addr": "b0:b9:8a:73:69:8e",
33086 "eth.addr_resolved": "Netgear_73:69:8e",
33090 "eth.type": "0x00000800"
33094 "ip.hdr_len": "20",
33095 "ip.dsfield": "0x00000000",
33096 "ip.dsfield_tree": {
33097 "ip.dsfield.dscp": "0",
33098 "ip.dsfield.ecn": "0"
33101 "ip.id": "0x0000456f",
33102 "ip.flags": "0x00000002",
33104 "ip.flags.rb": "0",
33105 "ip.flags.df": "1",
33108 "ip.frag_offset": "0",
33111 "ip.checksum": "0x00007199",
33112 "ip.checksum.status": "2",
33113 "ip.src": "192.168.0.1",
33114 "ip.addr": "192.168.0.1",
33115 "ip.src_host": "192.168.0.1",
33116 "ip.host": "192.168.0.1",
33117 "ip.dst": "192.168.0.160",
33118 "ip.addr": "192.168.0.160",
33119 "ip.dst_host": "192.168.0.160",
33120 "ip.host": "192.168.0.160",
33121 "Source GeoIP: Unknown": "",
33122 "Destination GeoIP: Unknown": ""
33125 "udp.srcport": "53",
33126 "udp.dstport": "56663",
33128 "udp.port": "56663",
33129 "udp.length": "479",
33130 "udp.checksum": "0x000083e2",
33131 "udp.checksum.status": "2",
33132 "udp.stream": "410"
33135 "dns.response_to": "40624",
33136 "dns.time": "0.006029000",
33137 "dns.id": "0x000004e8",
33138 "dns.flags": "0x00008180",
33139 "dns.flags_tree": {
33140 "dns.flags.response": "1",
33141 "dns.flags.opcode": "0",
33142 "dns.flags.authoritative": "0",
33143 "dns.flags.truncated": "0",
33144 "dns.flags.recdesired": "1",
33145 "dns.flags.recavail": "1",
33146 "dns.flags.z": "0",
33147 "dns.flags.authenticated": "0",
33148 "dns.flags.checkdisable": "0",
33149 "dns.flags.rcode": "0"
33151 "dns.count.queries": "1",
33152 "dns.count.answers": "4",
33153 "dns.count.auth_rr": "9",
33154 "dns.count.add_rr": "9",
33156 "www2.meethue.com: type A, class IN": {
33157 "dns.qry.name": "www2.meethue.com",
33158 "dns.qry.name.len": "16",
33159 "dns.count.labels": "3",
33160 "dns.qry.type": "1",
33161 "dns.qry.class": "0x00000001"
33165 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
33166 "dns.resp.name": "www2.meethue.com",
33167 "dns.resp.type": "5",
33168 "dns.resp.class": "0x00000001",
33169 "dns.resp.ttl": "122",
33170 "dns.resp.len": "41",
33171 "dns.cname": "brands.lighting.philips.com.edgekey.net"
33173 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
33174 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
33175 "dns.resp.type": "5",
33176 "dns.resp.class": "0x00000001",
33177 "dns.resp.ttl": "13319",
33178 "dns.resp.len": "22",
33179 "dns.cname": "e15361.b.akamaiedge.net"
33181 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
33182 "dns.resp.name": "e15361.b.akamaiedge.net",
33183 "dns.resp.type": "1",
33184 "dns.resp.class": "0x00000001",
33185 "dns.resp.ttl": "20",
33186 "dns.resp.len": "4",
33187 "dns.a": "184.84.242.42"
33189 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
33190 "dns.resp.name": "e15361.b.akamaiedge.net",
33191 "dns.resp.type": "1",
33192 "dns.resp.class": "0x00000001",
33193 "dns.resp.ttl": "20",
33194 "dns.resp.len": "4",
33195 "dns.a": "184.84.242.27"
33198 "Authoritative nameservers": {
33199 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
33200 "dns.resp.name": "b.akamaiedge.net",
33201 "dns.resp.type": "2",
33202 "dns.resp.class": "0x00000001",
33203 "dns.resp.ttl": "3298",
33204 "dns.resp.len": "6",
33205 "dns.ns": "n4b.akamaiedge.net"
33207 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
33208 "dns.resp.name": "b.akamaiedge.net",
33209 "dns.resp.type": "2",
33210 "dns.resp.class": "0x00000001",
33211 "dns.resp.ttl": "3298",
33212 "dns.resp.len": "6",
33213 "dns.ns": "n0b.akamaiedge.net"
33215 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
33216 "dns.resp.name": "b.akamaiedge.net",
33217 "dns.resp.type": "2",
33218 "dns.resp.class": "0x00000001",
33219 "dns.resp.ttl": "3298",
33220 "dns.resp.len": "6",
33221 "dns.ns": "n1b.akamaiedge.net"
33223 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
33224 "dns.resp.name": "b.akamaiedge.net",
33225 "dns.resp.type": "2",
33226 "dns.resp.class": "0x00000001",
33227 "dns.resp.ttl": "3298",
33228 "dns.resp.len": "6",
33229 "dns.ns": "n7b.akamaiedge.net"
33231 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
33232 "dns.resp.name": "b.akamaiedge.net",
33233 "dns.resp.type": "2",
33234 "dns.resp.class": "0x00000001",
33235 "dns.resp.ttl": "3298",
33236 "dns.resp.len": "6",
33237 "dns.ns": "a0b.akamaiedge.net"
33239 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
33240 "dns.resp.name": "b.akamaiedge.net",
33241 "dns.resp.type": "2",
33242 "dns.resp.class": "0x00000001",
33243 "dns.resp.ttl": "3298",
33244 "dns.resp.len": "6",
33245 "dns.ns": "n3b.akamaiedge.net"
33247 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
33248 "dns.resp.name": "b.akamaiedge.net",
33249 "dns.resp.type": "2",
33250 "dns.resp.class": "0x00000001",
33251 "dns.resp.ttl": "3298",
33252 "dns.resp.len": "6",
33253 "dns.ns": "n5b.akamaiedge.net"
33255 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
33256 "dns.resp.name": "b.akamaiedge.net",
33257 "dns.resp.type": "2",
33258 "dns.resp.class": "0x00000001",
33259 "dns.resp.ttl": "3298",
33260 "dns.resp.len": "6",
33261 "dns.ns": "n6b.akamaiedge.net"
33263 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
33264 "dns.resp.name": "b.akamaiedge.net",
33265 "dns.resp.type": "2",
33266 "dns.resp.class": "0x00000001",
33267 "dns.resp.ttl": "3298",
33268 "dns.resp.len": "6",
33269 "dns.ns": "n2b.akamaiedge.net"
33272 "Additional records": {
33273 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
33274 "dns.resp.name": "n0b.akamaiedge.net",
33275 "dns.resp.type": "1",
33276 "dns.resp.class": "0x00000001",
33277 "dns.resp.ttl": "626",
33278 "dns.resp.len": "4",
33279 "dns.a": "88.221.81.192"
33281 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
33282 "dns.resp.name": "n1b.akamaiedge.net",
33283 "dns.resp.type": "1",
33284 "dns.resp.class": "0x00000001",
33285 "dns.resp.ttl": "7320",
33286 "dns.resp.len": "4",
33287 "dns.a": "173.223.52.109"
33289 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
33290 "dns.resp.name": "n2b.akamaiedge.net",
33291 "dns.resp.type": "1",
33292 "dns.resp.class": "0x00000001",
33293 "dns.resp.ttl": "7830",
33294 "dns.resp.len": "4",
33295 "dns.a": "173.223.52.109"
33297 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.108": {
33298 "dns.resp.name": "n3b.akamaiedge.net",
33299 "dns.resp.type": "1",
33300 "dns.resp.class": "0x00000001",
33301 "dns.resp.ttl": "25",
33302 "dns.resp.len": "4",
33303 "dns.a": "173.223.52.108"
33305 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.217": {
33306 "dns.resp.name": "n4b.akamaiedge.net",
33307 "dns.resp.type": "1",
33308 "dns.resp.class": "0x00000001",
33309 "dns.resp.ttl": "926",
33310 "dns.resp.len": "4",
33311 "dns.a": "209.18.46.217"
33313 "n5b.akamaiedge.net: type A, class IN, addr 209.18.46.223": {
33314 "dns.resp.name": "n5b.akamaiedge.net",
33315 "dns.resp.type": "1",
33316 "dns.resp.class": "0x00000001",
33317 "dns.resp.ttl": "670",
33318 "dns.resp.len": "4",
33319 "dns.a": "209.18.46.223"
33321 "n6b.akamaiedge.net: type A, class IN, addr 173.197.192.232": {
33322 "dns.resp.name": "n6b.akamaiedge.net",
33323 "dns.resp.type": "1",
33324 "dns.resp.class": "0x00000001",
33325 "dns.resp.ttl": "508",
33326 "dns.resp.len": "4",
33327 "dns.a": "173.197.192.232"
33329 "n7b.akamaiedge.net: type A, class IN, addr 96.17.70.173": {
33330 "dns.resp.name": "n7b.akamaiedge.net",
33331 "dns.resp.type": "1",
33332 "dns.resp.class": "0x00000001",
33333 "dns.resp.ttl": "2531",
33334 "dns.resp.len": "4",
33335 "dns.a": "96.17.70.173"
33337 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
33338 "dns.resp.name": "a0b.akamaiedge.net",
33339 "dns.resp.type": "28",
33340 "dns.resp.class": "0x00000001",
33341 "dns.resp.ttl": "2328",
33342 "dns.resp.len": "16",
33343 "dns.aaaa": "2600:1480:e800::c0"
33352 "_index": "packets-2017-10-26",
33353 "_type": "pcap_file",
33358 "frame.encap_type": "1",
33359 "frame.time": "Oct 20, 2017 05:22:53.251101000 PDT",
33360 "frame.offset_shift": "0.000000000",
33361 "frame.time_epoch": "1508502173.251101000",
33362 "frame.time_delta": "2.791011000",
33363 "frame.time_delta_displayed": "900.010296000",
33364 "frame.time_relative": "44460.845897000",
33365 "frame.number": "41391",
33367 "frame.cap_len": "76",
33368 "frame.marked": "0",
33369 "frame.ignored": "0",
33370 "frame.protocols": "eth:ethertype:ip:udp:dns",
33371 "frame.coloring_rule.name": "UDP",
33372 "frame.coloring_rule.string": "udp"
33375 "eth.dst": "b0:b9:8a:73:69:8e",
33377 "eth.dst_resolved": "Netgear_73:69:8e",
33378 "eth.addr": "b0:b9:8a:73:69:8e",
33379 "eth.addr_resolved": "Netgear_73:69:8e",
33383 "eth.src": "00:17:88:69:ee:e4",
33385 "eth.src_resolved": "PhilipsL_69:ee:e4",
33386 "eth.addr": "00:17:88:69:ee:e4",
33387 "eth.addr_resolved": "PhilipsL_69:ee:e4",
33391 "eth.type": "0x00000800"
33395 "ip.hdr_len": "20",
33396 "ip.dsfield": "0x00000000",
33397 "ip.dsfield_tree": {
33398 "ip.dsfield.dscp": "0",
33399 "ip.dsfield.ecn": "0"
33402 "ip.id": "0x0000c79b",
33403 "ip.flags": "0x00000002",
33405 "ip.flags.rb": "0",
33406 "ip.flags.df": "1",
33409 "ip.frag_offset": "0",
33412 "ip.checksum": "0x0000f121",
33413 "ip.checksum.status": "2",
33414 "ip.src": "192.168.0.160",
33415 "ip.addr": "192.168.0.160",
33416 "ip.src_host": "192.168.0.160",
33417 "ip.host": "192.168.0.160",
33418 "ip.dst": "192.168.0.1",
33419 "ip.addr": "192.168.0.1",
33420 "ip.dst_host": "192.168.0.1",
33421 "ip.host": "192.168.0.1",
33422 "Source GeoIP: Unknown": "",
33423 "Destination GeoIP: Unknown": ""
33426 "udp.srcport": "47619",
33427 "udp.dstport": "53",
33428 "udp.port": "47619",
33430 "udp.length": "42",
33431 "udp.checksum": "0x00009ecb",
33432 "udp.checksum.status": "2",
33433 "udp.stream": "417"
33436 "dns.response_in": "41392",
33437 "dns.id": "0x000004e9",
33438 "dns.flags": "0x00000100",
33439 "dns.flags_tree": {
33440 "dns.flags.response": "0",
33441 "dns.flags.opcode": "0",
33442 "dns.flags.truncated": "0",
33443 "dns.flags.recdesired": "1",
33444 "dns.flags.z": "0",
33445 "dns.flags.checkdisable": "0"
33447 "dns.count.queries": "1",
33448 "dns.count.answers": "0",
33449 "dns.count.auth_rr": "0",
33450 "dns.count.add_rr": "0",
33452 "www2.meethue.com: type A, class IN": {
33453 "dns.qry.name": "www2.meethue.com",
33454 "dns.qry.name.len": "16",
33455 "dns.count.labels": "3",
33456 "dns.qry.type": "1",
33457 "dns.qry.class": "0x00000001"
33466 "_index": "packets-2017-10-26",
33467 "_type": "pcap_file",
33472 "frame.encap_type": "1",
33473 "frame.time": "Oct 20, 2017 05:22:53.257780000 PDT",
33474 "frame.offset_shift": "0.000000000",
33475 "frame.time_epoch": "1508502173.257780000",
33476 "frame.time_delta": "0.006679000",
33477 "frame.time_delta_displayed": "0.006679000",
33478 "frame.time_relative": "44460.852576000",
33479 "frame.number": "41392",
33480 "frame.len": "513",
33481 "frame.cap_len": "513",
33482 "frame.marked": "0",
33483 "frame.ignored": "0",
33484 "frame.protocols": "eth:ethertype:ip:udp:dns",
33485 "frame.coloring_rule.name": "UDP",
33486 "frame.coloring_rule.string": "udp"
33489 "eth.dst": "00:17:88:69:ee:e4",
33491 "eth.dst_resolved": "PhilipsL_69:ee:e4",
33492 "eth.addr": "00:17:88:69:ee:e4",
33493 "eth.addr_resolved": "PhilipsL_69:ee:e4",
33497 "eth.src": "b0:b9:8a:73:69:8e",
33499 "eth.src_resolved": "Netgear_73:69:8e",
33500 "eth.addr": "b0:b9:8a:73:69:8e",
33501 "eth.addr_resolved": "Netgear_73:69:8e",
33505 "eth.type": "0x00000800"
33509 "ip.hdr_len": "20",
33510 "ip.dsfield": "0x00000000",
33511 "ip.dsfield_tree": {
33512 "ip.dsfield.dscp": "0",
33513 "ip.dsfield.ecn": "0"
33516 "ip.id": "0x00002ab8",
33517 "ip.flags": "0x00000002",
33519 "ip.flags.rb": "0",
33520 "ip.flags.df": "1",
33523 "ip.frag_offset": "0",
33526 "ip.checksum": "0x00008c50",
33527 "ip.checksum.status": "2",
33528 "ip.src": "192.168.0.1",
33529 "ip.addr": "192.168.0.1",
33530 "ip.src_host": "192.168.0.1",
33531 "ip.host": "192.168.0.1",
33532 "ip.dst": "192.168.0.160",
33533 "ip.addr": "192.168.0.160",
33534 "ip.dst_host": "192.168.0.160",
33535 "ip.host": "192.168.0.160",
33536 "Source GeoIP: Unknown": "",
33537 "Destination GeoIP: Unknown": ""
33540 "udp.srcport": "53",
33541 "udp.dstport": "47619",
33543 "udp.port": "47619",
33544 "udp.length": "479",
33545 "udp.checksum": "0x000083e2",
33546 "udp.checksum.status": "2",
33547 "udp.stream": "417"
33550 "dns.response_to": "41391",
33551 "dns.time": "0.006679000",
33552 "dns.id": "0x000004e9",
33553 "dns.flags": "0x00008180",
33554 "dns.flags_tree": {
33555 "dns.flags.response": "1",
33556 "dns.flags.opcode": "0",
33557 "dns.flags.authoritative": "0",
33558 "dns.flags.truncated": "0",
33559 "dns.flags.recdesired": "1",
33560 "dns.flags.recavail": "1",
33561 "dns.flags.z": "0",
33562 "dns.flags.authenticated": "0",
33563 "dns.flags.checkdisable": "0",
33564 "dns.flags.rcode": "0"
33566 "dns.count.queries": "1",
33567 "dns.count.answers": "4",
33568 "dns.count.auth_rr": "9",
33569 "dns.count.add_rr": "9",
33571 "www2.meethue.com: type A, class IN": {
33572 "dns.qry.name": "www2.meethue.com",
33573 "dns.qry.name.len": "16",
33574 "dns.count.labels": "3",
33575 "dns.qry.type": "1",
33576 "dns.qry.class": "0x00000001"
33580 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
33581 "dns.resp.name": "www2.meethue.com",
33582 "dns.resp.type": "5",
33583 "dns.resp.class": "0x00000001",
33584 "dns.resp.ttl": "122",
33585 "dns.resp.len": "41",
33586 "dns.cname": "brands.lighting.philips.com.edgekey.net"
33588 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
33589 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
33590 "dns.resp.type": "5",
33591 "dns.resp.class": "0x00000001",
33592 "dns.resp.ttl": "12419",
33593 "dns.resp.len": "22",
33594 "dns.cname": "e15361.b.akamaiedge.net"
33596 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
33597 "dns.resp.name": "e15361.b.akamaiedge.net",
33598 "dns.resp.type": "1",
33599 "dns.resp.class": "0x00000001",
33600 "dns.resp.ttl": "20",
33601 "dns.resp.len": "4",
33602 "dns.a": "184.84.242.42"
33604 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
33605 "dns.resp.name": "e15361.b.akamaiedge.net",
33606 "dns.resp.type": "1",
33607 "dns.resp.class": "0x00000001",
33608 "dns.resp.ttl": "20",
33609 "dns.resp.len": "4",
33610 "dns.a": "184.84.242.27"
33613 "Authoritative nameservers": {
33614 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
33615 "dns.resp.name": "b.akamaiedge.net",
33616 "dns.resp.type": "2",
33617 "dns.resp.class": "0x00000001",
33618 "dns.resp.ttl": "2398",
33619 "dns.resp.len": "6",
33620 "dns.ns": "n0b.akamaiedge.net"
33622 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
33623 "dns.resp.name": "b.akamaiedge.net",
33624 "dns.resp.type": "2",
33625 "dns.resp.class": "0x00000001",
33626 "dns.resp.ttl": "2398",
33627 "dns.resp.len": "6",
33628 "dns.ns": "n6b.akamaiedge.net"
33630 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
33631 "dns.resp.name": "b.akamaiedge.net",
33632 "dns.resp.type": "2",
33633 "dns.resp.class": "0x00000001",
33634 "dns.resp.ttl": "2398",
33635 "dns.resp.len": "6",
33636 "dns.ns": "n5b.akamaiedge.net"
33638 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
33639 "dns.resp.name": "b.akamaiedge.net",
33640 "dns.resp.type": "2",
33641 "dns.resp.class": "0x00000001",
33642 "dns.resp.ttl": "2398",
33643 "dns.resp.len": "6",
33644 "dns.ns": "n4b.akamaiedge.net"
33646 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
33647 "dns.resp.name": "b.akamaiedge.net",
33648 "dns.resp.type": "2",
33649 "dns.resp.class": "0x00000001",
33650 "dns.resp.ttl": "2398",
33651 "dns.resp.len": "6",
33652 "dns.ns": "n1b.akamaiedge.net"
33654 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
33655 "dns.resp.name": "b.akamaiedge.net",
33656 "dns.resp.type": "2",
33657 "dns.resp.class": "0x00000001",
33658 "dns.resp.ttl": "2398",
33659 "dns.resp.len": "6",
33660 "dns.ns": "n3b.akamaiedge.net"
33662 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
33663 "dns.resp.name": "b.akamaiedge.net",
33664 "dns.resp.type": "2",
33665 "dns.resp.class": "0x00000001",
33666 "dns.resp.ttl": "2398",
33667 "dns.resp.len": "6",
33668 "dns.ns": "n7b.akamaiedge.net"
33670 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
33671 "dns.resp.name": "b.akamaiedge.net",
33672 "dns.resp.type": "2",
33673 "dns.resp.class": "0x00000001",
33674 "dns.resp.ttl": "2398",
33675 "dns.resp.len": "6",
33676 "dns.ns": "a0b.akamaiedge.net"
33678 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
33679 "dns.resp.name": "b.akamaiedge.net",
33680 "dns.resp.type": "2",
33681 "dns.resp.class": "0x00000001",
33682 "dns.resp.ttl": "2398",
33683 "dns.resp.len": "6",
33684 "dns.ns": "n2b.akamaiedge.net"
33687 "Additional records": {
33688 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
33689 "dns.resp.name": "n0b.akamaiedge.net",
33690 "dns.resp.type": "1",
33691 "dns.resp.class": "0x00000001",
33692 "dns.resp.ttl": "3749",
33693 "dns.resp.len": "4",
33694 "dns.a": "88.221.81.192"
33696 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
33697 "dns.resp.name": "n1b.akamaiedge.net",
33698 "dns.resp.type": "1",
33699 "dns.resp.class": "0x00000001",
33700 "dns.resp.ttl": "6420",
33701 "dns.resp.len": "4",
33702 "dns.a": "173.223.52.109"
33704 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
33705 "dns.resp.name": "n2b.akamaiedge.net",
33706 "dns.resp.type": "1",
33707 "dns.resp.class": "0x00000001",
33708 "dns.resp.ttl": "6930",
33709 "dns.resp.len": "4",
33710 "dns.a": "173.223.52.109"
33712 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.133": {
33713 "dns.resp.name": "n3b.akamaiedge.net",
33714 "dns.resp.type": "1",
33715 "dns.resp.class": "0x00000001",
33716 "dns.resp.ttl": "3133",
33717 "dns.resp.len": "4",
33718 "dns.a": "173.223.52.133"
33720 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.217": {
33721 "dns.resp.name": "n4b.akamaiedge.net",
33722 "dns.resp.type": "1",
33723 "dns.resp.class": "0x00000001",
33724 "dns.resp.ttl": "26",
33725 "dns.resp.len": "4",
33726 "dns.a": "209.18.46.217"
33728 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
33729 "dns.resp.name": "n5b.akamaiedge.net",
33730 "dns.resp.type": "1",
33731 "dns.resp.class": "0x00000001",
33732 "dns.resp.ttl": "7774",
33733 "dns.resp.len": "4",
33734 "dns.a": "204.2.166.158"
33736 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
33737 "dns.resp.name": "n6b.akamaiedge.net",
33738 "dns.resp.type": "1",
33739 "dns.resp.class": "0x00000001",
33740 "dns.resp.ttl": "3612",
33741 "dns.resp.len": "4",
33742 "dns.a": "204.2.166.150"
33744 "n7b.akamaiedge.net: type A, class IN, addr 96.17.70.173": {
33745 "dns.resp.name": "n7b.akamaiedge.net",
33746 "dns.resp.type": "1",
33747 "dns.resp.class": "0x00000001",
33748 "dns.resp.ttl": "1631",
33749 "dns.resp.len": "4",
33750 "dns.a": "96.17.70.173"
33752 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
33753 "dns.resp.name": "a0b.akamaiedge.net",
33754 "dns.resp.type": "28",
33755 "dns.resp.class": "0x00000001",
33756 "dns.resp.ttl": "1428",
33757 "dns.resp.len": "16",
33758 "dns.aaaa": "2600:1480:e800::c0"
33767 "_index": "packets-2017-10-26",
33768 "_type": "pcap_file",
33773 "frame.encap_type": "1",
33774 "frame.time": "Oct 20, 2017 05:33:22.354168000 PDT",
33775 "frame.offset_shift": "0.000000000",
33776 "frame.time_epoch": "1508502802.354168000",
33777 "frame.time_delta": "7.493030000",
33778 "frame.time_delta_displayed": "629.096388000",
33779 "frame.time_relative": "45089.948964000",
33780 "frame.number": "41927",
33782 "frame.cap_len": "79",
33783 "frame.marked": "0",
33784 "frame.ignored": "0",
33785 "frame.protocols": "eth:ethertype:ip:udp:dns",
33786 "frame.coloring_rule.name": "UDP",
33787 "frame.coloring_rule.string": "udp"
33790 "eth.dst": "b0:b9:8a:73:69:8e",
33792 "eth.dst_resolved": "Netgear_73:69:8e",
33793 "eth.addr": "b0:b9:8a:73:69:8e",
33794 "eth.addr_resolved": "Netgear_73:69:8e",
33798 "eth.src": "00:17:88:69:ee:e4",
33800 "eth.src_resolved": "PhilipsL_69:ee:e4",
33801 "eth.addr": "00:17:88:69:ee:e4",
33802 "eth.addr_resolved": "PhilipsL_69:ee:e4",
33806 "eth.type": "0x00000800"
33810 "ip.hdr_len": "20",
33811 "ip.dsfield": "0x00000000",
33812 "ip.dsfield_tree": {
33813 "ip.dsfield.dscp": "0",
33814 "ip.dsfield.ecn": "0"
33817 "ip.id": "0x00004173",
33818 "ip.flags": "0x00000002",
33820 "ip.flags.rb": "0",
33821 "ip.flags.df": "1",
33824 "ip.frag_offset": "0",
33827 "ip.checksum": "0x00007747",
33828 "ip.checksum.status": "2",
33829 "ip.src": "192.168.0.160",
33830 "ip.addr": "192.168.0.160",
33831 "ip.src_host": "192.168.0.160",
33832 "ip.host": "192.168.0.160",
33833 "ip.dst": "192.168.0.1",
33834 "ip.addr": "192.168.0.1",
33835 "ip.dst_host": "192.168.0.1",
33836 "ip.host": "192.168.0.1",
33837 "Source GeoIP: Unknown": "",
33838 "Destination GeoIP: Unknown": ""
33841 "udp.srcport": "36484",
33842 "udp.dstport": "53",
33843 "udp.port": "36484",
33845 "udp.length": "45",
33846 "udp.checksum": "0x000031cf",
33847 "udp.checksum.status": "2",
33848 "udp.stream": "422"
33851 "dns.response_in": "41928",
33852 "dns.id": "0x000004ea",
33853 "dns.flags": "0x00000100",
33854 "dns.flags_tree": {
33855 "dns.flags.response": "0",
33856 "dns.flags.opcode": "0",
33857 "dns.flags.truncated": "0",
33858 "dns.flags.recdesired": "1",
33859 "dns.flags.z": "0",
33860 "dns.flags.checkdisable": "0"
33862 "dns.count.queries": "1",
33863 "dns.count.answers": "0",
33864 "dns.count.auth_rr": "0",
33865 "dns.count.add_rr": "0",
33867 "dcp.cpp.philips.com: type AAAA, class IN": {
33868 "dns.qry.name": "dcp.cpp.philips.com",
33869 "dns.qry.name.len": "19",
33870 "dns.count.labels": "4",
33871 "dns.qry.type": "28",
33872 "dns.qry.class": "0x00000001"
33881 "_index": "packets-2017-10-26",
33882 "_type": "pcap_file",
33887 "frame.encap_type": "1",
33888 "frame.time": "Oct 20, 2017 05:33:22.356157000 PDT",
33889 "frame.offset_shift": "0.000000000",
33890 "frame.time_epoch": "1508502802.356157000",
33891 "frame.time_delta": "0.001989000",
33892 "frame.time_delta_displayed": "0.001989000",
33893 "frame.time_relative": "45089.950953000",
33894 "frame.number": "41928",
33895 "frame.len": "137",
33896 "frame.cap_len": "137",
33897 "frame.marked": "0",
33898 "frame.ignored": "0",
33899 "frame.protocols": "eth:ethertype:ip:udp:dns",
33900 "frame.coloring_rule.name": "UDP",
33901 "frame.coloring_rule.string": "udp"
33904 "eth.dst": "00:17:88:69:ee:e4",
33906 "eth.dst_resolved": "PhilipsL_69:ee:e4",
33907 "eth.addr": "00:17:88:69:ee:e4",
33908 "eth.addr_resolved": "PhilipsL_69:ee:e4",
33912 "eth.src": "b0:b9:8a:73:69:8e",
33914 "eth.src_resolved": "Netgear_73:69:8e",
33915 "eth.addr": "b0:b9:8a:73:69:8e",
33916 "eth.addr_resolved": "Netgear_73:69:8e",
33920 "eth.type": "0x00000800"
33924 "ip.hdr_len": "20",
33925 "ip.dsfield": "0x00000000",
33926 "ip.dsfield_tree": {
33927 "ip.dsfield.dscp": "0",
33928 "ip.dsfield.ecn": "0"
33931 "ip.id": "0x00009f4a",
33932 "ip.flags": "0x00000002",
33934 "ip.flags.rb": "0",
33935 "ip.flags.df": "1",
33938 "ip.frag_offset": "0",
33941 "ip.checksum": "0x00001936",
33942 "ip.checksum.status": "2",
33943 "ip.src": "192.168.0.1",
33944 "ip.addr": "192.168.0.1",
33945 "ip.src_host": "192.168.0.1",
33946 "ip.host": "192.168.0.1",
33947 "ip.dst": "192.168.0.160",
33948 "ip.addr": "192.168.0.160",
33949 "ip.dst_host": "192.168.0.160",
33950 "ip.host": "192.168.0.160",
33951 "Source GeoIP: Unknown": "",
33952 "Destination GeoIP: Unknown": ""
33955 "udp.srcport": "53",
33956 "udp.dstport": "36484",
33958 "udp.port": "36484",
33959 "udp.length": "103",
33960 "udp.checksum": "0x0000826a",
33961 "udp.checksum.status": "2",
33962 "udp.stream": "422"
33965 "dns.response_to": "41927",
33966 "dns.time": "0.001989000",
33967 "dns.id": "0x000004ea",
33968 "dns.flags": "0x00008180",
33969 "dns.flags_tree": {
33970 "dns.flags.response": "1",
33971 "dns.flags.opcode": "0",
33972 "dns.flags.authoritative": "0",
33973 "dns.flags.truncated": "0",
33974 "dns.flags.recdesired": "1",
33975 "dns.flags.recavail": "1",
33976 "dns.flags.z": "0",
33977 "dns.flags.authenticated": "0",
33978 "dns.flags.checkdisable": "0",
33979 "dns.flags.rcode": "0"
33981 "dns.count.queries": "1",
33982 "dns.count.answers": "0",
33983 "dns.count.auth_rr": "1",
33984 "dns.count.add_rr": "0",
33986 "dcp.cpp.philips.com: type AAAA, class IN": {
33987 "dns.qry.name": "dcp.cpp.philips.com",
33988 "dns.qry.name.len": "19",
33989 "dns.count.labels": "4",
33990 "dns.qry.type": "28",
33991 "dns.qry.class": "0x00000001"
33994 "Authoritative nameservers": {
33995 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
33996 "dns.resp.name": "cpp.philips.com",
33997 "dns.resp.type": "6",
33998 "dns.resp.class": "0x00000001",
33999 "dns.resp.ttl": "1",
34000 "dns.resp.len": "46",
34001 "dns.soa.mname": "ns1.ext.philips.com",
34002 "dns.soa.rname": "ddi-authority.philips.com",
34003 "dns.soa.serial_number": "387",
34004 "dns.soa.refresh_interval": "1200",
34005 "dns.soa.retry_interval": "300",
34006 "dns.soa.expire_limit": "1209600",
34007 "dns.soa.mininum_ttl": "3600"
34016 "_index": "packets-2017-10-26",
34017 "_type": "pcap_file",
34022 "frame.encap_type": "1",
34023 "frame.time": "Oct 20, 2017 05:33:22.357016000 PDT",
34024 "frame.offset_shift": "0.000000000",
34025 "frame.time_epoch": "1508502802.357016000",
34026 "frame.time_delta": "0.000859000",
34027 "frame.time_delta_displayed": "0.000859000",
34028 "frame.time_relative": "45089.951812000",
34029 "frame.number": "41929",
34031 "frame.cap_len": "79",
34032 "frame.marked": "0",
34033 "frame.ignored": "0",
34034 "frame.protocols": "eth:ethertype:ip:udp:dns",
34035 "frame.coloring_rule.name": "UDP",
34036 "frame.coloring_rule.string": "udp"
34039 "eth.dst": "b0:b9:8a:73:69:8e",
34041 "eth.dst_resolved": "Netgear_73:69:8e",
34042 "eth.addr": "b0:b9:8a:73:69:8e",
34043 "eth.addr_resolved": "Netgear_73:69:8e",
34047 "eth.src": "00:17:88:69:ee:e4",
34049 "eth.src_resolved": "PhilipsL_69:ee:e4",
34050 "eth.addr": "00:17:88:69:ee:e4",
34051 "eth.addr_resolved": "PhilipsL_69:ee:e4",
34055 "eth.type": "0x00000800"
34059 "ip.hdr_len": "20",
34060 "ip.dsfield": "0x00000000",
34061 "ip.dsfield_tree": {
34062 "ip.dsfield.dscp": "0",
34063 "ip.dsfield.ecn": "0"
34066 "ip.id": "0x00004174",
34067 "ip.flags": "0x00000002",
34069 "ip.flags.rb": "0",
34070 "ip.flags.df": "1",
34073 "ip.frag_offset": "0",
34076 "ip.checksum": "0x00007746",
34077 "ip.checksum.status": "2",
34078 "ip.src": "192.168.0.160",
34079 "ip.addr": "192.168.0.160",
34080 "ip.src_host": "192.168.0.160",
34081 "ip.host": "192.168.0.160",
34082 "ip.dst": "192.168.0.1",
34083 "ip.addr": "192.168.0.1",
34084 "ip.dst_host": "192.168.0.1",
34085 "ip.host": "192.168.0.1",
34086 "Source GeoIP: Unknown": "",
34087 "Destination GeoIP: Unknown": ""
34090 "udp.srcport": "37527",
34091 "udp.dstport": "53",
34092 "udp.port": "37527",
34094 "udp.length": "45",
34095 "udp.checksum": "0x000048bb",
34096 "udp.checksum.status": "2",
34097 "udp.stream": "423"
34100 "dns.response_in": "41930",
34101 "dns.id": "0x000004eb",
34102 "dns.flags": "0x00000100",
34103 "dns.flags_tree": {
34104 "dns.flags.response": "0",
34105 "dns.flags.opcode": "0",
34106 "dns.flags.truncated": "0",
34107 "dns.flags.recdesired": "1",
34108 "dns.flags.z": "0",
34109 "dns.flags.checkdisable": "0"
34111 "dns.count.queries": "1",
34112 "dns.count.answers": "0",
34113 "dns.count.auth_rr": "0",
34114 "dns.count.add_rr": "0",
34116 "dcp.cpp.philips.com: type A, class IN": {
34117 "dns.qry.name": "dcp.cpp.philips.com",
34118 "dns.qry.name.len": "19",
34119 "dns.count.labels": "4",
34120 "dns.qry.type": "1",
34121 "dns.qry.class": "0x00000001"
34130 "_index": "packets-2017-10-26",
34131 "_type": "pcap_file",
34136 "frame.encap_type": "1",
34137 "frame.time": "Oct 20, 2017 05:33:22.358502000 PDT",
34138 "frame.offset_shift": "0.000000000",
34139 "frame.time_epoch": "1508502802.358502000",
34140 "frame.time_delta": "0.001486000",
34141 "frame.time_delta_displayed": "0.001486000",
34142 "frame.time_relative": "45089.953298000",
34143 "frame.number": "41930",
34144 "frame.len": "285",
34145 "frame.cap_len": "285",
34146 "frame.marked": "0",
34147 "frame.ignored": "0",
34148 "frame.protocols": "eth:ethertype:ip:udp:dns",
34149 "frame.coloring_rule.name": "UDP",
34150 "frame.coloring_rule.string": "udp"
34153 "eth.dst": "00:17:88:69:ee:e4",
34155 "eth.dst_resolved": "PhilipsL_69:ee:e4",
34156 "eth.addr": "00:17:88:69:ee:e4",
34157 "eth.addr_resolved": "PhilipsL_69:ee:e4",
34161 "eth.src": "b0:b9:8a:73:69:8e",
34163 "eth.src_resolved": "Netgear_73:69:8e",
34164 "eth.addr": "b0:b9:8a:73:69:8e",
34165 "eth.addr_resolved": "Netgear_73:69:8e",
34169 "eth.type": "0x00000800"
34173 "ip.hdr_len": "20",
34174 "ip.dsfield": "0x00000000",
34175 "ip.dsfield_tree": {
34176 "ip.dsfield.dscp": "0",
34177 "ip.dsfield.ecn": "0"
34180 "ip.id": "0x00009f4b",
34181 "ip.flags": "0x00000002",
34183 "ip.flags.rb": "0",
34184 "ip.flags.df": "1",
34187 "ip.frag_offset": "0",
34190 "ip.checksum": "0x000018a1",
34191 "ip.checksum.status": "2",
34192 "ip.src": "192.168.0.1",
34193 "ip.addr": "192.168.0.1",
34194 "ip.src_host": "192.168.0.1",
34195 "ip.host": "192.168.0.1",
34196 "ip.dst": "192.168.0.160",
34197 "ip.addr": "192.168.0.160",
34198 "ip.dst_host": "192.168.0.160",
34199 "ip.host": "192.168.0.160",
34200 "Source GeoIP: Unknown": "",
34201 "Destination GeoIP: Unknown": ""
34204 "udp.srcport": "53",
34205 "udp.dstport": "37527",
34207 "udp.port": "37527",
34208 "udp.length": "251",
34209 "udp.checksum": "0x000082fe",
34210 "udp.checksum.status": "2",
34211 "udp.stream": "423"
34214 "dns.response_to": "41929",
34215 "dns.time": "0.001486000",
34216 "dns.id": "0x000004eb",
34217 "dns.flags": "0x00008180",
34218 "dns.flags_tree": {
34219 "dns.flags.response": "1",
34220 "dns.flags.opcode": "0",
34221 "dns.flags.authoritative": "0",
34222 "dns.flags.truncated": "0",
34223 "dns.flags.recdesired": "1",
34224 "dns.flags.recavail": "1",
34225 "dns.flags.z": "0",
34226 "dns.flags.authenticated": "0",
34227 "dns.flags.checkdisable": "0",
34228 "dns.flags.rcode": "0"
34230 "dns.count.queries": "1",
34231 "dns.count.answers": "1",
34232 "dns.count.auth_rr": "3",
34233 "dns.count.add_rr": "6",
34235 "dcp.cpp.philips.com: type A, class IN": {
34236 "dns.qry.name": "dcp.cpp.philips.com",
34237 "dns.qry.name.len": "19",
34238 "dns.count.labels": "4",
34239 "dns.qry.type": "1",
34240 "dns.qry.class": "0x00000001"
34244 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
34245 "dns.resp.name": "dcp.cpp.philips.com",
34246 "dns.resp.type": "1",
34247 "dns.resp.class": "0x00000001",
34248 "dns.resp.ttl": "413",
34249 "dns.resp.len": "4",
34250 "dns.a": "5.79.62.93"
34253 "Authoritative nameservers": {
34254 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
34255 "dns.resp.name": "cpp.philips.com",
34256 "dns.resp.type": "2",
34257 "dns.resp.class": "0x00000001",
34258 "dns.resp.ttl": "2799",
34259 "dns.resp.len": "10",
34260 "dns.ns": "ns2.ext.philips.com"
34262 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
34263 "dns.resp.name": "cpp.philips.com",
34264 "dns.resp.type": "2",
34265 "dns.resp.class": "0x00000001",
34266 "dns.resp.ttl": "2799",
34267 "dns.resp.len": "6",
34268 "dns.ns": "ns3.ext.philips.com"
34270 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
34271 "dns.resp.name": "cpp.philips.com",
34272 "dns.resp.type": "2",
34273 "dns.resp.class": "0x00000001",
34274 "dns.resp.ttl": "2799",
34275 "dns.resp.len": "6",
34276 "dns.ns": "ns1.ext.philips.com"
34279 "Additional records": {
34280 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
34281 "dns.resp.name": "ns1.ext.philips.com",
34282 "dns.resp.type": "1",
34283 "dns.resp.class": "0x00000001",
34284 "dns.resp.ttl": "161051",
34285 "dns.resp.len": "4",
34286 "dns.a": "57.67.40.20"
34288 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
34289 "dns.resp.name": "ns2.ext.philips.com",
34290 "dns.resp.type": "1",
34291 "dns.resp.class": "0x00000001",
34292 "dns.resp.ttl": "131974",
34293 "dns.resp.len": "4",
34294 "dns.a": "57.77.21.76"
34296 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
34297 "dns.resp.name": "ns3.ext.philips.com",
34298 "dns.resp.type": "1",
34299 "dns.resp.class": "0x00000001",
34300 "dns.resp.ttl": "131974",
34301 "dns.resp.len": "4",
34302 "dns.a": "57.73.36.68"
34304 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
34305 "dns.resp.name": "ns1.ext.philips.com",
34306 "dns.resp.type": "28",
34307 "dns.resp.class": "0x00000001",
34308 "dns.resp.ttl": "150229",
34309 "dns.resp.len": "16",
34310 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
34312 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
34313 "dns.resp.name": "ns2.ext.philips.com",
34314 "dns.resp.type": "28",
34315 "dns.resp.class": "0x00000001",
34316 "dns.resp.ttl": "21951",
34317 "dns.resp.len": "16",
34318 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
34320 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
34321 "dns.resp.name": "ns3.ext.philips.com",
34322 "dns.resp.type": "28",
34323 "dns.resp.class": "0x00000001",
34324 "dns.resp.ttl": "21951",
34325 "dns.resp.len": "16",
34326 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
34335 "_index": "packets-2017-10-26",
34336 "_type": "pcap_file",
34341 "frame.encap_type": "1",
34342 "frame.time": "Oct 20, 2017 05:33:22.769938000 PDT",
34343 "frame.offset_shift": "0.000000000",
34344 "frame.time_epoch": "1508502802.769938000",
34345 "frame.time_delta": "0.000959000",
34346 "frame.time_delta_displayed": "0.411436000",
34347 "frame.time_relative": "45090.364734000",
34348 "frame.number": "41946",
34350 "frame.cap_len": "79",
34351 "frame.marked": "0",
34352 "frame.ignored": "0",
34353 "frame.protocols": "eth:ethertype:ip:udp:dns",
34354 "frame.coloring_rule.name": "UDP",
34355 "frame.coloring_rule.string": "udp"
34358 "eth.dst": "b0:b9:8a:73:69:8e",
34360 "eth.dst_resolved": "Netgear_73:69:8e",
34361 "eth.addr": "b0:b9:8a:73:69:8e",
34362 "eth.addr_resolved": "Netgear_73:69:8e",
34366 "eth.src": "00:17:88:69:ee:e4",
34368 "eth.src_resolved": "PhilipsL_69:ee:e4",
34369 "eth.addr": "00:17:88:69:ee:e4",
34370 "eth.addr_resolved": "PhilipsL_69:ee:e4",
34374 "eth.type": "0x00000800"
34378 "ip.hdr_len": "20",
34379 "ip.dsfield": "0x00000000",
34380 "ip.dsfield_tree": {
34381 "ip.dsfield.dscp": "0",
34382 "ip.dsfield.ecn": "0"
34385 "ip.id": "0x0000418a",
34386 "ip.flags": "0x00000002",
34388 "ip.flags.rb": "0",
34389 "ip.flags.df": "1",
34392 "ip.frag_offset": "0",
34395 "ip.checksum": "0x00007730",
34396 "ip.checksum.status": "2",
34397 "ip.src": "192.168.0.160",
34398 "ip.addr": "192.168.0.160",
34399 "ip.src_host": "192.168.0.160",
34400 "ip.host": "192.168.0.160",
34401 "ip.dst": "192.168.0.1",
34402 "ip.addr": "192.168.0.1",
34403 "ip.dst_host": "192.168.0.1",
34404 "ip.host": "192.168.0.1",
34405 "Source GeoIP: Unknown": "",
34406 "Destination GeoIP: Unknown": ""
34409 "udp.srcport": "35698",
34410 "udp.dstport": "53",
34411 "udp.port": "35698",
34413 "udp.length": "45",
34414 "udp.checksum": "0x000034df",
34415 "udp.checksum.status": "2",
34416 "udp.stream": "424"
34419 "dns.response_in": "41947",
34420 "dns.id": "0x000004ec",
34421 "dns.flags": "0x00000100",
34422 "dns.flags_tree": {
34423 "dns.flags.response": "0",
34424 "dns.flags.opcode": "0",
34425 "dns.flags.truncated": "0",
34426 "dns.flags.recdesired": "1",
34427 "dns.flags.z": "0",
34428 "dns.flags.checkdisable": "0"
34430 "dns.count.queries": "1",
34431 "dns.count.answers": "0",
34432 "dns.count.auth_rr": "0",
34433 "dns.count.add_rr": "0",
34435 "dcp.cpp.philips.com: type AAAA, class IN": {
34436 "dns.qry.name": "dcp.cpp.philips.com",
34437 "dns.qry.name.len": "19",
34438 "dns.count.labels": "4",
34439 "dns.qry.type": "28",
34440 "dns.qry.class": "0x00000001"
34449 "_index": "packets-2017-10-26",
34450 "_type": "pcap_file",
34455 "frame.encap_type": "1",
34456 "frame.time": "Oct 20, 2017 05:33:22.770497000 PDT",
34457 "frame.offset_shift": "0.000000000",
34458 "frame.time_epoch": "1508502802.770497000",
34459 "frame.time_delta": "0.000559000",
34460 "frame.time_delta_displayed": "0.000559000",
34461 "frame.time_relative": "45090.365293000",
34462 "frame.number": "41947",
34464 "frame.cap_len": "79",
34465 "frame.marked": "0",
34466 "frame.ignored": "0",
34467 "frame.protocols": "eth:ethertype:ip:udp:dns",
34468 "frame.coloring_rule.name": "UDP",
34469 "frame.coloring_rule.string": "udp"
34472 "eth.dst": "00:17:88:69:ee:e4",
34474 "eth.dst_resolved": "PhilipsL_69:ee:e4",
34475 "eth.addr": "00:17:88:69:ee:e4",
34476 "eth.addr_resolved": "PhilipsL_69:ee:e4",
34480 "eth.src": "b0:b9:8a:73:69:8e",
34482 "eth.src_resolved": "Netgear_73:69:8e",
34483 "eth.addr": "b0:b9:8a:73:69:8e",
34484 "eth.addr_resolved": "Netgear_73:69:8e",
34488 "eth.type": "0x00000800"
34492 "ip.hdr_len": "20",
34493 "ip.dsfield": "0x00000000",
34494 "ip.dsfield_tree": {
34495 "ip.dsfield.dscp": "0",
34496 "ip.dsfield.ecn": "0"
34499 "ip.id": "0x00009f51",
34500 "ip.flags": "0x00000002",
34502 "ip.flags.rb": "0",
34503 "ip.flags.df": "1",
34506 "ip.frag_offset": "0",
34509 "ip.checksum": "0x00001969",
34510 "ip.checksum.status": "2",
34511 "ip.src": "192.168.0.1",
34512 "ip.addr": "192.168.0.1",
34513 "ip.src_host": "192.168.0.1",
34514 "ip.host": "192.168.0.1",
34515 "ip.dst": "192.168.0.160",
34516 "ip.addr": "192.168.0.160",
34517 "ip.dst_host": "192.168.0.160",
34518 "ip.host": "192.168.0.160",
34519 "Source GeoIP: Unknown": "",
34520 "Destination GeoIP: Unknown": ""
34523 "udp.srcport": "53",
34524 "udp.dstport": "35698",
34526 "udp.port": "35698",
34527 "udp.length": "45",
34528 "udp.checksum": "0x00008230",
34529 "udp.checksum.status": "2",
34530 "udp.stream": "424"
34533 "dns.response_to": "41946",
34534 "dns.time": "0.000559000",
34535 "dns.id": "0x000004ec",
34536 "dns.flags": "0x00008180",
34537 "dns.flags_tree": {
34538 "dns.flags.response": "1",
34539 "dns.flags.opcode": "0",
34540 "dns.flags.authoritative": "0",
34541 "dns.flags.truncated": "0",
34542 "dns.flags.recdesired": "1",
34543 "dns.flags.recavail": "1",
34544 "dns.flags.z": "0",
34545 "dns.flags.authenticated": "0",
34546 "dns.flags.checkdisable": "0",
34547 "dns.flags.rcode": "0"
34549 "dns.count.queries": "1",
34550 "dns.count.answers": "0",
34551 "dns.count.auth_rr": "0",
34552 "dns.count.add_rr": "0",
34554 "dcp.cpp.philips.com: type AAAA, class IN": {
34555 "dns.qry.name": "dcp.cpp.philips.com",
34556 "dns.qry.name.len": "19",
34557 "dns.count.labels": "4",
34558 "dns.qry.type": "28",
34559 "dns.qry.class": "0x00000001"
34568 "_index": "packets-2017-10-26",
34569 "_type": "pcap_file",
34574 "frame.encap_type": "1",
34575 "frame.time": "Oct 20, 2017 05:33:22.771306000 PDT",
34576 "frame.offset_shift": "0.000000000",
34577 "frame.time_epoch": "1508502802.771306000",
34578 "frame.time_delta": "0.000809000",
34579 "frame.time_delta_displayed": "0.000809000",
34580 "frame.time_relative": "45090.366102000",
34581 "frame.number": "41948",
34583 "frame.cap_len": "79",
34584 "frame.marked": "0",
34585 "frame.ignored": "0",
34586 "frame.protocols": "eth:ethertype:ip:udp:dns",
34587 "frame.coloring_rule.name": "UDP",
34588 "frame.coloring_rule.string": "udp"
34591 "eth.dst": "b0:b9:8a:73:69:8e",
34593 "eth.dst_resolved": "Netgear_73:69:8e",
34594 "eth.addr": "b0:b9:8a:73:69:8e",
34595 "eth.addr_resolved": "Netgear_73:69:8e",
34599 "eth.src": "00:17:88:69:ee:e4",
34601 "eth.src_resolved": "PhilipsL_69:ee:e4",
34602 "eth.addr": "00:17:88:69:ee:e4",
34603 "eth.addr_resolved": "PhilipsL_69:ee:e4",
34607 "eth.type": "0x00000800"
34611 "ip.hdr_len": "20",
34612 "ip.dsfield": "0x00000000",
34613 "ip.dsfield_tree": {
34614 "ip.dsfield.dscp": "0",
34615 "ip.dsfield.ecn": "0"
34618 "ip.id": "0x0000418b",
34619 "ip.flags": "0x00000002",
34621 "ip.flags.rb": "0",
34622 "ip.flags.df": "1",
34625 "ip.frag_offset": "0",
34628 "ip.checksum": "0x0000772f",
34629 "ip.checksum.status": "2",
34630 "ip.src": "192.168.0.160",
34631 "ip.addr": "192.168.0.160",
34632 "ip.src_host": "192.168.0.160",
34633 "ip.host": "192.168.0.160",
34634 "ip.dst": "192.168.0.1",
34635 "ip.addr": "192.168.0.1",
34636 "ip.dst_host": "192.168.0.1",
34637 "ip.host": "192.168.0.1",
34638 "Source GeoIP: Unknown": "",
34639 "Destination GeoIP: Unknown": ""
34642 "udp.srcport": "59480",
34643 "udp.dstport": "53",
34644 "udp.port": "59480",
34646 "udp.length": "45",
34647 "udp.checksum": "0x0000f2f7",
34648 "udp.checksum.status": "2",
34649 "udp.stream": "425"
34652 "dns.response_in": "41949",
34653 "dns.id": "0x000004ed",
34654 "dns.flags": "0x00000100",
34655 "dns.flags_tree": {
34656 "dns.flags.response": "0",
34657 "dns.flags.opcode": "0",
34658 "dns.flags.truncated": "0",
34659 "dns.flags.recdesired": "1",
34660 "dns.flags.z": "0",
34661 "dns.flags.checkdisable": "0"
34663 "dns.count.queries": "1",
34664 "dns.count.answers": "0",
34665 "dns.count.auth_rr": "0",
34666 "dns.count.add_rr": "0",
34668 "dcp.cpp.philips.com: type A, class IN": {
34669 "dns.qry.name": "dcp.cpp.philips.com",
34670 "dns.qry.name.len": "19",
34671 "dns.count.labels": "4",
34672 "dns.qry.type": "1",
34673 "dns.qry.class": "0x00000001"
34682 "_index": "packets-2017-10-26",
34683 "_type": "pcap_file",
34688 "frame.encap_type": "1",
34689 "frame.time": "Oct 20, 2017 05:33:22.771826000 PDT",
34690 "frame.offset_shift": "0.000000000",
34691 "frame.time_epoch": "1508502802.771826000",
34692 "frame.time_delta": "0.000520000",
34693 "frame.time_delta_displayed": "0.000520000",
34694 "frame.time_relative": "45090.366622000",
34695 "frame.number": "41949",
34697 "frame.cap_len": "95",
34698 "frame.marked": "0",
34699 "frame.ignored": "0",
34700 "frame.protocols": "eth:ethertype:ip:udp:dns",
34701 "frame.coloring_rule.name": "UDP",
34702 "frame.coloring_rule.string": "udp"
34705 "eth.dst": "00:17:88:69:ee:e4",
34707 "eth.dst_resolved": "PhilipsL_69:ee:e4",
34708 "eth.addr": "00:17:88:69:ee:e4",
34709 "eth.addr_resolved": "PhilipsL_69:ee:e4",
34713 "eth.src": "b0:b9:8a:73:69:8e",
34715 "eth.src_resolved": "Netgear_73:69:8e",
34716 "eth.addr": "b0:b9:8a:73:69:8e",
34717 "eth.addr_resolved": "Netgear_73:69:8e",
34721 "eth.type": "0x00000800"
34725 "ip.hdr_len": "20",
34726 "ip.dsfield": "0x00000000",
34727 "ip.dsfield_tree": {
34728 "ip.dsfield.dscp": "0",
34729 "ip.dsfield.ecn": "0"
34732 "ip.id": "0x00009f52",
34733 "ip.flags": "0x00000002",
34735 "ip.flags.rb": "0",
34736 "ip.flags.df": "1",
34739 "ip.frag_offset": "0",
34742 "ip.checksum": "0x00001958",
34743 "ip.checksum.status": "2",
34744 "ip.src": "192.168.0.1",
34745 "ip.addr": "192.168.0.1",
34746 "ip.src_host": "192.168.0.1",
34747 "ip.host": "192.168.0.1",
34748 "ip.dst": "192.168.0.160",
34749 "ip.addr": "192.168.0.160",
34750 "ip.dst_host": "192.168.0.160",
34751 "ip.host": "192.168.0.160",
34752 "Source GeoIP: Unknown": "",
34753 "Destination GeoIP: Unknown": ""
34756 "udp.srcport": "53",
34757 "udp.dstport": "59480",
34759 "udp.port": "59480",
34760 "udp.length": "61",
34761 "udp.checksum": "0x00008240",
34762 "udp.checksum.status": "2",
34763 "udp.stream": "425"
34766 "dns.response_to": "41948",
34767 "dns.time": "0.000520000",
34768 "dns.id": "0x000004ed",
34769 "dns.flags": "0x00008180",
34770 "dns.flags_tree": {
34771 "dns.flags.response": "1",
34772 "dns.flags.opcode": "0",
34773 "dns.flags.authoritative": "0",
34774 "dns.flags.truncated": "0",
34775 "dns.flags.recdesired": "1",
34776 "dns.flags.recavail": "1",
34777 "dns.flags.z": "0",
34778 "dns.flags.authenticated": "0",
34779 "dns.flags.checkdisable": "0",
34780 "dns.flags.rcode": "0"
34782 "dns.count.queries": "1",
34783 "dns.count.answers": "1",
34784 "dns.count.auth_rr": "0",
34785 "dns.count.add_rr": "0",
34787 "dcp.cpp.philips.com: type A, class IN": {
34788 "dns.qry.name": "dcp.cpp.philips.com",
34789 "dns.qry.name.len": "19",
34790 "dns.count.labels": "4",
34791 "dns.qry.type": "1",
34792 "dns.qry.class": "0x00000001"
34796 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
34797 "dns.resp.name": "dcp.cpp.philips.com",
34798 "dns.resp.type": "1",
34799 "dns.resp.class": "0x00000001",
34800 "dns.resp.ttl": "413",
34801 "dns.resp.len": "4",
34802 "dns.a": "5.79.62.93"
34811 "_index": "packets-2017-10-26",
34812 "_type": "pcap_file",
34817 "frame.encap_type": "1",
34818 "frame.time": "Oct 20, 2017 05:37:53.266045000 PDT",
34819 "frame.offset_shift": "0.000000000",
34820 "frame.time_epoch": "1508503073.266045000",
34821 "frame.time_delta": "2.473971000",
34822 "frame.time_delta_displayed": "270.494219000",
34823 "frame.time_relative": "45360.860841000",
34824 "frame.number": "42165",
34826 "frame.cap_len": "76",
34827 "frame.marked": "0",
34828 "frame.ignored": "0",
34829 "frame.protocols": "eth:ethertype:ip:udp:dns",
34830 "frame.coloring_rule.name": "UDP",
34831 "frame.coloring_rule.string": "udp"
34834 "eth.dst": "b0:b9:8a:73:69:8e",
34836 "eth.dst_resolved": "Netgear_73:69:8e",
34837 "eth.addr": "b0:b9:8a:73:69:8e",
34838 "eth.addr_resolved": "Netgear_73:69:8e",
34842 "eth.src": "00:17:88:69:ee:e4",
34844 "eth.src_resolved": "PhilipsL_69:ee:e4",
34845 "eth.addr": "00:17:88:69:ee:e4",
34846 "eth.addr_resolved": "PhilipsL_69:ee:e4",
34850 "eth.type": "0x00000800"
34854 "ip.hdr_len": "20",
34855 "ip.dsfield": "0x00000000",
34856 "ip.dsfield_tree": {
34857 "ip.dsfield.dscp": "0",
34858 "ip.dsfield.ecn": "0"
34861 "ip.id": "0x00006f25",
34862 "ip.flags": "0x00000002",
34864 "ip.flags.rb": "0",
34865 "ip.flags.df": "1",
34868 "ip.frag_offset": "0",
34871 "ip.checksum": "0x00004998",
34872 "ip.checksum.status": "2",
34873 "ip.src": "192.168.0.160",
34874 "ip.addr": "192.168.0.160",
34875 "ip.src_host": "192.168.0.160",
34876 "ip.host": "192.168.0.160",
34877 "ip.dst": "192.168.0.1",
34878 "ip.addr": "192.168.0.1",
34879 "ip.dst_host": "192.168.0.1",
34880 "ip.host": "192.168.0.1",
34881 "Source GeoIP: Unknown": "",
34882 "Destination GeoIP: Unknown": ""
34885 "udp.srcport": "45073",
34886 "udp.dstport": "53",
34887 "udp.port": "45073",
34889 "udp.length": "42",
34890 "udp.checksum": "0x0000a8b8",
34891 "udp.checksum.status": "2",
34892 "udp.stream": "426"
34895 "dns.response_in": "42166",
34896 "dns.id": "0x000004ee",
34897 "dns.flags": "0x00000100",
34898 "dns.flags_tree": {
34899 "dns.flags.response": "0",
34900 "dns.flags.opcode": "0",
34901 "dns.flags.truncated": "0",
34902 "dns.flags.recdesired": "1",
34903 "dns.flags.z": "0",
34904 "dns.flags.checkdisable": "0"
34906 "dns.count.queries": "1",
34907 "dns.count.answers": "0",
34908 "dns.count.auth_rr": "0",
34909 "dns.count.add_rr": "0",
34911 "www2.meethue.com: type A, class IN": {
34912 "dns.qry.name": "www2.meethue.com",
34913 "dns.qry.name.len": "16",
34914 "dns.count.labels": "3",
34915 "dns.qry.type": "1",
34916 "dns.qry.class": "0x00000001"
34925 "_index": "packets-2017-10-26",
34926 "_type": "pcap_file",
34931 "frame.encap_type": "1",
34932 "frame.time": "Oct 20, 2017 05:37:53.344536000 PDT",
34933 "frame.offset_shift": "0.000000000",
34934 "frame.time_epoch": "1508503073.344536000",
34935 "frame.time_delta": "0.078491000",
34936 "frame.time_delta_displayed": "0.078491000",
34937 "frame.time_relative": "45360.939332000",
34938 "frame.number": "42166",
34939 "frame.len": "513",
34940 "frame.cap_len": "513",
34941 "frame.marked": "0",
34942 "frame.ignored": "0",
34943 "frame.protocols": "eth:ethertype:ip:udp:dns",
34944 "frame.coloring_rule.name": "UDP",
34945 "frame.coloring_rule.string": "udp"
34948 "eth.dst": "00:17:88:69:ee:e4",
34950 "eth.dst_resolved": "PhilipsL_69:ee:e4",
34951 "eth.addr": "00:17:88:69:ee:e4",
34952 "eth.addr_resolved": "PhilipsL_69:ee:e4",
34956 "eth.src": "b0:b9:8a:73:69:8e",
34958 "eth.src_resolved": "Netgear_73:69:8e",
34959 "eth.addr": "b0:b9:8a:73:69:8e",
34960 "eth.addr_resolved": "Netgear_73:69:8e",
34964 "eth.type": "0x00000800"
34968 "ip.hdr_len": "20",
34969 "ip.dsfield": "0x00000000",
34970 "ip.dsfield_tree": {
34971 "ip.dsfield.dscp": "0",
34972 "ip.dsfield.ecn": "0"
34975 "ip.id": "0x0000a957",
34976 "ip.flags": "0x00000002",
34978 "ip.flags.rb": "0",
34979 "ip.flags.df": "1",
34982 "ip.frag_offset": "0",
34985 "ip.checksum": "0x00000db1",
34986 "ip.checksum.status": "2",
34987 "ip.src": "192.168.0.1",
34988 "ip.addr": "192.168.0.1",
34989 "ip.src_host": "192.168.0.1",
34990 "ip.host": "192.168.0.1",
34991 "ip.dst": "192.168.0.160",
34992 "ip.addr": "192.168.0.160",
34993 "ip.dst_host": "192.168.0.160",
34994 "ip.host": "192.168.0.160",
34995 "Source GeoIP: Unknown": "",
34996 "Destination GeoIP: Unknown": ""
34999 "udp.srcport": "53",
35000 "udp.dstport": "45073",
35002 "udp.port": "45073",
35003 "udp.length": "479",
35004 "udp.checksum": "0x000083e2",
35005 "udp.checksum.status": "2",
35006 "udp.stream": "426"
35009 "dns.response_to": "42165",
35010 "dns.time": "0.078491000",
35011 "dns.id": "0x000004ee",
35012 "dns.flags": "0x00008180",
35013 "dns.flags_tree": {
35014 "dns.flags.response": "1",
35015 "dns.flags.opcode": "0",
35016 "dns.flags.authoritative": "0",
35017 "dns.flags.truncated": "0",
35018 "dns.flags.recdesired": "1",
35019 "dns.flags.recavail": "1",
35020 "dns.flags.z": "0",
35021 "dns.flags.authenticated": "0",
35022 "dns.flags.checkdisable": "0",
35023 "dns.flags.rcode": "0"
35025 "dns.count.queries": "1",
35026 "dns.count.answers": "4",
35027 "dns.count.auth_rr": "9",
35028 "dns.count.add_rr": "9",
35030 "www2.meethue.com: type A, class IN": {
35031 "dns.qry.name": "www2.meethue.com",
35032 "dns.qry.name.len": "16",
35033 "dns.count.labels": "3",
35034 "dns.qry.type": "1",
35035 "dns.qry.class": "0x00000001"
35039 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
35040 "dns.resp.name": "www2.meethue.com",
35041 "dns.resp.type": "5",
35042 "dns.resp.class": "0x00000001",
35043 "dns.resp.ttl": "300",
35044 "dns.resp.len": "41",
35045 "dns.cname": "brands.lighting.philips.com.edgekey.net"
35047 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
35048 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
35049 "dns.resp.type": "5",
35050 "dns.resp.class": "0x00000001",
35051 "dns.resp.ttl": "13344",
35052 "dns.resp.len": "22",
35053 "dns.cname": "e15361.b.akamaiedge.net"
35055 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
35056 "dns.resp.name": "e15361.b.akamaiedge.net",
35057 "dns.resp.type": "1",
35058 "dns.resp.class": "0x00000001",
35059 "dns.resp.ttl": "20",
35060 "dns.resp.len": "4",
35061 "dns.a": "184.84.242.42"
35063 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
35064 "dns.resp.name": "e15361.b.akamaiedge.net",
35065 "dns.resp.type": "1",
35066 "dns.resp.class": "0x00000001",
35067 "dns.resp.ttl": "20",
35068 "dns.resp.len": "4",
35069 "dns.a": "184.84.242.27"
35072 "Authoritative nameservers": {
35073 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
35074 "dns.resp.name": "b.akamaiedge.net",
35075 "dns.resp.type": "2",
35076 "dns.resp.class": "0x00000001",
35077 "dns.resp.ttl": "1573",
35078 "dns.resp.len": "6",
35079 "dns.ns": "n1b.akamaiedge.net"
35081 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
35082 "dns.resp.name": "b.akamaiedge.net",
35083 "dns.resp.type": "2",
35084 "dns.resp.class": "0x00000001",
35085 "dns.resp.ttl": "1573",
35086 "dns.resp.len": "6",
35087 "dns.ns": "n4b.akamaiedge.net"
35089 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
35090 "dns.resp.name": "b.akamaiedge.net",
35091 "dns.resp.type": "2",
35092 "dns.resp.class": "0x00000001",
35093 "dns.resp.ttl": "1573",
35094 "dns.resp.len": "6",
35095 "dns.ns": "n5b.akamaiedge.net"
35097 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
35098 "dns.resp.name": "b.akamaiedge.net",
35099 "dns.resp.type": "2",
35100 "dns.resp.class": "0x00000001",
35101 "dns.resp.ttl": "1573",
35102 "dns.resp.len": "6",
35103 "dns.ns": "n6b.akamaiedge.net"
35105 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
35106 "dns.resp.name": "b.akamaiedge.net",
35107 "dns.resp.type": "2",
35108 "dns.resp.class": "0x00000001",
35109 "dns.resp.ttl": "1573",
35110 "dns.resp.len": "6",
35111 "dns.ns": "a0b.akamaiedge.net"
35113 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
35114 "dns.resp.name": "b.akamaiedge.net",
35115 "dns.resp.type": "2",
35116 "dns.resp.class": "0x00000001",
35117 "dns.resp.ttl": "1573",
35118 "dns.resp.len": "6",
35119 "dns.ns": "n0b.akamaiedge.net"
35121 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
35122 "dns.resp.name": "b.akamaiedge.net",
35123 "dns.resp.type": "2",
35124 "dns.resp.class": "0x00000001",
35125 "dns.resp.ttl": "1573",
35126 "dns.resp.len": "6",
35127 "dns.ns": "n2b.akamaiedge.net"
35129 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
35130 "dns.resp.name": "b.akamaiedge.net",
35131 "dns.resp.type": "2",
35132 "dns.resp.class": "0x00000001",
35133 "dns.resp.ttl": "1573",
35134 "dns.resp.len": "6",
35135 "dns.ns": "n7b.akamaiedge.net"
35137 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
35138 "dns.resp.name": "b.akamaiedge.net",
35139 "dns.resp.type": "2",
35140 "dns.resp.class": "0x00000001",
35141 "dns.resp.ttl": "1573",
35142 "dns.resp.len": "6",
35143 "dns.ns": "n3b.akamaiedge.net"
35146 "Additional records": {
35147 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
35148 "dns.resp.name": "n0b.akamaiedge.net",
35149 "dns.resp.type": "1",
35150 "dns.resp.class": "0x00000001",
35151 "dns.resp.ttl": "1109",
35152 "dns.resp.len": "4",
35153 "dns.a": "88.221.81.192"
35155 "n1b.akamaiedge.net: type A, class IN, addr 96.17.70.173": {
35156 "dns.resp.name": "n1b.akamaiedge.net",
35157 "dns.resp.type": "1",
35158 "dns.resp.class": "0x00000001",
35159 "dns.resp.ttl": "1648",
35160 "dns.resp.len": "4",
35161 "dns.a": "96.17.70.173"
35163 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.131": {
35164 "dns.resp.name": "n2b.akamaiedge.net",
35165 "dns.resp.type": "1",
35166 "dns.resp.class": "0x00000001",
35167 "dns.resp.ttl": "4418",
35168 "dns.resp.len": "4",
35169 "dns.a": "173.223.52.131"
35171 "n3b.akamaiedge.net: type A, class IN, addr 209.18.46.223": {
35172 "dns.resp.name": "n3b.akamaiedge.net",
35173 "dns.resp.type": "1",
35174 "dns.resp.class": "0x00000001",
35175 "dns.resp.ttl": "492",
35176 "dns.resp.len": "4",
35177 "dns.a": "209.18.46.223"
35179 "n4b.akamaiedge.net: type A, class IN, addr 209.18.46.225": {
35180 "dns.resp.name": "n4b.akamaiedge.net",
35181 "dns.resp.type": "1",
35182 "dns.resp.class": "0x00000001",
35183 "dns.resp.ttl": "2893",
35184 "dns.resp.len": "4",
35185 "dns.a": "209.18.46.225"
35187 "n5b.akamaiedge.net: type A, class IN, addr 209.18.46.218": {
35188 "dns.resp.name": "n5b.akamaiedge.net",
35189 "dns.resp.type": "1",
35190 "dns.resp.class": "0x00000001",
35191 "dns.resp.ttl": "1445",
35192 "dns.resp.len": "4",
35193 "dns.a": "209.18.46.218"
35195 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.133": {
35196 "dns.resp.name": "n6b.akamaiedge.net",
35197 "dns.resp.type": "1",
35198 "dns.resp.class": "0x00000001",
35199 "dns.resp.ttl": "1033",
35200 "dns.resp.len": "4",
35201 "dns.a": "173.223.52.133"
35203 "n7b.akamaiedge.net: type A, class IN, addr 96.17.70.173": {
35204 "dns.resp.name": "n7b.akamaiedge.net",
35205 "dns.resp.type": "1",
35206 "dns.resp.class": "0x00000001",
35207 "dns.resp.ttl": "1131",
35208 "dns.resp.len": "4",
35209 "dns.a": "96.17.70.173"
35211 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
35212 "dns.resp.name": "a0b.akamaiedge.net",
35213 "dns.resp.type": "28",
35214 "dns.resp.class": "0x00000001",
35215 "dns.resp.ttl": "4587",
35216 "dns.resp.len": "16",
35217 "dns.aaaa": "2600:1480:e800::c0"
35226 "_index": "packets-2017-10-26",
35227 "_type": "pcap_file",
35232 "frame.encap_type": "1",
35233 "frame.time": "Oct 20, 2017 05:52:53.349738000 PDT",
35234 "frame.offset_shift": "0.000000000",
35235 "frame.time_epoch": "1508503973.349738000",
35236 "frame.time_delta": "0.133221000",
35237 "frame.time_delta_displayed": "900.005202000",
35238 "frame.time_relative": "46260.944534000",
35239 "frame.number": "42899",
35241 "frame.cap_len": "76",
35242 "frame.marked": "0",
35243 "frame.ignored": "0",
35244 "frame.protocols": "eth:ethertype:ip:udp:dns",
35245 "frame.coloring_rule.name": "UDP",
35246 "frame.coloring_rule.string": "udp"
35249 "eth.dst": "b0:b9:8a:73:69:8e",
35251 "eth.dst_resolved": "Netgear_73:69:8e",
35252 "eth.addr": "b0:b9:8a:73:69:8e",
35253 "eth.addr_resolved": "Netgear_73:69:8e",
35257 "eth.src": "00:17:88:69:ee:e4",
35259 "eth.src_resolved": "PhilipsL_69:ee:e4",
35260 "eth.addr": "00:17:88:69:ee:e4",
35261 "eth.addr_resolved": "PhilipsL_69:ee:e4",
35265 "eth.type": "0x00000800"
35269 "ip.hdr_len": "20",
35270 "ip.dsfield": "0x00000000",
35271 "ip.dsfield_tree": {
35272 "ip.dsfield.dscp": "0",
35273 "ip.dsfield.ecn": "0"
35276 "ip.id": "0x00003ed9",
35277 "ip.flags": "0x00000002",
35279 "ip.flags.rb": "0",
35280 "ip.flags.df": "1",
35283 "ip.frag_offset": "0",
35286 "ip.checksum": "0x000079e4",
35287 "ip.checksum.status": "2",
35288 "ip.src": "192.168.0.160",
35289 "ip.addr": "192.168.0.160",
35290 "ip.src_host": "192.168.0.160",
35291 "ip.host": "192.168.0.160",
35292 "ip.dst": "192.168.0.1",
35293 "ip.addr": "192.168.0.1",
35294 "ip.dst_host": "192.168.0.1",
35295 "ip.host": "192.168.0.1",
35296 "Source GeoIP: Unknown": "",
35297 "Destination GeoIP: Unknown": ""
35300 "udp.srcport": "37008",
35301 "udp.dstport": "53",
35302 "udp.port": "37008",
35304 "udp.length": "42",
35305 "udp.checksum": "0x0000c838",
35306 "udp.checksum.status": "2",
35307 "udp.stream": "430"
35310 "dns.response_in": "42900",
35311 "dns.id": "0x000004ef",
35312 "dns.flags": "0x00000100",
35313 "dns.flags_tree": {
35314 "dns.flags.response": "0",
35315 "dns.flags.opcode": "0",
35316 "dns.flags.truncated": "0",
35317 "dns.flags.recdesired": "1",
35318 "dns.flags.z": "0",
35319 "dns.flags.checkdisable": "0"
35321 "dns.count.queries": "1",
35322 "dns.count.answers": "0",
35323 "dns.count.auth_rr": "0",
35324 "dns.count.add_rr": "0",
35326 "www2.meethue.com: type A, class IN": {
35327 "dns.qry.name": "www2.meethue.com",
35328 "dns.qry.name.len": "16",
35329 "dns.count.labels": "3",
35330 "dns.qry.type": "1",
35331 "dns.qry.class": "0x00000001"
35340 "_index": "packets-2017-10-26",
35341 "_type": "pcap_file",
35346 "frame.encap_type": "1",
35347 "frame.time": "Oct 20, 2017 05:52:53.356337000 PDT",
35348 "frame.offset_shift": "0.000000000",
35349 "frame.time_epoch": "1508503973.356337000",
35350 "frame.time_delta": "0.006599000",
35351 "frame.time_delta_displayed": "0.006599000",
35352 "frame.time_relative": "46260.951133000",
35353 "frame.number": "42900",
35354 "frame.len": "513",
35355 "frame.cap_len": "513",
35356 "frame.marked": "0",
35357 "frame.ignored": "0",
35358 "frame.protocols": "eth:ethertype:ip:udp:dns",
35359 "frame.coloring_rule.name": "UDP",
35360 "frame.coloring_rule.string": "udp"
35363 "eth.dst": "00:17:88:69:ee:e4",
35365 "eth.dst_resolved": "PhilipsL_69:ee:e4",
35366 "eth.addr": "00:17:88:69:ee:e4",
35367 "eth.addr_resolved": "PhilipsL_69:ee:e4",
35371 "eth.src": "b0:b9:8a:73:69:8e",
35373 "eth.src_resolved": "Netgear_73:69:8e",
35374 "eth.addr": "b0:b9:8a:73:69:8e",
35375 "eth.addr_resolved": "Netgear_73:69:8e",
35379 "eth.type": "0x00000800"
35383 "ip.hdr_len": "20",
35384 "ip.dsfield": "0x00000000",
35385 "ip.dsfield_tree": {
35386 "ip.dsfield.dscp": "0",
35387 "ip.dsfield.ecn": "0"
35390 "ip.id": "0x0000f284",
35391 "ip.flags": "0x00000002",
35393 "ip.flags.rb": "0",
35394 "ip.flags.df": "1",
35397 "ip.frag_offset": "0",
35400 "ip.checksum": "0x0000c483",
35401 "ip.checksum.status": "2",
35402 "ip.src": "192.168.0.1",
35403 "ip.addr": "192.168.0.1",
35404 "ip.src_host": "192.168.0.1",
35405 "ip.host": "192.168.0.1",
35406 "ip.dst": "192.168.0.160",
35407 "ip.addr": "192.168.0.160",
35408 "ip.dst_host": "192.168.0.160",
35409 "ip.host": "192.168.0.160",
35410 "Source GeoIP: Unknown": "",
35411 "Destination GeoIP: Unknown": ""
35414 "udp.srcport": "53",
35415 "udp.dstport": "37008",
35417 "udp.port": "37008",
35418 "udp.length": "479",
35419 "udp.checksum": "0x000083e2",
35420 "udp.checksum.status": "2",
35421 "udp.stream": "430"
35424 "dns.response_to": "42899",
35425 "dns.time": "0.006599000",
35426 "dns.id": "0x000004ef",
35427 "dns.flags": "0x00008180",
35428 "dns.flags_tree": {
35429 "dns.flags.response": "1",
35430 "dns.flags.opcode": "0",
35431 "dns.flags.authoritative": "0",
35432 "dns.flags.truncated": "0",
35433 "dns.flags.recdesired": "1",
35434 "dns.flags.recavail": "1",
35435 "dns.flags.z": "0",
35436 "dns.flags.authenticated": "0",
35437 "dns.flags.checkdisable": "0",
35438 "dns.flags.rcode": "0"
35440 "dns.count.queries": "1",
35441 "dns.count.answers": "4",
35442 "dns.count.auth_rr": "9",
35443 "dns.count.add_rr": "9",
35445 "www2.meethue.com: type A, class IN": {
35446 "dns.qry.name": "www2.meethue.com",
35447 "dns.qry.name.len": "16",
35448 "dns.count.labels": "3",
35449 "dns.qry.type": "1",
35450 "dns.qry.class": "0x00000001"
35454 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
35455 "dns.resp.name": "www2.meethue.com",
35456 "dns.resp.type": "5",
35457 "dns.resp.class": "0x00000001",
35458 "dns.resp.ttl": "123",
35459 "dns.resp.len": "41",
35460 "dns.cname": "brands.lighting.philips.com.edgekey.net"
35462 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
35463 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
35464 "dns.resp.type": "5",
35465 "dns.resp.class": "0x00000001",
35466 "dns.resp.ttl": "10619",
35467 "dns.resp.len": "22",
35468 "dns.cname": "e15361.b.akamaiedge.net"
35470 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
35471 "dns.resp.name": "e15361.b.akamaiedge.net",
35472 "dns.resp.type": "1",
35473 "dns.resp.class": "0x00000001",
35474 "dns.resp.ttl": "20",
35475 "dns.resp.len": "4",
35476 "dns.a": "184.84.242.42"
35478 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
35479 "dns.resp.name": "e15361.b.akamaiedge.net",
35480 "dns.resp.type": "1",
35481 "dns.resp.class": "0x00000001",
35482 "dns.resp.ttl": "20",
35483 "dns.resp.len": "4",
35484 "dns.a": "184.84.242.27"
35487 "Authoritative nameservers": {
35488 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
35489 "dns.resp.name": "b.akamaiedge.net",
35490 "dns.resp.type": "2",
35491 "dns.resp.class": "0x00000001",
35492 "dns.resp.ttl": "598",
35493 "dns.resp.len": "6",
35494 "dns.ns": "n2b.akamaiedge.net"
35496 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
35497 "dns.resp.name": "b.akamaiedge.net",
35498 "dns.resp.type": "2",
35499 "dns.resp.class": "0x00000001",
35500 "dns.resp.ttl": "598",
35501 "dns.resp.len": "6",
35502 "dns.ns": "n1b.akamaiedge.net"
35504 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
35505 "dns.resp.name": "b.akamaiedge.net",
35506 "dns.resp.type": "2",
35507 "dns.resp.class": "0x00000001",
35508 "dns.resp.ttl": "598",
35509 "dns.resp.len": "6",
35510 "dns.ns": "n3b.akamaiedge.net"
35512 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
35513 "dns.resp.name": "b.akamaiedge.net",
35514 "dns.resp.type": "2",
35515 "dns.resp.class": "0x00000001",
35516 "dns.resp.ttl": "598",
35517 "dns.resp.len": "6",
35518 "dns.ns": "n0b.akamaiedge.net"
35520 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
35521 "dns.resp.name": "b.akamaiedge.net",
35522 "dns.resp.type": "2",
35523 "dns.resp.class": "0x00000001",
35524 "dns.resp.ttl": "598",
35525 "dns.resp.len": "6",
35526 "dns.ns": "n7b.akamaiedge.net"
35528 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
35529 "dns.resp.name": "b.akamaiedge.net",
35530 "dns.resp.type": "2",
35531 "dns.resp.class": "0x00000001",
35532 "dns.resp.ttl": "598",
35533 "dns.resp.len": "6",
35534 "dns.ns": "a0b.akamaiedge.net"
35536 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
35537 "dns.resp.name": "b.akamaiedge.net",
35538 "dns.resp.type": "2",
35539 "dns.resp.class": "0x00000001",
35540 "dns.resp.ttl": "598",
35541 "dns.resp.len": "6",
35542 "dns.ns": "n6b.akamaiedge.net"
35544 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
35545 "dns.resp.name": "b.akamaiedge.net",
35546 "dns.resp.type": "2",
35547 "dns.resp.class": "0x00000001",
35548 "dns.resp.ttl": "598",
35549 "dns.resp.len": "6",
35550 "dns.ns": "n5b.akamaiedge.net"
35552 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
35553 "dns.resp.name": "b.akamaiedge.net",
35554 "dns.resp.type": "2",
35555 "dns.resp.class": "0x00000001",
35556 "dns.resp.ttl": "598",
35557 "dns.resp.len": "6",
35558 "dns.ns": "n4b.akamaiedge.net"
35561 "Additional records": {
35562 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
35563 "dns.resp.name": "n0b.akamaiedge.net",
35564 "dns.resp.type": "1",
35565 "dns.resp.class": "0x00000001",
35566 "dns.resp.ttl": "1949",
35567 "dns.resp.len": "4",
35568 "dns.a": "88.221.81.192"
35570 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
35571 "dns.resp.name": "n1b.akamaiedge.net",
35572 "dns.resp.type": "1",
35573 "dns.resp.class": "0x00000001",
35574 "dns.resp.ttl": "4620",
35575 "dns.resp.len": "4",
35576 "dns.a": "173.223.52.109"
35578 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
35579 "dns.resp.name": "n2b.akamaiedge.net",
35580 "dns.resp.type": "1",
35581 "dns.resp.class": "0x00000001",
35582 "dns.resp.ttl": "5130",
35583 "dns.resp.len": "4",
35584 "dns.a": "173.223.52.109"
35586 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.133": {
35587 "dns.resp.name": "n3b.akamaiedge.net",
35588 "dns.resp.type": "1",
35589 "dns.resp.class": "0x00000001",
35590 "dns.resp.ttl": "1333",
35591 "dns.resp.len": "4",
35592 "dns.a": "173.223.52.133"
35594 "n4b.akamaiedge.net: type A, class IN, addr 204.2.166.157": {
35595 "dns.resp.name": "n4b.akamaiedge.net",
35596 "dns.resp.type": "1",
35597 "dns.resp.class": "0x00000001",
35598 "dns.resp.ttl": "4233",
35599 "dns.resp.len": "4",
35600 "dns.a": "204.2.166.157"
35602 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
35603 "dns.resp.name": "n5b.akamaiedge.net",
35604 "dns.resp.type": "1",
35605 "dns.resp.class": "0x00000001",
35606 "dns.resp.ttl": "5974",
35607 "dns.resp.len": "4",
35608 "dns.a": "204.2.166.158"
35610 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
35611 "dns.resp.name": "n6b.akamaiedge.net",
35612 "dns.resp.type": "1",
35613 "dns.resp.class": "0x00000001",
35614 "dns.resp.ttl": "1812",
35615 "dns.resp.len": "4",
35616 "dns.a": "204.2.166.150"
35618 "n7b.akamaiedge.net: type A, class IN, addr 165.254.157.167": {
35619 "dns.resp.name": "n7b.akamaiedge.net",
35620 "dns.resp.type": "1",
35621 "dns.resp.class": "0x00000001",
35622 "dns.resp.ttl": "5834",
35623 "dns.resp.len": "4",
35624 "dns.a": "165.254.157.167"
35626 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
35627 "dns.resp.name": "a0b.akamaiedge.net",
35628 "dns.resp.type": "28",
35629 "dns.resp.class": "0x00000001",
35630 "dns.resp.ttl": "5629",
35631 "dns.resp.len": "16",
35632 "dns.aaaa": "2600:1480:e800::c0"
35641 "_index": "packets-2017-10-26",
35642 "_type": "pcap_file",
35647 "frame.encap_type": "1",
35648 "frame.time": "Oct 20, 2017 06:07:53.361739000 PDT",
35649 "frame.offset_shift": "0.000000000",
35650 "frame.time_epoch": "1508504873.361739000",
35651 "frame.time_delta": "3.522645000",
35652 "frame.time_delta_displayed": "900.005402000",
35653 "frame.time_relative": "47160.956535000",
35654 "frame.number": "43627",
35656 "frame.cap_len": "76",
35657 "frame.marked": "0",
35658 "frame.ignored": "0",
35659 "frame.protocols": "eth:ethertype:ip:udp:dns",
35660 "frame.coloring_rule.name": "UDP",
35661 "frame.coloring_rule.string": "udp"
35664 "eth.dst": "b0:b9:8a:73:69:8e",
35666 "eth.dst_resolved": "Netgear_73:69:8e",
35667 "eth.addr": "b0:b9:8a:73:69:8e",
35668 "eth.addr_resolved": "Netgear_73:69:8e",
35672 "eth.src": "00:17:88:69:ee:e4",
35674 "eth.src_resolved": "PhilipsL_69:ee:e4",
35675 "eth.addr": "00:17:88:69:ee:e4",
35676 "eth.addr_resolved": "PhilipsL_69:ee:e4",
35680 "eth.type": "0x00000800"
35684 "ip.hdr_len": "20",
35685 "ip.dsfield": "0x00000000",
35686 "ip.dsfield_tree": {
35687 "ip.dsfield.dscp": "0",
35688 "ip.dsfield.ecn": "0"
35691 "ip.id": "0x00002003",
35692 "ip.flags": "0x00000002",
35694 "ip.flags.rb": "0",
35695 "ip.flags.df": "1",
35698 "ip.frag_offset": "0",
35701 "ip.checksum": "0x000098ba",
35702 "ip.checksum.status": "2",
35703 "ip.src": "192.168.0.160",
35704 "ip.addr": "192.168.0.160",
35705 "ip.src_host": "192.168.0.160",
35706 "ip.host": "192.168.0.160",
35707 "ip.dst": "192.168.0.1",
35708 "ip.addr": "192.168.0.1",
35709 "ip.dst_host": "192.168.0.1",
35710 "ip.host": "192.168.0.1",
35711 "Source GeoIP: Unknown": "",
35712 "Destination GeoIP: Unknown": ""
35715 "udp.srcport": "32771",
35716 "udp.dstport": "53",
35717 "udp.port": "32771",
35719 "udp.length": "42",
35720 "udp.checksum": "0x0000d8c4",
35721 "udp.checksum.status": "2",
35722 "udp.stream": "434"
35725 "dns.response_in": "43628",
35726 "dns.id": "0x000004f0",
35727 "dns.flags": "0x00000100",
35728 "dns.flags_tree": {
35729 "dns.flags.response": "0",
35730 "dns.flags.opcode": "0",
35731 "dns.flags.truncated": "0",
35732 "dns.flags.recdesired": "1",
35733 "dns.flags.z": "0",
35734 "dns.flags.checkdisable": "0"
35736 "dns.count.queries": "1",
35737 "dns.count.answers": "0",
35738 "dns.count.auth_rr": "0",
35739 "dns.count.add_rr": "0",
35741 "www2.meethue.com: type A, class IN": {
35742 "dns.qry.name": "www2.meethue.com",
35743 "dns.qry.name.len": "16",
35744 "dns.count.labels": "3",
35745 "dns.qry.type": "1",
35746 "dns.qry.class": "0x00000001"
35755 "_index": "packets-2017-10-26",
35756 "_type": "pcap_file",
35761 "frame.encap_type": "1",
35762 "frame.time": "Oct 20, 2017 06:07:53.369270000 PDT",
35763 "frame.offset_shift": "0.000000000",
35764 "frame.time_epoch": "1508504873.369270000",
35765 "frame.time_delta": "0.007531000",
35766 "frame.time_delta_displayed": "0.007531000",
35767 "frame.time_relative": "47160.964066000",
35768 "frame.number": "43628",
35769 "frame.len": "513",
35770 "frame.cap_len": "513",
35771 "frame.marked": "0",
35772 "frame.ignored": "0",
35773 "frame.protocols": "eth:ethertype:ip:udp:dns",
35774 "frame.coloring_rule.name": "UDP",
35775 "frame.coloring_rule.string": "udp"
35778 "eth.dst": "00:17:88:69:ee:e4",
35780 "eth.dst_resolved": "PhilipsL_69:ee:e4",
35781 "eth.addr": "00:17:88:69:ee:e4",
35782 "eth.addr_resolved": "PhilipsL_69:ee:e4",
35786 "eth.src": "b0:b9:8a:73:69:8e",
35788 "eth.src_resolved": "Netgear_73:69:8e",
35789 "eth.addr": "b0:b9:8a:73:69:8e",
35790 "eth.addr_resolved": "Netgear_73:69:8e",
35794 "eth.type": "0x00000800"
35798 "ip.hdr_len": "20",
35799 "ip.dsfield": "0x00000000",
35800 "ip.dsfield_tree": {
35801 "ip.dsfield.dscp": "0",
35802 "ip.dsfield.ecn": "0"
35805 "ip.id": "0x0000dd37",
35806 "ip.flags": "0x00000002",
35808 "ip.flags.rb": "0",
35809 "ip.flags.df": "1",
35812 "ip.frag_offset": "0",
35815 "ip.checksum": "0x0000d9d0",
35816 "ip.checksum.status": "2",
35817 "ip.src": "192.168.0.1",
35818 "ip.addr": "192.168.0.1",
35819 "ip.src_host": "192.168.0.1",
35820 "ip.host": "192.168.0.1",
35821 "ip.dst": "192.168.0.160",
35822 "ip.addr": "192.168.0.160",
35823 "ip.dst_host": "192.168.0.160",
35824 "ip.host": "192.168.0.160",
35825 "Source GeoIP: Unknown": "",
35826 "Destination GeoIP: Unknown": ""
35829 "udp.srcport": "53",
35830 "udp.dstport": "32771",
35832 "udp.port": "32771",
35833 "udp.length": "479",
35834 "udp.checksum": "0x000083e2",
35835 "udp.checksum.status": "2",
35836 "udp.stream": "434"
35839 "dns.response_to": "43627",
35840 "dns.time": "0.007531000",
35841 "dns.id": "0x000004f0",
35842 "dns.flags": "0x00008180",
35843 "dns.flags_tree": {
35844 "dns.flags.response": "1",
35845 "dns.flags.opcode": "0",
35846 "dns.flags.authoritative": "0",
35847 "dns.flags.truncated": "0",
35848 "dns.flags.recdesired": "1",
35849 "dns.flags.recavail": "1",
35850 "dns.flags.z": "0",
35851 "dns.flags.authenticated": "0",
35852 "dns.flags.checkdisable": "0",
35853 "dns.flags.rcode": "0"
35855 "dns.count.queries": "1",
35856 "dns.count.answers": "4",
35857 "dns.count.auth_rr": "9",
35858 "dns.count.add_rr": "9",
35860 "www2.meethue.com: type A, class IN": {
35861 "dns.qry.name": "www2.meethue.com",
35862 "dns.qry.name.len": "16",
35863 "dns.count.labels": "3",
35864 "dns.qry.type": "1",
35865 "dns.qry.class": "0x00000001"
35869 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
35870 "dns.resp.name": "www2.meethue.com",
35871 "dns.resp.type": "5",
35872 "dns.resp.class": "0x00000001",
35873 "dns.resp.ttl": "126",
35874 "dns.resp.len": "41",
35875 "dns.cname": "brands.lighting.philips.com.edgekey.net"
35877 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
35878 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
35879 "dns.resp.type": "5",
35880 "dns.resp.class": "0x00000001",
35881 "dns.resp.ttl": "9719",
35882 "dns.resp.len": "22",
35883 "dns.cname": "e15361.b.akamaiedge.net"
35885 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
35886 "dns.resp.name": "e15361.b.akamaiedge.net",
35887 "dns.resp.type": "1",
35888 "dns.resp.class": "0x00000001",
35889 "dns.resp.ttl": "20",
35890 "dns.resp.len": "4",
35891 "dns.a": "173.223.52.125"
35893 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
35894 "dns.resp.name": "e15361.b.akamaiedge.net",
35895 "dns.resp.type": "1",
35896 "dns.resp.class": "0x00000001",
35897 "dns.resp.ttl": "20",
35898 "dns.resp.len": "4",
35899 "dns.a": "173.223.52.112"
35902 "Authoritative nameservers": {
35903 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
35904 "dns.resp.name": "b.akamaiedge.net",
35905 "dns.resp.type": "2",
35906 "dns.resp.class": "0x00000001",
35907 "dns.resp.ttl": "3700",
35908 "dns.resp.len": "6",
35909 "dns.ns": "n4b.akamaiedge.net"
35911 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
35912 "dns.resp.name": "b.akamaiedge.net",
35913 "dns.resp.type": "2",
35914 "dns.resp.class": "0x00000001",
35915 "dns.resp.ttl": "3700",
35916 "dns.resp.len": "6",
35917 "dns.ns": "n2b.akamaiedge.net"
35919 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
35920 "dns.resp.name": "b.akamaiedge.net",
35921 "dns.resp.type": "2",
35922 "dns.resp.class": "0x00000001",
35923 "dns.resp.ttl": "3700",
35924 "dns.resp.len": "6",
35925 "dns.ns": "n6b.akamaiedge.net"
35927 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
35928 "dns.resp.name": "b.akamaiedge.net",
35929 "dns.resp.type": "2",
35930 "dns.resp.class": "0x00000001",
35931 "dns.resp.ttl": "3700",
35932 "dns.resp.len": "6",
35933 "dns.ns": "n1b.akamaiedge.net"
35935 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
35936 "dns.resp.name": "b.akamaiedge.net",
35937 "dns.resp.type": "2",
35938 "dns.resp.class": "0x00000001",
35939 "dns.resp.ttl": "3700",
35940 "dns.resp.len": "6",
35941 "dns.ns": "n0b.akamaiedge.net"
35943 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
35944 "dns.resp.name": "b.akamaiedge.net",
35945 "dns.resp.type": "2",
35946 "dns.resp.class": "0x00000001",
35947 "dns.resp.ttl": "3700",
35948 "dns.resp.len": "6",
35949 "dns.ns": "n7b.akamaiedge.net"
35951 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
35952 "dns.resp.name": "b.akamaiedge.net",
35953 "dns.resp.type": "2",
35954 "dns.resp.class": "0x00000001",
35955 "dns.resp.ttl": "3700",
35956 "dns.resp.len": "6",
35957 "dns.ns": "a0b.akamaiedge.net"
35959 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
35960 "dns.resp.name": "b.akamaiedge.net",
35961 "dns.resp.type": "2",
35962 "dns.resp.class": "0x00000001",
35963 "dns.resp.ttl": "3700",
35964 "dns.resp.len": "6",
35965 "dns.ns": "n5b.akamaiedge.net"
35967 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
35968 "dns.resp.name": "b.akamaiedge.net",
35969 "dns.resp.type": "2",
35970 "dns.resp.class": "0x00000001",
35971 "dns.resp.ttl": "3700",
35972 "dns.resp.len": "6",
35973 "dns.ns": "n3b.akamaiedge.net"
35976 "Additional records": {
35977 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
35978 "dns.resp.name": "n0b.akamaiedge.net",
35979 "dns.resp.type": "1",
35980 "dns.resp.class": "0x00000001",
35981 "dns.resp.ttl": "1049",
35982 "dns.resp.len": "4",
35983 "dns.a": "88.221.81.192"
35985 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
35986 "dns.resp.name": "n1b.akamaiedge.net",
35987 "dns.resp.type": "1",
35988 "dns.resp.class": "0x00000001",
35989 "dns.resp.ttl": "3720",
35990 "dns.resp.len": "4",
35991 "dns.a": "173.223.52.109"
35993 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
35994 "dns.resp.name": "n2b.akamaiedge.net",
35995 "dns.resp.type": "1",
35996 "dns.resp.class": "0x00000001",
35997 "dns.resp.ttl": "4230",
35998 "dns.resp.len": "4",
35999 "dns.a": "173.223.52.109"
36001 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.133": {
36002 "dns.resp.name": "n3b.akamaiedge.net",
36003 "dns.resp.type": "1",
36004 "dns.resp.class": "0x00000001",
36005 "dns.resp.ttl": "433",
36006 "dns.resp.len": "4",
36007 "dns.a": "173.223.52.133"
36009 "n4b.akamaiedge.net: type A, class IN, addr 204.2.166.157": {
36010 "dns.resp.name": "n4b.akamaiedge.net",
36011 "dns.resp.type": "1",
36012 "dns.resp.class": "0x00000001",
36013 "dns.resp.ttl": "3333",
36014 "dns.resp.len": "4",
36015 "dns.a": "204.2.166.157"
36017 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
36018 "dns.resp.name": "n5b.akamaiedge.net",
36019 "dns.resp.type": "1",
36020 "dns.resp.class": "0x00000001",
36021 "dns.resp.ttl": "5074",
36022 "dns.resp.len": "4",
36023 "dns.a": "204.2.166.158"
36025 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
36026 "dns.resp.name": "n6b.akamaiedge.net",
36027 "dns.resp.type": "1",
36028 "dns.resp.class": "0x00000001",
36029 "dns.resp.ttl": "912",
36030 "dns.resp.len": "4",
36031 "dns.a": "204.2.166.150"
36033 "n7b.akamaiedge.net: type A, class IN, addr 165.254.157.167": {
36034 "dns.resp.name": "n7b.akamaiedge.net",
36035 "dns.resp.type": "1",
36036 "dns.resp.class": "0x00000001",
36037 "dns.resp.ttl": "4934",
36038 "dns.resp.len": "4",
36039 "dns.a": "165.254.157.167"
36041 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
36042 "dns.resp.name": "a0b.akamaiedge.net",
36043 "dns.resp.type": "28",
36044 "dns.resp.class": "0x00000001",
36045 "dns.resp.ttl": "4729",
36046 "dns.resp.len": "16",
36047 "dns.aaaa": "2600:1480:e800::c0"
36056 "_index": "packets-2017-10-26",
36057 "_type": "pcap_file",
36062 "frame.encap_type": "1",
36063 "frame.time": "Oct 20, 2017 06:22:53.379501000 PDT",
36064 "frame.offset_shift": "0.000000000",
36065 "frame.time_epoch": "1508505773.379501000",
36066 "frame.time_delta": "5.573394000",
36067 "frame.time_delta_displayed": "900.010231000",
36068 "frame.time_relative": "48060.974297000",
36069 "frame.number": "44377",
36071 "frame.cap_len": "76",
36072 "frame.marked": "0",
36073 "frame.ignored": "0",
36074 "frame.protocols": "eth:ethertype:ip:udp:dns",
36075 "frame.coloring_rule.name": "UDP",
36076 "frame.coloring_rule.string": "udp"
36079 "eth.dst": "b0:b9:8a:73:69:8e",
36081 "eth.dst_resolved": "Netgear_73:69:8e",
36082 "eth.addr": "b0:b9:8a:73:69:8e",
36083 "eth.addr_resolved": "Netgear_73:69:8e",
36087 "eth.src": "00:17:88:69:ee:e4",
36089 "eth.src_resolved": "PhilipsL_69:ee:e4",
36090 "eth.addr": "00:17:88:69:ee:e4",
36091 "eth.addr_resolved": "PhilipsL_69:ee:e4",
36095 "eth.type": "0x00000800"
36099 "ip.hdr_len": "20",
36100 "ip.dsfield": "0x00000000",
36101 "ip.dsfield_tree": {
36102 "ip.dsfield.dscp": "0",
36103 "ip.dsfield.ecn": "0"
36106 "ip.id": "0x0000ea56",
36107 "ip.flags": "0x00000002",
36109 "ip.flags.rb": "0",
36110 "ip.flags.df": "1",
36113 "ip.frag_offset": "0",
36116 "ip.checksum": "0x0000ce66",
36117 "ip.checksum.status": "2",
36118 "ip.src": "192.168.0.160",
36119 "ip.addr": "192.168.0.160",
36120 "ip.src_host": "192.168.0.160",
36121 "ip.host": "192.168.0.160",
36122 "ip.dst": "192.168.0.1",
36123 "ip.addr": "192.168.0.1",
36124 "ip.dst_host": "192.168.0.1",
36125 "ip.host": "192.168.0.1",
36126 "Source GeoIP: Unknown": "",
36127 "Destination GeoIP: Unknown": ""
36130 "udp.srcport": "47638",
36131 "udp.dstport": "53",
36132 "udp.port": "47638",
36134 "udp.length": "42",
36135 "udp.checksum": "0x00009eb0",
36136 "udp.checksum.status": "2",
36137 "udp.stream": "438"
36140 "dns.response_in": "44378",
36141 "dns.id": "0x000004f1",
36142 "dns.flags": "0x00000100",
36143 "dns.flags_tree": {
36144 "dns.flags.response": "0",
36145 "dns.flags.opcode": "0",
36146 "dns.flags.truncated": "0",
36147 "dns.flags.recdesired": "1",
36148 "dns.flags.z": "0",
36149 "dns.flags.checkdisable": "0"
36151 "dns.count.queries": "1",
36152 "dns.count.answers": "0",
36153 "dns.count.auth_rr": "0",
36154 "dns.count.add_rr": "0",
36156 "www2.meethue.com: type A, class IN": {
36157 "dns.qry.name": "www2.meethue.com",
36158 "dns.qry.name.len": "16",
36159 "dns.count.labels": "3",
36160 "dns.qry.type": "1",
36161 "dns.qry.class": "0x00000001"
36170 "_index": "packets-2017-10-26",
36171 "_type": "pcap_file",
36176 "frame.encap_type": "1",
36177 "frame.time": "Oct 20, 2017 06:22:53.386242000 PDT",
36178 "frame.offset_shift": "0.000000000",
36179 "frame.time_epoch": "1508505773.386242000",
36180 "frame.time_delta": "0.006741000",
36181 "frame.time_delta_displayed": "0.006741000",
36182 "frame.time_relative": "48060.981038000",
36183 "frame.number": "44378",
36184 "frame.len": "513",
36185 "frame.cap_len": "513",
36186 "frame.marked": "0",
36187 "frame.ignored": "0",
36188 "frame.protocols": "eth:ethertype:ip:udp:dns",
36189 "frame.coloring_rule.name": "UDP",
36190 "frame.coloring_rule.string": "udp"
36193 "eth.dst": "00:17:88:69:ee:e4",
36195 "eth.dst_resolved": "PhilipsL_69:ee:e4",
36196 "eth.addr": "00:17:88:69:ee:e4",
36197 "eth.addr_resolved": "PhilipsL_69:ee:e4",
36201 "eth.src": "b0:b9:8a:73:69:8e",
36203 "eth.src_resolved": "Netgear_73:69:8e",
36204 "eth.addr": "b0:b9:8a:73:69:8e",
36205 "eth.addr_resolved": "Netgear_73:69:8e",
36209 "eth.type": "0x00000800"
36213 "ip.hdr_len": "20",
36214 "ip.dsfield": "0x00000000",
36215 "ip.dsfield_tree": {
36216 "ip.dsfield.dscp": "0",
36217 "ip.dsfield.ecn": "0"
36220 "ip.id": "0x000016a1",
36221 "ip.flags": "0x00000002",
36223 "ip.flags.rb": "0",
36224 "ip.flags.df": "1",
36227 "ip.frag_offset": "0",
36230 "ip.checksum": "0x0000a067",
36231 "ip.checksum.status": "2",
36232 "ip.src": "192.168.0.1",
36233 "ip.addr": "192.168.0.1",
36234 "ip.src_host": "192.168.0.1",
36235 "ip.host": "192.168.0.1",
36236 "ip.dst": "192.168.0.160",
36237 "ip.addr": "192.168.0.160",
36238 "ip.dst_host": "192.168.0.160",
36239 "ip.host": "192.168.0.160",
36240 "Source GeoIP: Unknown": "",
36241 "Destination GeoIP: Unknown": ""
36244 "udp.srcport": "53",
36245 "udp.dstport": "47638",
36247 "udp.port": "47638",
36248 "udp.length": "479",
36249 "udp.checksum": "0x000083e2",
36250 "udp.checksum.status": "2",
36251 "udp.stream": "438"
36254 "dns.response_to": "44377",
36255 "dns.time": "0.006741000",
36256 "dns.id": "0x000004f1",
36257 "dns.flags": "0x00008180",
36258 "dns.flags_tree": {
36259 "dns.flags.response": "1",
36260 "dns.flags.opcode": "0",
36261 "dns.flags.authoritative": "0",
36262 "dns.flags.truncated": "0",
36263 "dns.flags.recdesired": "1",
36264 "dns.flags.recavail": "1",
36265 "dns.flags.z": "0",
36266 "dns.flags.authenticated": "0",
36267 "dns.flags.checkdisable": "0",
36268 "dns.flags.rcode": "0"
36270 "dns.count.queries": "1",
36271 "dns.count.answers": "4",
36272 "dns.count.auth_rr": "9",
36273 "dns.count.add_rr": "9",
36275 "www2.meethue.com: type A, class IN": {
36276 "dns.qry.name": "www2.meethue.com",
36277 "dns.qry.name.len": "16",
36278 "dns.count.labels": "3",
36279 "dns.qry.type": "1",
36280 "dns.qry.class": "0x00000001"
36284 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
36285 "dns.resp.name": "www2.meethue.com",
36286 "dns.resp.type": "5",
36287 "dns.resp.class": "0x00000001",
36288 "dns.resp.ttl": "126",
36289 "dns.resp.len": "41",
36290 "dns.cname": "brands.lighting.philips.com.edgekey.net"
36292 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
36293 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
36294 "dns.resp.type": "5",
36295 "dns.resp.class": "0x00000001",
36296 "dns.resp.ttl": "8819",
36297 "dns.resp.len": "22",
36298 "dns.cname": "e15361.b.akamaiedge.net"
36300 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.27": {
36301 "dns.resp.name": "e15361.b.akamaiedge.net",
36302 "dns.resp.type": "1",
36303 "dns.resp.class": "0x00000001",
36304 "dns.resp.ttl": "20",
36305 "dns.resp.len": "4",
36306 "dns.a": "184.84.242.27"
36308 "e15361.b.akamaiedge.net: type A, class IN, addr 184.84.242.42": {
36309 "dns.resp.name": "e15361.b.akamaiedge.net",
36310 "dns.resp.type": "1",
36311 "dns.resp.class": "0x00000001",
36312 "dns.resp.ttl": "20",
36313 "dns.resp.len": "4",
36314 "dns.a": "184.84.242.42"
36317 "Authoritative nameservers": {
36318 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
36319 "dns.resp.name": "b.akamaiedge.net",
36320 "dns.resp.type": "2",
36321 "dns.resp.class": "0x00000001",
36322 "dns.resp.ttl": "2800",
36323 "dns.resp.len": "6",
36324 "dns.ns": "n0b.akamaiedge.net"
36326 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
36327 "dns.resp.name": "b.akamaiedge.net",
36328 "dns.resp.type": "2",
36329 "dns.resp.class": "0x00000001",
36330 "dns.resp.ttl": "2800",
36331 "dns.resp.len": "6",
36332 "dns.ns": "n1b.akamaiedge.net"
36334 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
36335 "dns.resp.name": "b.akamaiedge.net",
36336 "dns.resp.type": "2",
36337 "dns.resp.class": "0x00000001",
36338 "dns.resp.ttl": "2800",
36339 "dns.resp.len": "6",
36340 "dns.ns": "n3b.akamaiedge.net"
36342 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
36343 "dns.resp.name": "b.akamaiedge.net",
36344 "dns.resp.type": "2",
36345 "dns.resp.class": "0x00000001",
36346 "dns.resp.ttl": "2800",
36347 "dns.resp.len": "6",
36348 "dns.ns": "n6b.akamaiedge.net"
36350 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
36351 "dns.resp.name": "b.akamaiedge.net",
36352 "dns.resp.type": "2",
36353 "dns.resp.class": "0x00000001",
36354 "dns.resp.ttl": "2800",
36355 "dns.resp.len": "6",
36356 "dns.ns": "n7b.akamaiedge.net"
36358 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
36359 "dns.resp.name": "b.akamaiedge.net",
36360 "dns.resp.type": "2",
36361 "dns.resp.class": "0x00000001",
36362 "dns.resp.ttl": "2800",
36363 "dns.resp.len": "6",
36364 "dns.ns": "n4b.akamaiedge.net"
36366 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
36367 "dns.resp.name": "b.akamaiedge.net",
36368 "dns.resp.type": "2",
36369 "dns.resp.class": "0x00000001",
36370 "dns.resp.ttl": "2800",
36371 "dns.resp.len": "6",
36372 "dns.ns": "n5b.akamaiedge.net"
36374 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
36375 "dns.resp.name": "b.akamaiedge.net",
36376 "dns.resp.type": "2",
36377 "dns.resp.class": "0x00000001",
36378 "dns.resp.ttl": "2800",
36379 "dns.resp.len": "6",
36380 "dns.ns": "n2b.akamaiedge.net"
36382 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
36383 "dns.resp.name": "b.akamaiedge.net",
36384 "dns.resp.type": "2",
36385 "dns.resp.class": "0x00000001",
36386 "dns.resp.ttl": "2800",
36387 "dns.resp.len": "6",
36388 "dns.ns": "a0b.akamaiedge.net"
36391 "Additional records": {
36392 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
36393 "dns.resp.name": "n0b.akamaiedge.net",
36394 "dns.resp.type": "1",
36395 "dns.resp.class": "0x00000001",
36396 "dns.resp.ttl": "149",
36397 "dns.resp.len": "4",
36398 "dns.a": "88.221.81.192"
36400 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
36401 "dns.resp.name": "n1b.akamaiedge.net",
36402 "dns.resp.type": "1",
36403 "dns.resp.class": "0x00000001",
36404 "dns.resp.ttl": "2820",
36405 "dns.resp.len": "4",
36406 "dns.a": "173.223.52.109"
36408 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
36409 "dns.resp.name": "n2b.akamaiedge.net",
36410 "dns.resp.type": "1",
36411 "dns.resp.class": "0x00000001",
36412 "dns.resp.ttl": "3330",
36413 "dns.resp.len": "4",
36414 "dns.a": "173.223.52.109"
36416 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.192": {
36417 "dns.resp.name": "n3b.akamaiedge.net",
36418 "dns.resp.type": "1",
36419 "dns.resp.class": "0x00000001",
36420 "dns.resp.ttl": "3537",
36421 "dns.resp.len": "4",
36422 "dns.a": "96.17.70.192"
36424 "n4b.akamaiedge.net: type A, class IN, addr 204.2.166.157": {
36425 "dns.resp.name": "n4b.akamaiedge.net",
36426 "dns.resp.type": "1",
36427 "dns.resp.class": "0x00000001",
36428 "dns.resp.ttl": "2433",
36429 "dns.resp.len": "4",
36430 "dns.a": "204.2.166.157"
36432 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
36433 "dns.resp.name": "n5b.akamaiedge.net",
36434 "dns.resp.type": "1",
36435 "dns.resp.class": "0x00000001",
36436 "dns.resp.ttl": "4174",
36437 "dns.resp.len": "4",
36438 "dns.a": "204.2.166.158"
36440 "n6b.akamaiedge.net: type A, class IN, addr 204.2.166.150": {
36441 "dns.resp.name": "n6b.akamaiedge.net",
36442 "dns.resp.type": "1",
36443 "dns.resp.class": "0x00000001",
36444 "dns.resp.ttl": "12",
36445 "dns.resp.len": "4",
36446 "dns.a": "204.2.166.150"
36448 "n7b.akamaiedge.net: type A, class IN, addr 165.254.157.167": {
36449 "dns.resp.name": "n7b.akamaiedge.net",
36450 "dns.resp.type": "1",
36451 "dns.resp.class": "0x00000001",
36452 "dns.resp.ttl": "4034",
36453 "dns.resp.len": "4",
36454 "dns.a": "165.254.157.167"
36456 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
36457 "dns.resp.name": "a0b.akamaiedge.net",
36458 "dns.resp.type": "28",
36459 "dns.resp.class": "0x00000001",
36460 "dns.resp.ttl": "3829",
36461 "dns.resp.len": "16",
36462 "dns.aaaa": "2600:1480:e800::c0"
36471 "_index": "packets-2017-10-26",
36472 "_type": "pcap_file",
36477 "frame.encap_type": "1",
36478 "frame.time": "Oct 20, 2017 06:33:22.946788000 PDT",
36479 "frame.offset_shift": "0.000000000",
36480 "frame.time_epoch": "1508506402.946788000",
36481 "frame.time_delta": "0.766058000",
36482 "frame.time_delta_displayed": "629.560546000",
36483 "frame.time_relative": "48690.541584000",
36484 "frame.number": "44868",
36486 "frame.cap_len": "79",
36487 "frame.marked": "0",
36488 "frame.ignored": "0",
36489 "frame.protocols": "eth:ethertype:ip:udp:dns",
36490 "frame.coloring_rule.name": "UDP",
36491 "frame.coloring_rule.string": "udp"
36494 "eth.dst": "b0:b9:8a:73:69:8e",
36496 "eth.dst_resolved": "Netgear_73:69:8e",
36497 "eth.addr": "b0:b9:8a:73:69:8e",
36498 "eth.addr_resolved": "Netgear_73:69:8e",
36502 "eth.src": "00:17:88:69:ee:e4",
36504 "eth.src_resolved": "PhilipsL_69:ee:e4",
36505 "eth.addr": "00:17:88:69:ee:e4",
36506 "eth.addr_resolved": "PhilipsL_69:ee:e4",
36510 "eth.type": "0x00000800"
36514 "ip.hdr_len": "20",
36515 "ip.dsfield": "0x00000000",
36516 "ip.dsfield_tree": {
36517 "ip.dsfield.dscp": "0",
36518 "ip.dsfield.ecn": "0"
36521 "ip.id": "0x0000bdc8",
36522 "ip.flags": "0x00000002",
36524 "ip.flags.rb": "0",
36525 "ip.flags.df": "1",
36528 "ip.frag_offset": "0",
36531 "ip.checksum": "0x0000faf1",
36532 "ip.checksum.status": "2",
36533 "ip.src": "192.168.0.160",
36534 "ip.addr": "192.168.0.160",
36535 "ip.src_host": "192.168.0.160",
36536 "ip.host": "192.168.0.160",
36537 "ip.dst": "192.168.0.1",
36538 "ip.addr": "192.168.0.1",
36539 "ip.dst_host": "192.168.0.1",
36540 "ip.host": "192.168.0.1",
36541 "Source GeoIP: Unknown": "",
36542 "Destination GeoIP: Unknown": ""
36545 "udp.srcport": "34522",
36546 "udp.dstport": "53",
36547 "udp.port": "34522",
36549 "udp.length": "45",
36550 "udp.checksum": "0x00003971",
36551 "udp.checksum.status": "2",
36552 "udp.stream": "444"
36555 "dns.response_in": "44869",
36556 "dns.id": "0x000004f2",
36557 "dns.flags": "0x00000100",
36558 "dns.flags_tree": {
36559 "dns.flags.response": "0",
36560 "dns.flags.opcode": "0",
36561 "dns.flags.truncated": "0",
36562 "dns.flags.recdesired": "1",
36563 "dns.flags.z": "0",
36564 "dns.flags.checkdisable": "0"
36566 "dns.count.queries": "1",
36567 "dns.count.answers": "0",
36568 "dns.count.auth_rr": "0",
36569 "dns.count.add_rr": "0",
36571 "dcp.cpp.philips.com: type AAAA, class IN": {
36572 "dns.qry.name": "dcp.cpp.philips.com",
36573 "dns.qry.name.len": "19",
36574 "dns.count.labels": "4",
36575 "dns.qry.type": "28",
36576 "dns.qry.class": "0x00000001"
36585 "_index": "packets-2017-10-26",
36586 "_type": "pcap_file",
36591 "frame.encap_type": "1",
36592 "frame.time": "Oct 20, 2017 06:33:22.948908000 PDT",
36593 "frame.offset_shift": "0.000000000",
36594 "frame.time_epoch": "1508506402.948908000",
36595 "frame.time_delta": "0.002120000",
36596 "frame.time_delta_displayed": "0.002120000",
36597 "frame.time_relative": "48690.543704000",
36598 "frame.number": "44869",
36599 "frame.len": "137",
36600 "frame.cap_len": "137",
36601 "frame.marked": "0",
36602 "frame.ignored": "0",
36603 "frame.protocols": "eth:ethertype:ip:udp:dns",
36604 "frame.coloring_rule.name": "UDP",
36605 "frame.coloring_rule.string": "udp"
36608 "eth.dst": "00:17:88:69:ee:e4",
36610 "eth.dst_resolved": "PhilipsL_69:ee:e4",
36611 "eth.addr": "00:17:88:69:ee:e4",
36612 "eth.addr_resolved": "PhilipsL_69:ee:e4",
36616 "eth.src": "b0:b9:8a:73:69:8e",
36618 "eth.src_resolved": "Netgear_73:69:8e",
36619 "eth.addr": "b0:b9:8a:73:69:8e",
36620 "eth.addr_resolved": "Netgear_73:69:8e",
36624 "eth.type": "0x00000800"
36628 "ip.hdr_len": "20",
36629 "ip.dsfield": "0x00000000",
36630 "ip.dsfield_tree": {
36631 "ip.dsfield.dscp": "0",
36632 "ip.dsfield.ecn": "0"
36635 "ip.id": "0x00005bc7",
36636 "ip.flags": "0x00000002",
36638 "ip.flags.rb": "0",
36639 "ip.flags.df": "1",
36642 "ip.frag_offset": "0",
36645 "ip.checksum": "0x00005cb9",
36646 "ip.checksum.status": "2",
36647 "ip.src": "192.168.0.1",
36648 "ip.addr": "192.168.0.1",
36649 "ip.src_host": "192.168.0.1",
36650 "ip.host": "192.168.0.1",
36651 "ip.dst": "192.168.0.160",
36652 "ip.addr": "192.168.0.160",
36653 "ip.dst_host": "192.168.0.160",
36654 "ip.host": "192.168.0.160",
36655 "Source GeoIP: Unknown": "",
36656 "Destination GeoIP: Unknown": ""
36659 "udp.srcport": "53",
36660 "udp.dstport": "34522",
36662 "udp.port": "34522",
36663 "udp.length": "103",
36664 "udp.checksum": "0x0000826a",
36665 "udp.checksum.status": "2",
36666 "udp.stream": "444"
36669 "dns.response_to": "44868",
36670 "dns.time": "0.002120000",
36671 "dns.id": "0x000004f2",
36672 "dns.flags": "0x00008180",
36673 "dns.flags_tree": {
36674 "dns.flags.response": "1",
36675 "dns.flags.opcode": "0",
36676 "dns.flags.authoritative": "0",
36677 "dns.flags.truncated": "0",
36678 "dns.flags.recdesired": "1",
36679 "dns.flags.recavail": "1",
36680 "dns.flags.z": "0",
36681 "dns.flags.authenticated": "0",
36682 "dns.flags.checkdisable": "0",
36683 "dns.flags.rcode": "0"
36685 "dns.count.queries": "1",
36686 "dns.count.answers": "0",
36687 "dns.count.auth_rr": "1",
36688 "dns.count.add_rr": "0",
36690 "dcp.cpp.philips.com: type AAAA, class IN": {
36691 "dns.qry.name": "dcp.cpp.philips.com",
36692 "dns.qry.name.len": "19",
36693 "dns.count.labels": "4",
36694 "dns.qry.type": "28",
36695 "dns.qry.class": "0x00000001"
36698 "Authoritative nameservers": {
36699 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
36700 "dns.resp.name": "cpp.philips.com",
36701 "dns.resp.type": "6",
36702 "dns.resp.class": "0x00000001",
36703 "dns.resp.ttl": "413",
36704 "dns.resp.len": "46",
36705 "dns.soa.mname": "ns1.ext.philips.com",
36706 "dns.soa.rname": "ddi-authority.philips.com",
36707 "dns.soa.serial_number": "387",
36708 "dns.soa.refresh_interval": "1200",
36709 "dns.soa.retry_interval": "300",
36710 "dns.soa.expire_limit": "1209600",
36711 "dns.soa.mininum_ttl": "3600"
36720 "_index": "packets-2017-10-26",
36721 "_type": "pcap_file",
36726 "frame.encap_type": "1",
36727 "frame.time": "Oct 20, 2017 06:33:22.950083000 PDT",
36728 "frame.offset_shift": "0.000000000",
36729 "frame.time_epoch": "1508506402.950083000",
36730 "frame.time_delta": "0.001175000",
36731 "frame.time_delta_displayed": "0.001175000",
36732 "frame.time_relative": "48690.544879000",
36733 "frame.number": "44870",
36735 "frame.cap_len": "79",
36736 "frame.marked": "0",
36737 "frame.ignored": "0",
36738 "frame.protocols": "eth:ethertype:ip:udp:dns",
36739 "frame.coloring_rule.name": "UDP",
36740 "frame.coloring_rule.string": "udp"
36743 "eth.dst": "b0:b9:8a:73:69:8e",
36745 "eth.dst_resolved": "Netgear_73:69:8e",
36746 "eth.addr": "b0:b9:8a:73:69:8e",
36747 "eth.addr_resolved": "Netgear_73:69:8e",
36751 "eth.src": "00:17:88:69:ee:e4",
36753 "eth.src_resolved": "PhilipsL_69:ee:e4",
36754 "eth.addr": "00:17:88:69:ee:e4",
36755 "eth.addr_resolved": "PhilipsL_69:ee:e4",
36759 "eth.type": "0x00000800"
36763 "ip.hdr_len": "20",
36764 "ip.dsfield": "0x00000000",
36765 "ip.dsfield_tree": {
36766 "ip.dsfield.dscp": "0",
36767 "ip.dsfield.ecn": "0"
36770 "ip.id": "0x0000bdc9",
36771 "ip.flags": "0x00000002",
36773 "ip.flags.rb": "0",
36774 "ip.flags.df": "1",
36777 "ip.frag_offset": "0",
36780 "ip.checksum": "0x0000faf0",
36781 "ip.checksum.status": "2",
36782 "ip.src": "192.168.0.160",
36783 "ip.addr": "192.168.0.160",
36784 "ip.src_host": "192.168.0.160",
36785 "ip.host": "192.168.0.160",
36786 "ip.dst": "192.168.0.1",
36787 "ip.addr": "192.168.0.1",
36788 "ip.dst_host": "192.168.0.1",
36789 "ip.host": "192.168.0.1",
36790 "Source GeoIP: Unknown": "",
36791 "Destination GeoIP: Unknown": ""
36794 "udp.srcport": "33646",
36795 "udp.dstport": "53",
36796 "udp.port": "33646",
36798 "udp.length": "45",
36799 "udp.checksum": "0x000057dc",
36800 "udp.checksum.status": "2",
36801 "udp.stream": "445"
36804 "dns.response_in": "44871",
36805 "dns.id": "0x000004f3",
36806 "dns.flags": "0x00000100",
36807 "dns.flags_tree": {
36808 "dns.flags.response": "0",
36809 "dns.flags.opcode": "0",
36810 "dns.flags.truncated": "0",
36811 "dns.flags.recdesired": "1",
36812 "dns.flags.z": "0",
36813 "dns.flags.checkdisable": "0"
36815 "dns.count.queries": "1",
36816 "dns.count.answers": "0",
36817 "dns.count.auth_rr": "0",
36818 "dns.count.add_rr": "0",
36820 "dcp.cpp.philips.com: type A, class IN": {
36821 "dns.qry.name": "dcp.cpp.philips.com",
36822 "dns.qry.name.len": "19",
36823 "dns.count.labels": "4",
36824 "dns.qry.type": "1",
36825 "dns.qry.class": "0x00000001"
36834 "_index": "packets-2017-10-26",
36835 "_type": "pcap_file",
36840 "frame.encap_type": "1",
36841 "frame.time": "Oct 20, 2017 06:33:22.951622000 PDT",
36842 "frame.offset_shift": "0.000000000",
36843 "frame.time_epoch": "1508506402.951622000",
36844 "frame.time_delta": "0.001539000",
36845 "frame.time_delta_displayed": "0.001539000",
36846 "frame.time_relative": "48690.546418000",
36847 "frame.number": "44871",
36848 "frame.len": "285",
36849 "frame.cap_len": "285",
36850 "frame.marked": "0",
36851 "frame.ignored": "0",
36852 "frame.protocols": "eth:ethertype:ip:udp:dns",
36853 "frame.coloring_rule.name": "UDP",
36854 "frame.coloring_rule.string": "udp"
36857 "eth.dst": "00:17:88:69:ee:e4",
36859 "eth.dst_resolved": "PhilipsL_69:ee:e4",
36860 "eth.addr": "00:17:88:69:ee:e4",
36861 "eth.addr_resolved": "PhilipsL_69:ee:e4",
36865 "eth.src": "b0:b9:8a:73:69:8e",
36867 "eth.src_resolved": "Netgear_73:69:8e",
36868 "eth.addr": "b0:b9:8a:73:69:8e",
36869 "eth.addr_resolved": "Netgear_73:69:8e",
36873 "eth.type": "0x00000800"
36877 "ip.hdr_len": "20",
36878 "ip.dsfield": "0x00000000",
36879 "ip.dsfield_tree": {
36880 "ip.dsfield.dscp": "0",
36881 "ip.dsfield.ecn": "0"
36884 "ip.id": "0x00005bc8",
36885 "ip.flags": "0x00000002",
36887 "ip.flags.rb": "0",
36888 "ip.flags.df": "1",
36891 "ip.frag_offset": "0",
36894 "ip.checksum": "0x00005c24",
36895 "ip.checksum.status": "2",
36896 "ip.src": "192.168.0.1",
36897 "ip.addr": "192.168.0.1",
36898 "ip.src_host": "192.168.0.1",
36899 "ip.host": "192.168.0.1",
36900 "ip.dst": "192.168.0.160",
36901 "ip.addr": "192.168.0.160",
36902 "ip.dst_host": "192.168.0.160",
36903 "ip.host": "192.168.0.160",
36904 "Source GeoIP: Unknown": "",
36905 "Destination GeoIP: Unknown": ""
36908 "udp.srcport": "53",
36909 "udp.dstport": "33646",
36911 "udp.port": "33646",
36912 "udp.length": "251",
36913 "udp.checksum": "0x000082fe",
36914 "udp.checksum.status": "2",
36915 "udp.stream": "445"
36918 "dns.response_to": "44870",
36919 "dns.time": "0.001539000",
36920 "dns.id": "0x000004f3",
36921 "dns.flags": "0x00008180",
36922 "dns.flags_tree": {
36923 "dns.flags.response": "1",
36924 "dns.flags.opcode": "0",
36925 "dns.flags.authoritative": "0",
36926 "dns.flags.truncated": "0",
36927 "dns.flags.recdesired": "1",
36928 "dns.flags.recavail": "1",
36929 "dns.flags.z": "0",
36930 "dns.flags.authenticated": "0",
36931 "dns.flags.checkdisable": "0",
36932 "dns.flags.rcode": "0"
36934 "dns.count.queries": "1",
36935 "dns.count.answers": "1",
36936 "dns.count.auth_rr": "3",
36937 "dns.count.add_rr": "6",
36939 "dcp.cpp.philips.com: type A, class IN": {
36940 "dns.qry.name": "dcp.cpp.philips.com",
36941 "dns.qry.name.len": "19",
36942 "dns.count.labels": "4",
36943 "dns.qry.type": "1",
36944 "dns.qry.class": "0x00000001"
36948 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
36949 "dns.resp.name": "dcp.cpp.philips.com",
36950 "dns.resp.type": "1",
36951 "dns.resp.class": "0x00000001",
36952 "dns.resp.ttl": "413",
36953 "dns.resp.len": "4",
36954 "dns.a": "5.79.62.93"
36957 "Authoritative nameservers": {
36958 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
36959 "dns.resp.name": "cpp.philips.com",
36960 "dns.resp.type": "2",
36961 "dns.resp.class": "0x00000001",
36962 "dns.resp.ttl": "2799",
36963 "dns.resp.len": "10",
36964 "dns.ns": "ns1.ext.philips.com"
36966 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
36967 "dns.resp.name": "cpp.philips.com",
36968 "dns.resp.type": "2",
36969 "dns.resp.class": "0x00000001",
36970 "dns.resp.ttl": "2799",
36971 "dns.resp.len": "6",
36972 "dns.ns": "ns3.ext.philips.com"
36974 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
36975 "dns.resp.name": "cpp.philips.com",
36976 "dns.resp.type": "2",
36977 "dns.resp.class": "0x00000001",
36978 "dns.resp.ttl": "2799",
36979 "dns.resp.len": "6",
36980 "dns.ns": "ns2.ext.philips.com"
36983 "Additional records": {
36984 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
36985 "dns.resp.name": "ns1.ext.philips.com",
36986 "dns.resp.type": "1",
36987 "dns.resp.class": "0x00000001",
36988 "dns.resp.ttl": "157451",
36989 "dns.resp.len": "4",
36990 "dns.a": "57.67.40.20"
36992 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
36993 "dns.resp.name": "ns2.ext.philips.com",
36994 "dns.resp.type": "1",
36995 "dns.resp.class": "0x00000001",
36996 "dns.resp.ttl": "128374",
36997 "dns.resp.len": "4",
36998 "dns.a": "57.77.21.76"
37000 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
37001 "dns.resp.name": "ns3.ext.philips.com",
37002 "dns.resp.type": "1",
37003 "dns.resp.class": "0x00000001",
37004 "dns.resp.ttl": "128374",
37005 "dns.resp.len": "4",
37006 "dns.a": "57.73.36.68"
37008 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
37009 "dns.resp.name": "ns1.ext.philips.com",
37010 "dns.resp.type": "28",
37011 "dns.resp.class": "0x00000001",
37012 "dns.resp.ttl": "146629",
37013 "dns.resp.len": "16",
37014 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
37016 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
37017 "dns.resp.name": "ns2.ext.philips.com",
37018 "dns.resp.type": "28",
37019 "dns.resp.class": "0x00000001",
37020 "dns.resp.ttl": "18351",
37021 "dns.resp.len": "16",
37022 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
37024 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
37025 "dns.resp.name": "ns3.ext.philips.com",
37026 "dns.resp.type": "28",
37027 "dns.resp.class": "0x00000001",
37028 "dns.resp.ttl": "18351",
37029 "dns.resp.len": "16",
37030 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
37039 "_index": "packets-2017-10-26",
37040 "_type": "pcap_file",
37045 "frame.encap_type": "1",
37046 "frame.time": "Oct 20, 2017 06:33:23.416488000 PDT",
37047 "frame.offset_shift": "0.000000000",
37048 "frame.time_epoch": "1508506403.416488000",
37049 "frame.time_delta": "0.000964000",
37050 "frame.time_delta_displayed": "0.464866000",
37051 "frame.time_relative": "48691.011284000",
37052 "frame.number": "44887",
37054 "frame.cap_len": "79",
37055 "frame.marked": "0",
37056 "frame.ignored": "0",
37057 "frame.protocols": "eth:ethertype:ip:udp:dns",
37058 "frame.coloring_rule.name": "UDP",
37059 "frame.coloring_rule.string": "udp"
37062 "eth.dst": "b0:b9:8a:73:69:8e",
37064 "eth.dst_resolved": "Netgear_73:69:8e",
37065 "eth.addr": "b0:b9:8a:73:69:8e",
37066 "eth.addr_resolved": "Netgear_73:69:8e",
37070 "eth.src": "00:17:88:69:ee:e4",
37072 "eth.src_resolved": "PhilipsL_69:ee:e4",
37073 "eth.addr": "00:17:88:69:ee:e4",
37074 "eth.addr_resolved": "PhilipsL_69:ee:e4",
37078 "eth.type": "0x00000800"
37082 "ip.hdr_len": "20",
37083 "ip.dsfield": "0x00000000",
37084 "ip.dsfield_tree": {
37085 "ip.dsfield.dscp": "0",
37086 "ip.dsfield.ecn": "0"
37089 "ip.id": "0x0000bddb",
37090 "ip.flags": "0x00000002",
37092 "ip.flags.rb": "0",
37093 "ip.flags.df": "1",
37096 "ip.frag_offset": "0",
37099 "ip.checksum": "0x0000fade",
37100 "ip.checksum.status": "2",
37101 "ip.src": "192.168.0.160",
37102 "ip.addr": "192.168.0.160",
37103 "ip.src_host": "192.168.0.160",
37104 "ip.host": "192.168.0.160",
37105 "ip.dst": "192.168.0.1",
37106 "ip.addr": "192.168.0.1",
37107 "ip.dst_host": "192.168.0.1",
37108 "ip.host": "192.168.0.1",
37109 "Source GeoIP: Unknown": "",
37110 "Destination GeoIP: Unknown": ""
37113 "udp.srcport": "59813",
37114 "udp.dstport": "53",
37115 "udp.port": "59813",
37117 "udp.length": "45",
37118 "udp.checksum": "0x0000d6a3",
37119 "udp.checksum.status": "2",
37120 "udp.stream": "446"
37123 "dns.response_in": "44888",
37124 "dns.id": "0x000004f4",
37125 "dns.flags": "0x00000100",
37126 "dns.flags_tree": {
37127 "dns.flags.response": "0",
37128 "dns.flags.opcode": "0",
37129 "dns.flags.truncated": "0",
37130 "dns.flags.recdesired": "1",
37131 "dns.flags.z": "0",
37132 "dns.flags.checkdisable": "0"
37134 "dns.count.queries": "1",
37135 "dns.count.answers": "0",
37136 "dns.count.auth_rr": "0",
37137 "dns.count.add_rr": "0",
37139 "dcp.cpp.philips.com: type AAAA, class IN": {
37140 "dns.qry.name": "dcp.cpp.philips.com",
37141 "dns.qry.name.len": "19",
37142 "dns.count.labels": "4",
37143 "dns.qry.type": "28",
37144 "dns.qry.class": "0x00000001"
37153 "_index": "packets-2017-10-26",
37154 "_type": "pcap_file",
37159 "frame.encap_type": "1",
37160 "frame.time": "Oct 20, 2017 06:33:23.416961000 PDT",
37161 "frame.offset_shift": "0.000000000",
37162 "frame.time_epoch": "1508506403.416961000",
37163 "frame.time_delta": "0.000473000",
37164 "frame.time_delta_displayed": "0.000473000",
37165 "frame.time_relative": "48691.011757000",
37166 "frame.number": "44888",
37168 "frame.cap_len": "79",
37169 "frame.marked": "0",
37170 "frame.ignored": "0",
37171 "frame.protocols": "eth:ethertype:ip:udp:dns",
37172 "frame.coloring_rule.name": "UDP",
37173 "frame.coloring_rule.string": "udp"
37176 "eth.dst": "00:17:88:69:ee:e4",
37178 "eth.dst_resolved": "PhilipsL_69:ee:e4",
37179 "eth.addr": "00:17:88:69:ee:e4",
37180 "eth.addr_resolved": "PhilipsL_69:ee:e4",
37184 "eth.src": "b0:b9:8a:73:69:8e",
37186 "eth.src_resolved": "Netgear_73:69:8e",
37187 "eth.addr": "b0:b9:8a:73:69:8e",
37188 "eth.addr_resolved": "Netgear_73:69:8e",
37192 "eth.type": "0x00000800"
37196 "ip.hdr_len": "20",
37197 "ip.dsfield": "0x00000000",
37198 "ip.dsfield_tree": {
37199 "ip.dsfield.dscp": "0",
37200 "ip.dsfield.ecn": "0"
37203 "ip.id": "0x00005bce",
37204 "ip.flags": "0x00000002",
37206 "ip.flags.rb": "0",
37207 "ip.flags.df": "1",
37210 "ip.frag_offset": "0",
37213 "ip.checksum": "0x00005cec",
37214 "ip.checksum.status": "2",
37215 "ip.src": "192.168.0.1",
37216 "ip.addr": "192.168.0.1",
37217 "ip.src_host": "192.168.0.1",
37218 "ip.host": "192.168.0.1",
37219 "ip.dst": "192.168.0.160",
37220 "ip.addr": "192.168.0.160",
37221 "ip.dst_host": "192.168.0.160",
37222 "ip.host": "192.168.0.160",
37223 "Source GeoIP: Unknown": "",
37224 "Destination GeoIP: Unknown": ""
37227 "udp.srcport": "53",
37228 "udp.dstport": "59813",
37230 "udp.port": "59813",
37231 "udp.length": "45",
37232 "udp.checksum": "0x00008230",
37233 "udp.checksum.status": "2",
37234 "udp.stream": "446"
37237 "dns.response_to": "44887",
37238 "dns.time": "0.000473000",
37239 "dns.id": "0x000004f4",
37240 "dns.flags": "0x00008180",
37241 "dns.flags_tree": {
37242 "dns.flags.response": "1",
37243 "dns.flags.opcode": "0",
37244 "dns.flags.authoritative": "0",
37245 "dns.flags.truncated": "0",
37246 "dns.flags.recdesired": "1",
37247 "dns.flags.recavail": "1",
37248 "dns.flags.z": "0",
37249 "dns.flags.authenticated": "0",
37250 "dns.flags.checkdisable": "0",
37251 "dns.flags.rcode": "0"
37253 "dns.count.queries": "1",
37254 "dns.count.answers": "0",
37255 "dns.count.auth_rr": "0",
37256 "dns.count.add_rr": "0",
37258 "dcp.cpp.philips.com: type AAAA, class IN": {
37259 "dns.qry.name": "dcp.cpp.philips.com",
37260 "dns.qry.name.len": "19",
37261 "dns.count.labels": "4",
37262 "dns.qry.type": "28",
37263 "dns.qry.class": "0x00000001"
37272 "_index": "packets-2017-10-26",
37273 "_type": "pcap_file",
37278 "frame.encap_type": "1",
37279 "frame.time": "Oct 20, 2017 06:33:23.417890000 PDT",
37280 "frame.offset_shift": "0.000000000",
37281 "frame.time_epoch": "1508506403.417890000",
37282 "frame.time_delta": "0.000929000",
37283 "frame.time_delta_displayed": "0.000929000",
37284 "frame.time_relative": "48691.012686000",
37285 "frame.number": "44889",
37287 "frame.cap_len": "79",
37288 "frame.marked": "0",
37289 "frame.ignored": "0",
37290 "frame.protocols": "eth:ethertype:ip:udp:dns",
37291 "frame.coloring_rule.name": "UDP",
37292 "frame.coloring_rule.string": "udp"
37295 "eth.dst": "b0:b9:8a:73:69:8e",
37297 "eth.dst_resolved": "Netgear_73:69:8e",
37298 "eth.addr": "b0:b9:8a:73:69:8e",
37299 "eth.addr_resolved": "Netgear_73:69:8e",
37303 "eth.src": "00:17:88:69:ee:e4",
37305 "eth.src_resolved": "PhilipsL_69:ee:e4",
37306 "eth.addr": "00:17:88:69:ee:e4",
37307 "eth.addr_resolved": "PhilipsL_69:ee:e4",
37311 "eth.type": "0x00000800"
37315 "ip.hdr_len": "20",
37316 "ip.dsfield": "0x00000000",
37317 "ip.dsfield_tree": {
37318 "ip.dsfield.dscp": "0",
37319 "ip.dsfield.ecn": "0"
37322 "ip.id": "0x0000bddc",
37323 "ip.flags": "0x00000002",
37325 "ip.flags.rb": "0",
37326 "ip.flags.df": "1",
37329 "ip.frag_offset": "0",
37332 "ip.checksum": "0x0000fadd",
37333 "ip.checksum.status": "2",
37334 "ip.src": "192.168.0.160",
37335 "ip.addr": "192.168.0.160",
37336 "ip.src_host": "192.168.0.160",
37337 "ip.host": "192.168.0.160",
37338 "ip.dst": "192.168.0.1",
37339 "ip.addr": "192.168.0.1",
37340 "ip.dst_host": "192.168.0.1",
37341 "ip.host": "192.168.0.1",
37342 "Source GeoIP: Unknown": "",
37343 "Destination GeoIP: Unknown": ""
37346 "udp.srcport": "44681",
37347 "udp.dstport": "53",
37348 "udp.port": "44681",
37350 "udp.length": "45",
37351 "udp.checksum": "0x00002cbf",
37352 "udp.checksum.status": "2",
37353 "udp.stream": "447"
37356 "dns.response_in": "44890",
37357 "dns.id": "0x000004f5",
37358 "dns.flags": "0x00000100",
37359 "dns.flags_tree": {
37360 "dns.flags.response": "0",
37361 "dns.flags.opcode": "0",
37362 "dns.flags.truncated": "0",
37363 "dns.flags.recdesired": "1",
37364 "dns.flags.z": "0",
37365 "dns.flags.checkdisable": "0"
37367 "dns.count.queries": "1",
37368 "dns.count.answers": "0",
37369 "dns.count.auth_rr": "0",
37370 "dns.count.add_rr": "0",
37372 "dcp.cpp.philips.com: type A, class IN": {
37373 "dns.qry.name": "dcp.cpp.philips.com",
37374 "dns.qry.name.len": "19",
37375 "dns.count.labels": "4",
37376 "dns.qry.type": "1",
37377 "dns.qry.class": "0x00000001"
37386 "_index": "packets-2017-10-26",
37387 "_type": "pcap_file",
37392 "frame.encap_type": "1",
37393 "frame.time": "Oct 20, 2017 06:33:23.418452000 PDT",
37394 "frame.offset_shift": "0.000000000",
37395 "frame.time_epoch": "1508506403.418452000",
37396 "frame.time_delta": "0.000562000",
37397 "frame.time_delta_displayed": "0.000562000",
37398 "frame.time_relative": "48691.013248000",
37399 "frame.number": "44890",
37401 "frame.cap_len": "95",
37402 "frame.marked": "0",
37403 "frame.ignored": "0",
37404 "frame.protocols": "eth:ethertype:ip:udp:dns",
37405 "frame.coloring_rule.name": "UDP",
37406 "frame.coloring_rule.string": "udp"
37409 "eth.dst": "00:17:88:69:ee:e4",
37411 "eth.dst_resolved": "PhilipsL_69:ee:e4",
37412 "eth.addr": "00:17:88:69:ee:e4",
37413 "eth.addr_resolved": "PhilipsL_69:ee:e4",
37417 "eth.src": "b0:b9:8a:73:69:8e",
37419 "eth.src_resolved": "Netgear_73:69:8e",
37420 "eth.addr": "b0:b9:8a:73:69:8e",
37421 "eth.addr_resolved": "Netgear_73:69:8e",
37425 "eth.type": "0x00000800"
37429 "ip.hdr_len": "20",
37430 "ip.dsfield": "0x00000000",
37431 "ip.dsfield_tree": {
37432 "ip.dsfield.dscp": "0",
37433 "ip.dsfield.ecn": "0"
37436 "ip.id": "0x00005bcf",
37437 "ip.flags": "0x00000002",
37439 "ip.flags.rb": "0",
37440 "ip.flags.df": "1",
37443 "ip.frag_offset": "0",
37446 "ip.checksum": "0x00005cdb",
37447 "ip.checksum.status": "2",
37448 "ip.src": "192.168.0.1",
37449 "ip.addr": "192.168.0.1",
37450 "ip.src_host": "192.168.0.1",
37451 "ip.host": "192.168.0.1",
37452 "ip.dst": "192.168.0.160",
37453 "ip.addr": "192.168.0.160",
37454 "ip.dst_host": "192.168.0.160",
37455 "ip.host": "192.168.0.160",
37456 "Source GeoIP: Unknown": "",
37457 "Destination GeoIP: Unknown": ""
37460 "udp.srcport": "53",
37461 "udp.dstport": "44681",
37463 "udp.port": "44681",
37464 "udp.length": "61",
37465 "udp.checksum": "0x00008240",
37466 "udp.checksum.status": "2",
37467 "udp.stream": "447"
37470 "dns.response_to": "44889",
37471 "dns.time": "0.000562000",
37472 "dns.id": "0x000004f5",
37473 "dns.flags": "0x00008180",
37474 "dns.flags_tree": {
37475 "dns.flags.response": "1",
37476 "dns.flags.opcode": "0",
37477 "dns.flags.authoritative": "0",
37478 "dns.flags.truncated": "0",
37479 "dns.flags.recdesired": "1",
37480 "dns.flags.recavail": "1",
37481 "dns.flags.z": "0",
37482 "dns.flags.authenticated": "0",
37483 "dns.flags.checkdisable": "0",
37484 "dns.flags.rcode": "0"
37486 "dns.count.queries": "1",
37487 "dns.count.answers": "1",
37488 "dns.count.auth_rr": "0",
37489 "dns.count.add_rr": "0",
37491 "dcp.cpp.philips.com: type A, class IN": {
37492 "dns.qry.name": "dcp.cpp.philips.com",
37493 "dns.qry.name.len": "19",
37494 "dns.count.labels": "4",
37495 "dns.qry.type": "1",
37496 "dns.qry.class": "0x00000001"
37500 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
37501 "dns.resp.name": "dcp.cpp.philips.com",
37502 "dns.resp.type": "1",
37503 "dns.resp.class": "0x00000001",
37504 "dns.resp.ttl": "412",
37505 "dns.resp.len": "4",
37506 "dns.a": "5.79.62.93"
37515 "_index": "packets-2017-10-26",
37516 "_type": "pcap_file",
37521 "frame.encap_type": "1",
37522 "frame.time": "Oct 20, 2017 06:37:53.397275000 PDT",
37523 "frame.offset_shift": "0.000000000",
37524 "frame.time_epoch": "1508506673.397275000",
37525 "frame.time_delta": "0.977714000",
37526 "frame.time_delta_displayed": "269.978823000",
37527 "frame.time_relative": "48960.992071000",
37528 "frame.number": "45164",
37530 "frame.cap_len": "76",
37531 "frame.marked": "0",
37532 "frame.ignored": "0",
37533 "frame.protocols": "eth:ethertype:ip:udp:dns",
37534 "frame.coloring_rule.name": "UDP",
37535 "frame.coloring_rule.string": "udp"
37538 "eth.dst": "b0:b9:8a:73:69:8e",
37540 "eth.dst_resolved": "Netgear_73:69:8e",
37541 "eth.addr": "b0:b9:8a:73:69:8e",
37542 "eth.addr_resolved": "Netgear_73:69:8e",
37546 "eth.src": "00:17:88:69:ee:e4",
37548 "eth.src_resolved": "PhilipsL_69:ee:e4",
37549 "eth.addr": "00:17:88:69:ee:e4",
37550 "eth.addr_resolved": "PhilipsL_69:ee:e4",
37554 "eth.type": "0x00000800"
37558 "ip.hdr_len": "20",
37559 "ip.dsfield": "0x00000000",
37560 "ip.dsfield_tree": {
37561 "ip.dsfield.dscp": "0",
37562 "ip.dsfield.ecn": "0"
37565 "ip.id": "0x0000f463",
37566 "ip.flags": "0x00000002",
37568 "ip.flags.rb": "0",
37569 "ip.flags.df": "1",
37572 "ip.frag_offset": "0",
37575 "ip.checksum": "0x0000c459",
37576 "ip.checksum.status": "2",
37577 "ip.src": "192.168.0.160",
37578 "ip.addr": "192.168.0.160",
37579 "ip.src_host": "192.168.0.160",
37580 "ip.host": "192.168.0.160",
37581 "ip.dst": "192.168.0.1",
37582 "ip.addr": "192.168.0.1",
37583 "ip.dst_host": "192.168.0.1",
37584 "ip.host": "192.168.0.1",
37585 "Source GeoIP: Unknown": "",
37586 "Destination GeoIP: Unknown": ""
37589 "udp.srcport": "53189",
37590 "udp.dstport": "53",
37591 "udp.port": "53189",
37593 "udp.length": "42",
37594 "udp.checksum": "0x000088fc",
37595 "udp.checksum.status": "2",
37596 "udp.stream": "449"
37599 "dns.response_in": "45165",
37600 "dns.id": "0x000004f6",
37601 "dns.flags": "0x00000100",
37602 "dns.flags_tree": {
37603 "dns.flags.response": "0",
37604 "dns.flags.opcode": "0",
37605 "dns.flags.truncated": "0",
37606 "dns.flags.recdesired": "1",
37607 "dns.flags.z": "0",
37608 "dns.flags.checkdisable": "0"
37610 "dns.count.queries": "1",
37611 "dns.count.answers": "0",
37612 "dns.count.auth_rr": "0",
37613 "dns.count.add_rr": "0",
37615 "www2.meethue.com: type A, class IN": {
37616 "dns.qry.name": "www2.meethue.com",
37617 "dns.qry.name.len": "16",
37618 "dns.count.labels": "3",
37619 "dns.qry.type": "1",
37620 "dns.qry.class": "0x00000001"
37629 "_index": "packets-2017-10-26",
37630 "_type": "pcap_file",
37635 "frame.encap_type": "1",
37636 "frame.time": "Oct 20, 2017 06:37:53.407078000 PDT",
37637 "frame.offset_shift": "0.000000000",
37638 "frame.time_epoch": "1508506673.407078000",
37639 "frame.time_delta": "0.009803000",
37640 "frame.time_delta_displayed": "0.009803000",
37641 "frame.time_relative": "48961.001874000",
37642 "frame.number": "45165",
37643 "frame.len": "513",
37644 "frame.cap_len": "513",
37645 "frame.marked": "0",
37646 "frame.ignored": "0",
37647 "frame.protocols": "eth:ethertype:ip:udp:dns",
37648 "frame.coloring_rule.name": "UDP",
37649 "frame.coloring_rule.string": "udp"
37652 "eth.dst": "00:17:88:69:ee:e4",
37654 "eth.dst_resolved": "PhilipsL_69:ee:e4",
37655 "eth.addr": "00:17:88:69:ee:e4",
37656 "eth.addr_resolved": "PhilipsL_69:ee:e4",
37660 "eth.src": "b0:b9:8a:73:69:8e",
37662 "eth.src_resolved": "Netgear_73:69:8e",
37663 "eth.addr": "b0:b9:8a:73:69:8e",
37664 "eth.addr_resolved": "Netgear_73:69:8e",
37668 "eth.type": "0x00000800"
37672 "ip.hdr_len": "20",
37673 "ip.dsfield": "0x00000000",
37674 "ip.dsfield_tree": {
37675 "ip.dsfield.dscp": "0",
37676 "ip.dsfield.ecn": "0"
37679 "ip.id": "0x0000adc8",
37680 "ip.flags": "0x00000002",
37682 "ip.flags.rb": "0",
37683 "ip.flags.df": "1",
37686 "ip.frag_offset": "0",
37689 "ip.checksum": "0x00000940",
37690 "ip.checksum.status": "2",
37691 "ip.src": "192.168.0.1",
37692 "ip.addr": "192.168.0.1",
37693 "ip.src_host": "192.168.0.1",
37694 "ip.host": "192.168.0.1",
37695 "ip.dst": "192.168.0.160",
37696 "ip.addr": "192.168.0.160",
37697 "ip.dst_host": "192.168.0.160",
37698 "ip.host": "192.168.0.160",
37699 "Source GeoIP: Unknown": "",
37700 "Destination GeoIP: Unknown": ""
37703 "udp.srcport": "53",
37704 "udp.dstport": "53189",
37706 "udp.port": "53189",
37707 "udp.length": "479",
37708 "udp.checksum": "0x000083e2",
37709 "udp.checksum.status": "2",
37710 "udp.stream": "449"
37713 "dns.response_to": "45164",
37714 "dns.time": "0.009803000",
37715 "dns.id": "0x000004f6",
37716 "dns.flags": "0x00008180",
37717 "dns.flags_tree": {
37718 "dns.flags.response": "1",
37719 "dns.flags.opcode": "0",
37720 "dns.flags.authoritative": "0",
37721 "dns.flags.truncated": "0",
37722 "dns.flags.recdesired": "1",
37723 "dns.flags.recavail": "1",
37724 "dns.flags.z": "0",
37725 "dns.flags.authenticated": "0",
37726 "dns.flags.checkdisable": "0",
37727 "dns.flags.rcode": "0"
37729 "dns.count.queries": "1",
37730 "dns.count.answers": "4",
37731 "dns.count.auth_rr": "9",
37732 "dns.count.add_rr": "9",
37734 "www2.meethue.com: type A, class IN": {
37735 "dns.qry.name": "www2.meethue.com",
37736 "dns.qry.name.len": "16",
37737 "dns.count.labels": "3",
37738 "dns.qry.type": "1",
37739 "dns.qry.class": "0x00000001"
37743 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
37744 "dns.resp.name": "www2.meethue.com",
37745 "dns.resp.type": "5",
37746 "dns.resp.class": "0x00000001",
37747 "dns.resp.ttl": "127",
37748 "dns.resp.len": "41",
37749 "dns.cname": "brands.lighting.philips.com.edgekey.net"
37751 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
37752 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
37753 "dns.resp.type": "5",
37754 "dns.resp.class": "0x00000001",
37755 "dns.resp.ttl": "7919",
37756 "dns.resp.len": "22",
37757 "dns.cname": "e15361.b.akamaiedge.net"
37759 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
37760 "dns.resp.name": "e15361.b.akamaiedge.net",
37761 "dns.resp.type": "1",
37762 "dns.resp.class": "0x00000001",
37763 "dns.resp.ttl": "20",
37764 "dns.resp.len": "4",
37765 "dns.a": "173.223.52.112"
37767 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
37768 "dns.resp.name": "e15361.b.akamaiedge.net",
37769 "dns.resp.type": "1",
37770 "dns.resp.class": "0x00000001",
37771 "dns.resp.ttl": "20",
37772 "dns.resp.len": "4",
37773 "dns.a": "173.223.52.125"
37776 "Authoritative nameservers": {
37777 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
37778 "dns.resp.name": "b.akamaiedge.net",
37779 "dns.resp.type": "2",
37780 "dns.resp.class": "0x00000001",
37781 "dns.resp.ttl": "1900",
37782 "dns.resp.len": "6",
37783 "dns.ns": "n6b.akamaiedge.net"
37785 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
37786 "dns.resp.name": "b.akamaiedge.net",
37787 "dns.resp.type": "2",
37788 "dns.resp.class": "0x00000001",
37789 "dns.resp.ttl": "1900",
37790 "dns.resp.len": "6",
37791 "dns.ns": "n7b.akamaiedge.net"
37793 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
37794 "dns.resp.name": "b.akamaiedge.net",
37795 "dns.resp.type": "2",
37796 "dns.resp.class": "0x00000001",
37797 "dns.resp.ttl": "1900",
37798 "dns.resp.len": "6",
37799 "dns.ns": "n1b.akamaiedge.net"
37801 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
37802 "dns.resp.name": "b.akamaiedge.net",
37803 "dns.resp.type": "2",
37804 "dns.resp.class": "0x00000001",
37805 "dns.resp.ttl": "1900",
37806 "dns.resp.len": "6",
37807 "dns.ns": "a0b.akamaiedge.net"
37809 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
37810 "dns.resp.name": "b.akamaiedge.net",
37811 "dns.resp.type": "2",
37812 "dns.resp.class": "0x00000001",
37813 "dns.resp.ttl": "1900",
37814 "dns.resp.len": "6",
37815 "dns.ns": "n0b.akamaiedge.net"
37817 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
37818 "dns.resp.name": "b.akamaiedge.net",
37819 "dns.resp.type": "2",
37820 "dns.resp.class": "0x00000001",
37821 "dns.resp.ttl": "1900",
37822 "dns.resp.len": "6",
37823 "dns.ns": "n3b.akamaiedge.net"
37825 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
37826 "dns.resp.name": "b.akamaiedge.net",
37827 "dns.resp.type": "2",
37828 "dns.resp.class": "0x00000001",
37829 "dns.resp.ttl": "1900",
37830 "dns.resp.len": "6",
37831 "dns.ns": "n4b.akamaiedge.net"
37833 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
37834 "dns.resp.name": "b.akamaiedge.net",
37835 "dns.resp.type": "2",
37836 "dns.resp.class": "0x00000001",
37837 "dns.resp.ttl": "1900",
37838 "dns.resp.len": "6",
37839 "dns.ns": "n2b.akamaiedge.net"
37841 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
37842 "dns.resp.name": "b.akamaiedge.net",
37843 "dns.resp.type": "2",
37844 "dns.resp.class": "0x00000001",
37845 "dns.resp.ttl": "1900",
37846 "dns.resp.len": "6",
37847 "dns.ns": "n5b.akamaiedge.net"
37850 "Additional records": {
37851 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
37852 "dns.resp.name": "n0b.akamaiedge.net",
37853 "dns.resp.type": "1",
37854 "dns.resp.class": "0x00000001",
37855 "dns.resp.ttl": "3256",
37856 "dns.resp.len": "4",
37857 "dns.a": "88.221.81.192"
37859 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
37860 "dns.resp.name": "n1b.akamaiedge.net",
37861 "dns.resp.type": "1",
37862 "dns.resp.class": "0x00000001",
37863 "dns.resp.ttl": "1920",
37864 "dns.resp.len": "4",
37865 "dns.a": "173.223.52.109"
37867 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
37868 "dns.resp.name": "n2b.akamaiedge.net",
37869 "dns.resp.type": "1",
37870 "dns.resp.class": "0x00000001",
37871 "dns.resp.ttl": "2430",
37872 "dns.resp.len": "4",
37873 "dns.a": "173.223.52.109"
37875 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.192": {
37876 "dns.resp.name": "n3b.akamaiedge.net",
37877 "dns.resp.type": "1",
37878 "dns.resp.class": "0x00000001",
37879 "dns.resp.ttl": "2637",
37880 "dns.resp.len": "4",
37881 "dns.a": "96.17.70.192"
37883 "n4b.akamaiedge.net: type A, class IN, addr 204.2.166.157": {
37884 "dns.resp.name": "n4b.akamaiedge.net",
37885 "dns.resp.type": "1",
37886 "dns.resp.class": "0x00000001",
37887 "dns.resp.ttl": "1533",
37888 "dns.resp.len": "4",
37889 "dns.a": "204.2.166.157"
37891 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
37892 "dns.resp.name": "n5b.akamaiedge.net",
37893 "dns.resp.type": "1",
37894 "dns.resp.class": "0x00000001",
37895 "dns.resp.ttl": "3274",
37896 "dns.resp.len": "4",
37897 "dns.a": "204.2.166.158"
37899 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
37900 "dns.resp.name": "n6b.akamaiedge.net",
37901 "dns.resp.type": "1",
37902 "dns.resp.class": "0x00000001",
37903 "dns.resp.ttl": "3115",
37904 "dns.resp.len": "4",
37905 "dns.a": "96.17.70.188"
37907 "n7b.akamaiedge.net: type A, class IN, addr 165.254.157.167": {
37908 "dns.resp.name": "n7b.akamaiedge.net",
37909 "dns.resp.type": "1",
37910 "dns.resp.class": "0x00000001",
37911 "dns.resp.ttl": "3134",
37912 "dns.resp.len": "4",
37913 "dns.a": "165.254.157.167"
37915 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
37916 "dns.resp.name": "a0b.akamaiedge.net",
37917 "dns.resp.type": "28",
37918 "dns.resp.class": "0x00000001",
37919 "dns.resp.ttl": "2929",
37920 "dns.resp.len": "16",
37921 "dns.aaaa": "2600:1480:e800::c0"
37930 "_index": "packets-2017-10-26",
37931 "_type": "pcap_file",
37936 "frame.encap_type": "1",
37937 "frame.time": "Oct 20, 2017 06:52:53.416716000 PDT",
37938 "frame.offset_shift": "0.000000000",
37939 "frame.time_epoch": "1508507573.416716000",
37940 "frame.time_delta": "1.378707000",
37941 "frame.time_delta_displayed": "900.009638000",
37942 "frame.time_relative": "49861.011512000",
37943 "frame.number": "45902",
37945 "frame.cap_len": "76",
37946 "frame.marked": "0",
37947 "frame.ignored": "0",
37948 "frame.protocols": "eth:ethertype:ip:udp:dns",
37949 "frame.coloring_rule.name": "UDP",
37950 "frame.coloring_rule.string": "udp"
37953 "eth.dst": "b0:b9:8a:73:69:8e",
37955 "eth.dst_resolved": "Netgear_73:69:8e",
37956 "eth.addr": "b0:b9:8a:73:69:8e",
37957 "eth.addr_resolved": "Netgear_73:69:8e",
37961 "eth.src": "00:17:88:69:ee:e4",
37963 "eth.src_resolved": "PhilipsL_69:ee:e4",
37964 "eth.addr": "00:17:88:69:ee:e4",
37965 "eth.addr_resolved": "PhilipsL_69:ee:e4",
37969 "eth.type": "0x00000800"
37973 "ip.hdr_len": "20",
37974 "ip.dsfield": "0x00000000",
37975 "ip.dsfield_tree": {
37976 "ip.dsfield.dscp": "0",
37977 "ip.dsfield.ecn": "0"
37980 "ip.id": "0x000028c2",
37981 "ip.flags": "0x00000002",
37983 "ip.flags.rb": "0",
37984 "ip.flags.df": "1",
37987 "ip.frag_offset": "0",
37990 "ip.checksum": "0x00008ffb",
37991 "ip.checksum.status": "2",
37992 "ip.src": "192.168.0.160",
37993 "ip.addr": "192.168.0.160",
37994 "ip.src_host": "192.168.0.160",
37995 "ip.host": "192.168.0.160",
37996 "ip.dst": "192.168.0.1",
37997 "ip.addr": "192.168.0.1",
37998 "ip.dst_host": "192.168.0.1",
37999 "ip.host": "192.168.0.1",
38000 "Source GeoIP: Unknown": "",
38001 "Destination GeoIP: Unknown": ""
38004 "udp.srcport": "53544",
38005 "udp.dstport": "53",
38006 "udp.port": "53544",
38008 "udp.length": "42",
38009 "udp.checksum": "0x00008798",
38010 "udp.checksum.status": "2",
38011 "udp.stream": "454"
38014 "dns.response_in": "45903",
38015 "dns.id": "0x000004f7",
38016 "dns.flags": "0x00000100",
38017 "dns.flags_tree": {
38018 "dns.flags.response": "0",
38019 "dns.flags.opcode": "0",
38020 "dns.flags.truncated": "0",
38021 "dns.flags.recdesired": "1",
38022 "dns.flags.z": "0",
38023 "dns.flags.checkdisable": "0"
38025 "dns.count.queries": "1",
38026 "dns.count.answers": "0",
38027 "dns.count.auth_rr": "0",
38028 "dns.count.add_rr": "0",
38030 "www2.meethue.com: type A, class IN": {
38031 "dns.qry.name": "www2.meethue.com",
38032 "dns.qry.name.len": "16",
38033 "dns.count.labels": "3",
38034 "dns.qry.type": "1",
38035 "dns.qry.class": "0x00000001"
38044 "_index": "packets-2017-10-26",
38045 "_type": "pcap_file",
38050 "frame.encap_type": "1",
38051 "frame.time": "Oct 20, 2017 06:52:53.422982000 PDT",
38052 "frame.offset_shift": "0.000000000",
38053 "frame.time_epoch": "1508507573.422982000",
38054 "frame.time_delta": "0.006266000",
38055 "frame.time_delta_displayed": "0.006266000",
38056 "frame.time_relative": "49861.017778000",
38057 "frame.number": "45903",
38058 "frame.len": "513",
38059 "frame.cap_len": "513",
38060 "frame.marked": "0",
38061 "frame.ignored": "0",
38062 "frame.protocols": "eth:ethertype:ip:udp:dns",
38063 "frame.coloring_rule.name": "UDP",
38064 "frame.coloring_rule.string": "udp"
38067 "eth.dst": "00:17:88:69:ee:e4",
38069 "eth.dst_resolved": "PhilipsL_69:ee:e4",
38070 "eth.addr": "00:17:88:69:ee:e4",
38071 "eth.addr_resolved": "PhilipsL_69:ee:e4",
38075 "eth.src": "b0:b9:8a:73:69:8e",
38077 "eth.src_resolved": "Netgear_73:69:8e",
38078 "eth.addr": "b0:b9:8a:73:69:8e",
38079 "eth.addr_resolved": "Netgear_73:69:8e",
38083 "eth.type": "0x00000800"
38087 "ip.hdr_len": "20",
38088 "ip.dsfield": "0x00000000",
38089 "ip.dsfield_tree": {
38090 "ip.dsfield.dscp": "0",
38091 "ip.dsfield.ecn": "0"
38094 "ip.id": "0x0000f786",
38095 "ip.flags": "0x00000002",
38097 "ip.flags.rb": "0",
38098 "ip.flags.df": "1",
38101 "ip.frag_offset": "0",
38104 "ip.checksum": "0x0000bf81",
38105 "ip.checksum.status": "2",
38106 "ip.src": "192.168.0.1",
38107 "ip.addr": "192.168.0.1",
38108 "ip.src_host": "192.168.0.1",
38109 "ip.host": "192.168.0.1",
38110 "ip.dst": "192.168.0.160",
38111 "ip.addr": "192.168.0.160",
38112 "ip.dst_host": "192.168.0.160",
38113 "ip.host": "192.168.0.160",
38114 "Source GeoIP: Unknown": "",
38115 "Destination GeoIP: Unknown": ""
38118 "udp.srcport": "53",
38119 "udp.dstport": "53544",
38121 "udp.port": "53544",
38122 "udp.length": "479",
38123 "udp.checksum": "0x000083e2",
38124 "udp.checksum.status": "2",
38125 "udp.stream": "454"
38128 "dns.response_to": "45902",
38129 "dns.time": "0.006266000",
38130 "dns.id": "0x000004f7",
38131 "dns.flags": "0x00008180",
38132 "dns.flags_tree": {
38133 "dns.flags.response": "1",
38134 "dns.flags.opcode": "0",
38135 "dns.flags.authoritative": "0",
38136 "dns.flags.truncated": "0",
38137 "dns.flags.recdesired": "1",
38138 "dns.flags.recavail": "1",
38139 "dns.flags.z": "0",
38140 "dns.flags.authenticated": "0",
38141 "dns.flags.checkdisable": "0",
38142 "dns.flags.rcode": "0"
38144 "dns.count.queries": "1",
38145 "dns.count.answers": "4",
38146 "dns.count.auth_rr": "9",
38147 "dns.count.add_rr": "9",
38149 "www2.meethue.com: type A, class IN": {
38150 "dns.qry.name": "www2.meethue.com",
38151 "dns.qry.name.len": "16",
38152 "dns.count.labels": "3",
38153 "dns.qry.type": "1",
38154 "dns.qry.class": "0x00000001"
38158 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
38159 "dns.resp.name": "www2.meethue.com",
38160 "dns.resp.type": "5",
38161 "dns.resp.class": "0x00000001",
38162 "dns.resp.ttl": "127",
38163 "dns.resp.len": "41",
38164 "dns.cname": "brands.lighting.philips.com.edgekey.net"
38166 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
38167 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
38168 "dns.resp.type": "5",
38169 "dns.resp.class": "0x00000001",
38170 "dns.resp.ttl": "7019",
38171 "dns.resp.len": "22",
38172 "dns.cname": "e15361.b.akamaiedge.net"
38174 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
38175 "dns.resp.name": "e15361.b.akamaiedge.net",
38176 "dns.resp.type": "1",
38177 "dns.resp.class": "0x00000001",
38178 "dns.resp.ttl": "20",
38179 "dns.resp.len": "4",
38180 "dns.a": "173.223.52.112"
38182 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
38183 "dns.resp.name": "e15361.b.akamaiedge.net",
38184 "dns.resp.type": "1",
38185 "dns.resp.class": "0x00000001",
38186 "dns.resp.ttl": "20",
38187 "dns.resp.len": "4",
38188 "dns.a": "173.223.52.125"
38191 "Authoritative nameservers": {
38192 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
38193 "dns.resp.name": "b.akamaiedge.net",
38194 "dns.resp.type": "2",
38195 "dns.resp.class": "0x00000001",
38196 "dns.resp.ttl": "1000",
38197 "dns.resp.len": "6",
38198 "dns.ns": "a0b.akamaiedge.net"
38200 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
38201 "dns.resp.name": "b.akamaiedge.net",
38202 "dns.resp.type": "2",
38203 "dns.resp.class": "0x00000001",
38204 "dns.resp.ttl": "1000",
38205 "dns.resp.len": "6",
38206 "dns.ns": "n4b.akamaiedge.net"
38208 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
38209 "dns.resp.name": "b.akamaiedge.net",
38210 "dns.resp.type": "2",
38211 "dns.resp.class": "0x00000001",
38212 "dns.resp.ttl": "1000",
38213 "dns.resp.len": "6",
38214 "dns.ns": "n5b.akamaiedge.net"
38216 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
38217 "dns.resp.name": "b.akamaiedge.net",
38218 "dns.resp.type": "2",
38219 "dns.resp.class": "0x00000001",
38220 "dns.resp.ttl": "1000",
38221 "dns.resp.len": "6",
38222 "dns.ns": "n1b.akamaiedge.net"
38224 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
38225 "dns.resp.name": "b.akamaiedge.net",
38226 "dns.resp.type": "2",
38227 "dns.resp.class": "0x00000001",
38228 "dns.resp.ttl": "1000",
38229 "dns.resp.len": "6",
38230 "dns.ns": "n3b.akamaiedge.net"
38232 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
38233 "dns.resp.name": "b.akamaiedge.net",
38234 "dns.resp.type": "2",
38235 "dns.resp.class": "0x00000001",
38236 "dns.resp.ttl": "1000",
38237 "dns.resp.len": "6",
38238 "dns.ns": "n6b.akamaiedge.net"
38240 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
38241 "dns.resp.name": "b.akamaiedge.net",
38242 "dns.resp.type": "2",
38243 "dns.resp.class": "0x00000001",
38244 "dns.resp.ttl": "1000",
38245 "dns.resp.len": "6",
38246 "dns.ns": "n0b.akamaiedge.net"
38248 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
38249 "dns.resp.name": "b.akamaiedge.net",
38250 "dns.resp.type": "2",
38251 "dns.resp.class": "0x00000001",
38252 "dns.resp.ttl": "1000",
38253 "dns.resp.len": "6",
38254 "dns.ns": "n7b.akamaiedge.net"
38256 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
38257 "dns.resp.name": "b.akamaiedge.net",
38258 "dns.resp.type": "2",
38259 "dns.resp.class": "0x00000001",
38260 "dns.resp.ttl": "1000",
38261 "dns.resp.len": "6",
38262 "dns.ns": "n2b.akamaiedge.net"
38265 "Additional records": {
38266 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
38267 "dns.resp.name": "n0b.akamaiedge.net",
38268 "dns.resp.type": "1",
38269 "dns.resp.class": "0x00000001",
38270 "dns.resp.ttl": "2356",
38271 "dns.resp.len": "4",
38272 "dns.a": "88.221.81.192"
38274 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
38275 "dns.resp.name": "n1b.akamaiedge.net",
38276 "dns.resp.type": "1",
38277 "dns.resp.class": "0x00000001",
38278 "dns.resp.ttl": "1020",
38279 "dns.resp.len": "4",
38280 "dns.a": "173.223.52.109"
38282 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
38283 "dns.resp.name": "n2b.akamaiedge.net",
38284 "dns.resp.type": "1",
38285 "dns.resp.class": "0x00000001",
38286 "dns.resp.ttl": "1530",
38287 "dns.resp.len": "4",
38288 "dns.a": "173.223.52.109"
38290 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.192": {
38291 "dns.resp.name": "n3b.akamaiedge.net",
38292 "dns.resp.type": "1",
38293 "dns.resp.class": "0x00000001",
38294 "dns.resp.ttl": "1737",
38295 "dns.resp.len": "4",
38296 "dns.a": "96.17.70.192"
38298 "n4b.akamaiedge.net: type A, class IN, addr 204.2.166.157": {
38299 "dns.resp.name": "n4b.akamaiedge.net",
38300 "dns.resp.type": "1",
38301 "dns.resp.class": "0x00000001",
38302 "dns.resp.ttl": "633",
38303 "dns.resp.len": "4",
38304 "dns.a": "204.2.166.157"
38306 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
38307 "dns.resp.name": "n5b.akamaiedge.net",
38308 "dns.resp.type": "1",
38309 "dns.resp.class": "0x00000001",
38310 "dns.resp.ttl": "2374",
38311 "dns.resp.len": "4",
38312 "dns.a": "204.2.166.158"
38314 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
38315 "dns.resp.name": "n6b.akamaiedge.net",
38316 "dns.resp.type": "1",
38317 "dns.resp.class": "0x00000001",
38318 "dns.resp.ttl": "2215",
38319 "dns.resp.len": "4",
38320 "dns.a": "96.17.70.188"
38322 "n7b.akamaiedge.net: type A, class IN, addr 165.254.157.167": {
38323 "dns.resp.name": "n7b.akamaiedge.net",
38324 "dns.resp.type": "1",
38325 "dns.resp.class": "0x00000001",
38326 "dns.resp.ttl": "2234",
38327 "dns.resp.len": "4",
38328 "dns.a": "165.254.157.167"
38330 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
38331 "dns.resp.name": "a0b.akamaiedge.net",
38332 "dns.resp.type": "28",
38333 "dns.resp.class": "0x00000001",
38334 "dns.resp.ttl": "2029",
38335 "dns.resp.len": "16",
38336 "dns.aaaa": "2600:1480:e800::c0"
38345 "_index": "packets-2017-10-26",
38346 "_type": "pcap_file",
38351 "frame.encap_type": "1",
38352 "frame.time": "Oct 20, 2017 07:07:53.431212000 PDT",
38353 "frame.offset_shift": "0.000000000",
38354 "frame.time_epoch": "1508508473.431212000",
38355 "frame.time_delta": "2.092085000",
38356 "frame.time_delta_displayed": "900.008230000",
38357 "frame.time_relative": "50761.026008000",
38358 "frame.number": "46613",
38360 "frame.cap_len": "76",
38361 "frame.marked": "0",
38362 "frame.ignored": "0",
38363 "frame.protocols": "eth:ethertype:ip:udp:dns",
38364 "frame.coloring_rule.name": "UDP",
38365 "frame.coloring_rule.string": "udp"
38368 "eth.dst": "b0:b9:8a:73:69:8e",
38370 "eth.dst_resolved": "Netgear_73:69:8e",
38371 "eth.addr": "b0:b9:8a:73:69:8e",
38372 "eth.addr_resolved": "Netgear_73:69:8e",
38376 "eth.src": "00:17:88:69:ee:e4",
38378 "eth.src_resolved": "PhilipsL_69:ee:e4",
38379 "eth.addr": "00:17:88:69:ee:e4",
38380 "eth.addr_resolved": "PhilipsL_69:ee:e4",
38384 "eth.type": "0x00000800"
38388 "ip.hdr_len": "20",
38389 "ip.dsfield": "0x00000000",
38390 "ip.dsfield_tree": {
38391 "ip.dsfield.dscp": "0",
38392 "ip.dsfield.ecn": "0"
38395 "ip.id": "0x00000dff",
38396 "ip.flags": "0x00000002",
38398 "ip.flags.rb": "0",
38399 "ip.flags.df": "1",
38402 "ip.frag_offset": "0",
38405 "ip.checksum": "0x0000aabe",
38406 "ip.checksum.status": "2",
38407 "ip.src": "192.168.0.160",
38408 "ip.addr": "192.168.0.160",
38409 "ip.src_host": "192.168.0.160",
38410 "ip.host": "192.168.0.160",
38411 "ip.dst": "192.168.0.1",
38412 "ip.addr": "192.168.0.1",
38413 "ip.dst_host": "192.168.0.1",
38414 "ip.host": "192.168.0.1",
38415 "Source GeoIP: Unknown": "",
38416 "Destination GeoIP: Unknown": ""
38419 "udp.srcport": "34206",
38420 "udp.dstport": "53",
38421 "udp.port": "34206",
38423 "udp.length": "42",
38424 "udp.checksum": "0x0000d321",
38425 "udp.checksum.status": "2",
38426 "udp.stream": "458"
38429 "dns.response_in": "46614",
38430 "dns.id": "0x000004f8",
38431 "dns.flags": "0x00000100",
38432 "dns.flags_tree": {
38433 "dns.flags.response": "0",
38434 "dns.flags.opcode": "0",
38435 "dns.flags.truncated": "0",
38436 "dns.flags.recdesired": "1",
38437 "dns.flags.z": "0",
38438 "dns.flags.checkdisable": "0"
38440 "dns.count.queries": "1",
38441 "dns.count.answers": "0",
38442 "dns.count.auth_rr": "0",
38443 "dns.count.add_rr": "0",
38445 "www2.meethue.com: type A, class IN": {
38446 "dns.qry.name": "www2.meethue.com",
38447 "dns.qry.name.len": "16",
38448 "dns.count.labels": "3",
38449 "dns.qry.type": "1",
38450 "dns.qry.class": "0x00000001"
38459 "_index": "packets-2017-10-26",
38460 "_type": "pcap_file",
38465 "frame.encap_type": "1",
38466 "frame.time": "Oct 20, 2017 07:07:53.437633000 PDT",
38467 "frame.offset_shift": "0.000000000",
38468 "frame.time_epoch": "1508508473.437633000",
38469 "frame.time_delta": "0.006421000",
38470 "frame.time_delta_displayed": "0.006421000",
38471 "frame.time_relative": "50761.032429000",
38472 "frame.number": "46614",
38473 "frame.len": "513",
38474 "frame.cap_len": "513",
38475 "frame.marked": "0",
38476 "frame.ignored": "0",
38477 "frame.protocols": "eth:ethertype:ip:udp:dns",
38478 "frame.coloring_rule.name": "UDP",
38479 "frame.coloring_rule.string": "udp"
38482 "eth.dst": "00:17:88:69:ee:e4",
38484 "eth.dst_resolved": "PhilipsL_69:ee:e4",
38485 "eth.addr": "00:17:88:69:ee:e4",
38486 "eth.addr_resolved": "PhilipsL_69:ee:e4",
38490 "eth.src": "b0:b9:8a:73:69:8e",
38492 "eth.src_resolved": "Netgear_73:69:8e",
38493 "eth.addr": "b0:b9:8a:73:69:8e",
38494 "eth.addr_resolved": "Netgear_73:69:8e",
38498 "eth.type": "0x00000800"
38502 "ip.hdr_len": "20",
38503 "ip.dsfield": "0x00000000",
38504 "ip.dsfield_tree": {
38505 "ip.dsfield.dscp": "0",
38506 "ip.dsfield.ecn": "0"
38509 "ip.id": "0x00004f64",
38510 "ip.flags": "0x00000002",
38512 "ip.flags.rb": "0",
38513 "ip.flags.df": "1",
38516 "ip.frag_offset": "0",
38519 "ip.checksum": "0x000067a4",
38520 "ip.checksum.status": "2",
38521 "ip.src": "192.168.0.1",
38522 "ip.addr": "192.168.0.1",
38523 "ip.src_host": "192.168.0.1",
38524 "ip.host": "192.168.0.1",
38525 "ip.dst": "192.168.0.160",
38526 "ip.addr": "192.168.0.160",
38527 "ip.dst_host": "192.168.0.160",
38528 "ip.host": "192.168.0.160",
38529 "Source GeoIP: Unknown": "",
38530 "Destination GeoIP: Unknown": ""
38533 "udp.srcport": "53",
38534 "udp.dstport": "34206",
38536 "udp.port": "34206",
38537 "udp.length": "479",
38538 "udp.checksum": "0x000083e2",
38539 "udp.checksum.status": "2",
38540 "udp.stream": "458"
38543 "dns.response_to": "46613",
38544 "dns.time": "0.006421000",
38545 "dns.id": "0x000004f8",
38546 "dns.flags": "0x00008180",
38547 "dns.flags_tree": {
38548 "dns.flags.response": "1",
38549 "dns.flags.opcode": "0",
38550 "dns.flags.authoritative": "0",
38551 "dns.flags.truncated": "0",
38552 "dns.flags.recdesired": "1",
38553 "dns.flags.recavail": "1",
38554 "dns.flags.z": "0",
38555 "dns.flags.authenticated": "0",
38556 "dns.flags.checkdisable": "0",
38557 "dns.flags.rcode": "0"
38559 "dns.count.queries": "1",
38560 "dns.count.answers": "4",
38561 "dns.count.auth_rr": "9",
38562 "dns.count.add_rr": "9",
38564 "www2.meethue.com: type A, class IN": {
38565 "dns.qry.name": "www2.meethue.com",
38566 "dns.qry.name.len": "16",
38567 "dns.count.labels": "3",
38568 "dns.qry.type": "1",
38569 "dns.qry.class": "0x00000001"
38573 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
38574 "dns.resp.name": "www2.meethue.com",
38575 "dns.resp.type": "5",
38576 "dns.resp.class": "0x00000001",
38577 "dns.resp.ttl": "127",
38578 "dns.resp.len": "41",
38579 "dns.cname": "brands.lighting.philips.com.edgekey.net"
38581 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
38582 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
38583 "dns.resp.type": "5",
38584 "dns.resp.class": "0x00000001",
38585 "dns.resp.ttl": "6119",
38586 "dns.resp.len": "22",
38587 "dns.cname": "e15361.b.akamaiedge.net"
38589 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
38590 "dns.resp.name": "e15361.b.akamaiedge.net",
38591 "dns.resp.type": "1",
38592 "dns.resp.class": "0x00000001",
38593 "dns.resp.ttl": "20",
38594 "dns.resp.len": "4",
38595 "dns.a": "173.223.52.125"
38597 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
38598 "dns.resp.name": "e15361.b.akamaiedge.net",
38599 "dns.resp.type": "1",
38600 "dns.resp.class": "0x00000001",
38601 "dns.resp.ttl": "20",
38602 "dns.resp.len": "4",
38603 "dns.a": "173.223.52.112"
38606 "Authoritative nameservers": {
38607 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
38608 "dns.resp.name": "b.akamaiedge.net",
38609 "dns.resp.type": "2",
38610 "dns.resp.class": "0x00000001",
38611 "dns.resp.ttl": "100",
38612 "dns.resp.len": "6",
38613 "dns.ns": "n7b.akamaiedge.net"
38615 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
38616 "dns.resp.name": "b.akamaiedge.net",
38617 "dns.resp.type": "2",
38618 "dns.resp.class": "0x00000001",
38619 "dns.resp.ttl": "100",
38620 "dns.resp.len": "6",
38621 "dns.ns": "a0b.akamaiedge.net"
38623 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
38624 "dns.resp.name": "b.akamaiedge.net",
38625 "dns.resp.type": "2",
38626 "dns.resp.class": "0x00000001",
38627 "dns.resp.ttl": "100",
38628 "dns.resp.len": "6",
38629 "dns.ns": "n1b.akamaiedge.net"
38631 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
38632 "dns.resp.name": "b.akamaiedge.net",
38633 "dns.resp.type": "2",
38634 "dns.resp.class": "0x00000001",
38635 "dns.resp.ttl": "100",
38636 "dns.resp.len": "6",
38637 "dns.ns": "n4b.akamaiedge.net"
38639 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
38640 "dns.resp.name": "b.akamaiedge.net",
38641 "dns.resp.type": "2",
38642 "dns.resp.class": "0x00000001",
38643 "dns.resp.ttl": "100",
38644 "dns.resp.len": "6",
38645 "dns.ns": "n3b.akamaiedge.net"
38647 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
38648 "dns.resp.name": "b.akamaiedge.net",
38649 "dns.resp.type": "2",
38650 "dns.resp.class": "0x00000001",
38651 "dns.resp.ttl": "100",
38652 "dns.resp.len": "6",
38653 "dns.ns": "n2b.akamaiedge.net"
38655 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
38656 "dns.resp.name": "b.akamaiedge.net",
38657 "dns.resp.type": "2",
38658 "dns.resp.class": "0x00000001",
38659 "dns.resp.ttl": "100",
38660 "dns.resp.len": "6",
38661 "dns.ns": "n5b.akamaiedge.net"
38663 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
38664 "dns.resp.name": "b.akamaiedge.net",
38665 "dns.resp.type": "2",
38666 "dns.resp.class": "0x00000001",
38667 "dns.resp.ttl": "100",
38668 "dns.resp.len": "6",
38669 "dns.ns": "n6b.akamaiedge.net"
38671 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
38672 "dns.resp.name": "b.akamaiedge.net",
38673 "dns.resp.type": "2",
38674 "dns.resp.class": "0x00000001",
38675 "dns.resp.ttl": "100",
38676 "dns.resp.len": "6",
38677 "dns.ns": "n0b.akamaiedge.net"
38680 "Additional records": {
38681 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
38682 "dns.resp.name": "n0b.akamaiedge.net",
38683 "dns.resp.type": "1",
38684 "dns.resp.class": "0x00000001",
38685 "dns.resp.ttl": "1456",
38686 "dns.resp.len": "4",
38687 "dns.a": "88.221.81.192"
38689 "n1b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
38690 "dns.resp.name": "n1b.akamaiedge.net",
38691 "dns.resp.type": "1",
38692 "dns.resp.class": "0x00000001",
38693 "dns.resp.ttl": "120",
38694 "dns.resp.len": "4",
38695 "dns.a": "173.223.52.109"
38697 "n2b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
38698 "dns.resp.name": "n2b.akamaiedge.net",
38699 "dns.resp.type": "1",
38700 "dns.resp.class": "0x00000001",
38701 "dns.resp.ttl": "630",
38702 "dns.resp.len": "4",
38703 "dns.a": "173.223.52.109"
38705 "n3b.akamaiedge.net: type A, class IN, addr 96.17.70.192": {
38706 "dns.resp.name": "n3b.akamaiedge.net",
38707 "dns.resp.type": "1",
38708 "dns.resp.class": "0x00000001",
38709 "dns.resp.ttl": "837",
38710 "dns.resp.len": "4",
38711 "dns.a": "96.17.70.192"
38713 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.207": {
38714 "dns.resp.name": "n4b.akamaiedge.net",
38715 "dns.resp.type": "1",
38716 "dns.resp.class": "0x00000001",
38717 "dns.resp.ttl": "5740",
38718 "dns.resp.len": "4",
38719 "dns.a": "198.172.88.207"
38721 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
38722 "dns.resp.name": "n5b.akamaiedge.net",
38723 "dns.resp.type": "1",
38724 "dns.resp.class": "0x00000001",
38725 "dns.resp.ttl": "1474",
38726 "dns.resp.len": "4",
38727 "dns.a": "204.2.166.158"
38729 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
38730 "dns.resp.name": "n6b.akamaiedge.net",
38731 "dns.resp.type": "1",
38732 "dns.resp.class": "0x00000001",
38733 "dns.resp.ttl": "1315",
38734 "dns.resp.len": "4",
38735 "dns.a": "96.17.70.188"
38737 "n7b.akamaiedge.net: type A, class IN, addr 165.254.157.167": {
38738 "dns.resp.name": "n7b.akamaiedge.net",
38739 "dns.resp.type": "1",
38740 "dns.resp.class": "0x00000001",
38741 "dns.resp.ttl": "1334",
38742 "dns.resp.len": "4",
38743 "dns.a": "165.254.157.167"
38745 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
38746 "dns.resp.name": "a0b.akamaiedge.net",
38747 "dns.resp.type": "28",
38748 "dns.resp.class": "0x00000001",
38749 "dns.resp.ttl": "1129",
38750 "dns.resp.len": "16",
38751 "dns.aaaa": "2600:1480:e800::c0"
38760 "_index": "packets-2017-10-26",
38761 "_type": "pcap_file",
38766 "frame.encap_type": "1",
38767 "frame.time": "Oct 20, 2017 07:22:53.445298000 PDT",
38768 "frame.offset_shift": "0.000000000",
38769 "frame.time_epoch": "1508509373.445298000",
38770 "frame.time_delta": "4.162550000",
38771 "frame.time_delta_displayed": "900.007665000",
38772 "frame.time_relative": "51661.040094000",
38773 "frame.number": "47529",
38775 "frame.cap_len": "76",
38776 "frame.marked": "0",
38777 "frame.ignored": "0",
38778 "frame.protocols": "eth:ethertype:ip:udp:dns",
38779 "frame.coloring_rule.name": "UDP",
38780 "frame.coloring_rule.string": "udp"
38783 "eth.dst": "b0:b9:8a:73:69:8e",
38785 "eth.dst_resolved": "Netgear_73:69:8e",
38786 "eth.addr": "b0:b9:8a:73:69:8e",
38787 "eth.addr_resolved": "Netgear_73:69:8e",
38791 "eth.src": "00:17:88:69:ee:e4",
38793 "eth.src_resolved": "PhilipsL_69:ee:e4",
38794 "eth.addr": "00:17:88:69:ee:e4",
38795 "eth.addr_resolved": "PhilipsL_69:ee:e4",
38799 "eth.type": "0x00000800"
38803 "ip.hdr_len": "20",
38804 "ip.dsfield": "0x00000000",
38805 "ip.dsfield_tree": {
38806 "ip.dsfield.dscp": "0",
38807 "ip.dsfield.ecn": "0"
38810 "ip.id": "0x00001618",
38811 "ip.flags": "0x00000002",
38813 "ip.flags.rb": "0",
38814 "ip.flags.df": "1",
38817 "ip.frag_offset": "0",
38820 "ip.checksum": "0x0000a2a5",
38821 "ip.checksum.status": "2",
38822 "ip.src": "192.168.0.160",
38823 "ip.addr": "192.168.0.160",
38824 "ip.src_host": "192.168.0.160",
38825 "ip.host": "192.168.0.160",
38826 "ip.dst": "192.168.0.1",
38827 "ip.addr": "192.168.0.1",
38828 "ip.dst_host": "192.168.0.1",
38829 "ip.host": "192.168.0.1",
38830 "Source GeoIP: Unknown": "",
38831 "Destination GeoIP: Unknown": ""
38834 "udp.srcport": "37517",
38835 "udp.dstport": "53",
38836 "udp.port": "37517",
38838 "udp.length": "42",
38839 "udp.checksum": "0x0000c631",
38840 "udp.checksum.status": "2",
38841 "udp.stream": "459"
38844 "dns.response_in": "47530",
38845 "dns.id": "0x000004f9",
38846 "dns.flags": "0x00000100",
38847 "dns.flags_tree": {
38848 "dns.flags.response": "0",
38849 "dns.flags.opcode": "0",
38850 "dns.flags.truncated": "0",
38851 "dns.flags.recdesired": "1",
38852 "dns.flags.z": "0",
38853 "dns.flags.checkdisable": "0"
38855 "dns.count.queries": "1",
38856 "dns.count.answers": "0",
38857 "dns.count.auth_rr": "0",
38858 "dns.count.add_rr": "0",
38860 "www2.meethue.com: type A, class IN": {
38861 "dns.qry.name": "www2.meethue.com",
38862 "dns.qry.name.len": "16",
38863 "dns.count.labels": "3",
38864 "dns.qry.type": "1",
38865 "dns.qry.class": "0x00000001"
38874 "_index": "packets-2017-10-26",
38875 "_type": "pcap_file",
38880 "frame.encap_type": "1",
38881 "frame.time": "Oct 20, 2017 07:22:53.451560000 PDT",
38882 "frame.offset_shift": "0.000000000",
38883 "frame.time_epoch": "1508509373.451560000",
38884 "frame.time_delta": "0.006262000",
38885 "frame.time_delta_displayed": "0.006262000",
38886 "frame.time_relative": "51661.046356000",
38887 "frame.number": "47530",
38888 "frame.len": "513",
38889 "frame.cap_len": "513",
38890 "frame.marked": "0",
38891 "frame.ignored": "0",
38892 "frame.protocols": "eth:ethertype:ip:udp:dns",
38893 "frame.coloring_rule.name": "UDP",
38894 "frame.coloring_rule.string": "udp"
38897 "eth.dst": "00:17:88:69:ee:e4",
38899 "eth.dst_resolved": "PhilipsL_69:ee:e4",
38900 "eth.addr": "00:17:88:69:ee:e4",
38901 "eth.addr_resolved": "PhilipsL_69:ee:e4",
38905 "eth.src": "b0:b9:8a:73:69:8e",
38907 "eth.src_resolved": "Netgear_73:69:8e",
38908 "eth.addr": "b0:b9:8a:73:69:8e",
38909 "eth.addr_resolved": "Netgear_73:69:8e",
38913 "eth.type": "0x00000800"
38917 "ip.hdr_len": "20",
38918 "ip.dsfield": "0x00000000",
38919 "ip.dsfield_tree": {
38920 "ip.dsfield.dscp": "0",
38921 "ip.dsfield.ecn": "0"
38924 "ip.id": "0x0000879c",
38925 "ip.flags": "0x00000002",
38927 "ip.flags.rb": "0",
38928 "ip.flags.df": "1",
38931 "ip.frag_offset": "0",
38934 "ip.checksum": "0x00002f6c",
38935 "ip.checksum.status": "2",
38936 "ip.src": "192.168.0.1",
38937 "ip.addr": "192.168.0.1",
38938 "ip.src_host": "192.168.0.1",
38939 "ip.host": "192.168.0.1",
38940 "ip.dst": "192.168.0.160",
38941 "ip.addr": "192.168.0.160",
38942 "ip.dst_host": "192.168.0.160",
38943 "ip.host": "192.168.0.160",
38944 "Source GeoIP: Unknown": "",
38945 "Destination GeoIP: Unknown": ""
38948 "udp.srcport": "53",
38949 "udp.dstport": "37517",
38951 "udp.port": "37517",
38952 "udp.length": "479",
38953 "udp.checksum": "0x000083e2",
38954 "udp.checksum.status": "2",
38955 "udp.stream": "459"
38958 "dns.response_to": "47529",
38959 "dns.time": "0.006262000",
38960 "dns.id": "0x000004f9",
38961 "dns.flags": "0x00008180",
38962 "dns.flags_tree": {
38963 "dns.flags.response": "1",
38964 "dns.flags.opcode": "0",
38965 "dns.flags.authoritative": "0",
38966 "dns.flags.truncated": "0",
38967 "dns.flags.recdesired": "1",
38968 "dns.flags.recavail": "1",
38969 "dns.flags.z": "0",
38970 "dns.flags.authenticated": "0",
38971 "dns.flags.checkdisable": "0",
38972 "dns.flags.rcode": "0"
38974 "dns.count.queries": "1",
38975 "dns.count.answers": "4",
38976 "dns.count.auth_rr": "9",
38977 "dns.count.add_rr": "9",
38979 "www2.meethue.com: type A, class IN": {
38980 "dns.qry.name": "www2.meethue.com",
38981 "dns.qry.name.len": "16",
38982 "dns.count.labels": "3",
38983 "dns.qry.type": "1",
38984 "dns.qry.class": "0x00000001"
38988 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
38989 "dns.resp.name": "www2.meethue.com",
38990 "dns.resp.type": "5",
38991 "dns.resp.class": "0x00000001",
38992 "dns.resp.ttl": "127",
38993 "dns.resp.len": "41",
38994 "dns.cname": "brands.lighting.philips.com.edgekey.net"
38996 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
38997 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
38998 "dns.resp.type": "5",
38999 "dns.resp.class": "0x00000001",
39000 "dns.resp.ttl": "5219",
39001 "dns.resp.len": "22",
39002 "dns.cname": "e15361.b.akamaiedge.net"
39004 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
39005 "dns.resp.name": "e15361.b.akamaiedge.net",
39006 "dns.resp.type": "1",
39007 "dns.resp.class": "0x00000001",
39008 "dns.resp.ttl": "20",
39009 "dns.resp.len": "4",
39010 "dns.a": "173.223.52.112"
39012 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
39013 "dns.resp.name": "e15361.b.akamaiedge.net",
39014 "dns.resp.type": "1",
39015 "dns.resp.class": "0x00000001",
39016 "dns.resp.ttl": "20",
39017 "dns.resp.len": "4",
39018 "dns.a": "173.223.52.125"
39021 "Authoritative nameservers": {
39022 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
39023 "dns.resp.name": "b.akamaiedge.net",
39024 "dns.resp.type": "2",
39025 "dns.resp.class": "0x00000001",
39026 "dns.resp.ttl": "3203",
39027 "dns.resp.len": "6",
39028 "dns.ns": "n5b.akamaiedge.net"
39030 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
39031 "dns.resp.name": "b.akamaiedge.net",
39032 "dns.resp.type": "2",
39033 "dns.resp.class": "0x00000001",
39034 "dns.resp.ttl": "3203",
39035 "dns.resp.len": "6",
39036 "dns.ns": "n7b.akamaiedge.net"
39038 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
39039 "dns.resp.name": "b.akamaiedge.net",
39040 "dns.resp.type": "2",
39041 "dns.resp.class": "0x00000001",
39042 "dns.resp.ttl": "3203",
39043 "dns.resp.len": "6",
39044 "dns.ns": "n2b.akamaiedge.net"
39046 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
39047 "dns.resp.name": "b.akamaiedge.net",
39048 "dns.resp.type": "2",
39049 "dns.resp.class": "0x00000001",
39050 "dns.resp.ttl": "3203",
39051 "dns.resp.len": "6",
39052 "dns.ns": "n6b.akamaiedge.net"
39054 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
39055 "dns.resp.name": "b.akamaiedge.net",
39056 "dns.resp.type": "2",
39057 "dns.resp.class": "0x00000001",
39058 "dns.resp.ttl": "3203",
39059 "dns.resp.len": "6",
39060 "dns.ns": "n0b.akamaiedge.net"
39062 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
39063 "dns.resp.name": "b.akamaiedge.net",
39064 "dns.resp.type": "2",
39065 "dns.resp.class": "0x00000001",
39066 "dns.resp.ttl": "3203",
39067 "dns.resp.len": "6",
39068 "dns.ns": "n3b.akamaiedge.net"
39070 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
39071 "dns.resp.name": "b.akamaiedge.net",
39072 "dns.resp.type": "2",
39073 "dns.resp.class": "0x00000001",
39074 "dns.resp.ttl": "3203",
39075 "dns.resp.len": "6",
39076 "dns.ns": "n1b.akamaiedge.net"
39078 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
39079 "dns.resp.name": "b.akamaiedge.net",
39080 "dns.resp.type": "2",
39081 "dns.resp.class": "0x00000001",
39082 "dns.resp.ttl": "3203",
39083 "dns.resp.len": "6",
39084 "dns.ns": "a0b.akamaiedge.net"
39086 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
39087 "dns.resp.name": "b.akamaiedge.net",
39088 "dns.resp.type": "2",
39089 "dns.resp.class": "0x00000001",
39090 "dns.resp.ttl": "3203",
39091 "dns.resp.len": "6",
39092 "dns.ns": "n4b.akamaiedge.net"
39095 "Additional records": {
39096 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
39097 "dns.resp.name": "n0b.akamaiedge.net",
39098 "dns.resp.type": "1",
39099 "dns.resp.class": "0x00000001",
39100 "dns.resp.ttl": "556",
39101 "dns.resp.len": "4",
39102 "dns.a": "88.221.81.192"
39104 "n1b.akamaiedge.net: type A, class IN, addr 96.17.70.191": {
39105 "dns.resp.name": "n1b.akamaiedge.net",
39106 "dns.resp.type": "1",
39107 "dns.resp.class": "0x00000001",
39108 "dns.resp.ttl": "7221",
39109 "dns.resp.len": "4",
39110 "dns.a": "96.17.70.191"
39112 "n2b.akamaiedge.net: type A, class IN, addr 165.254.146.244": {
39113 "dns.resp.name": "n2b.akamaiedge.net",
39114 "dns.resp.type": "1",
39115 "dns.resp.class": "0x00000001",
39116 "dns.resp.ttl": "7733",
39117 "dns.resp.len": "4",
39118 "dns.a": "165.254.146.244"
39120 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
39121 "dns.resp.name": "n3b.akamaiedge.net",
39122 "dns.resp.type": "1",
39123 "dns.resp.class": "0x00000001",
39124 "dns.resp.ttl": "3938",
39125 "dns.resp.len": "4",
39126 "dns.a": "173.223.52.109"
39128 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.207": {
39129 "dns.resp.name": "n4b.akamaiedge.net",
39130 "dns.resp.type": "1",
39131 "dns.resp.class": "0x00000001",
39132 "dns.resp.ttl": "4840",
39133 "dns.resp.len": "4",
39134 "dns.a": "198.172.88.207"
39136 "n5b.akamaiedge.net: type A, class IN, addr 204.2.166.158": {
39137 "dns.resp.name": "n5b.akamaiedge.net",
39138 "dns.resp.type": "1",
39139 "dns.resp.class": "0x00000001",
39140 "dns.resp.ttl": "574",
39141 "dns.resp.len": "4",
39142 "dns.a": "204.2.166.158"
39144 "n6b.akamaiedge.net: type A, class IN, addr 96.17.70.188": {
39145 "dns.resp.name": "n6b.akamaiedge.net",
39146 "dns.resp.type": "1",
39147 "dns.resp.class": "0x00000001",
39148 "dns.resp.ttl": "415",
39149 "dns.resp.len": "4",
39150 "dns.a": "96.17.70.188"
39152 "n7b.akamaiedge.net: type A, class IN, addr 165.254.157.167": {
39153 "dns.resp.name": "n7b.akamaiedge.net",
39154 "dns.resp.type": "1",
39155 "dns.resp.class": "0x00000001",
39156 "dns.resp.ttl": "434",
39157 "dns.resp.len": "4",
39158 "dns.a": "165.254.157.167"
39160 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
39161 "dns.resp.name": "a0b.akamaiedge.net",
39162 "dns.resp.type": "28",
39163 "dns.resp.class": "0x00000001",
39164 "dns.resp.ttl": "229",
39165 "dns.resp.len": "16",
39166 "dns.aaaa": "2600:1480:e800::c0"
39175 "_index": "packets-2017-10-26",
39176 "_type": "pcap_file",
39181 "frame.encap_type": "1",
39182 "frame.time": "Oct 20, 2017 07:33:23.445057000 PDT",
39183 "frame.offset_shift": "0.000000000",
39184 "frame.time_epoch": "1508510003.445057000",
39185 "frame.time_delta": "7.984590000",
39186 "frame.time_delta_displayed": "629.993497000",
39187 "frame.time_relative": "52291.039853000",
39188 "frame.number": "48058",
39190 "frame.cap_len": "79",
39191 "frame.marked": "0",
39192 "frame.ignored": "0",
39193 "frame.protocols": "eth:ethertype:ip:udp:dns",
39194 "frame.coloring_rule.name": "UDP",
39195 "frame.coloring_rule.string": "udp"
39198 "eth.dst": "b0:b9:8a:73:69:8e",
39200 "eth.dst_resolved": "Netgear_73:69:8e",
39201 "eth.addr": "b0:b9:8a:73:69:8e",
39202 "eth.addr_resolved": "Netgear_73:69:8e",
39206 "eth.src": "00:17:88:69:ee:e4",
39208 "eth.src_resolved": "PhilipsL_69:ee:e4",
39209 "eth.addr": "00:17:88:69:ee:e4",
39210 "eth.addr_resolved": "PhilipsL_69:ee:e4",
39214 "eth.type": "0x00000800"
39218 "ip.hdr_len": "20",
39219 "ip.dsfield": "0x00000000",
39220 "ip.dsfield_tree": {
39221 "ip.dsfield.dscp": "0",
39222 "ip.dsfield.ecn": "0"
39225 "ip.id": "0x0000fb5d",
39226 "ip.flags": "0x00000002",
39228 "ip.flags.rb": "0",
39229 "ip.flags.df": "1",
39232 "ip.frag_offset": "0",
39235 "ip.checksum": "0x0000bd5c",
39236 "ip.checksum.status": "2",
39237 "ip.src": "192.168.0.160",
39238 "ip.addr": "192.168.0.160",
39239 "ip.src_host": "192.168.0.160",
39240 "ip.host": "192.168.0.160",
39241 "ip.dst": "192.168.0.1",
39242 "ip.addr": "192.168.0.1",
39243 "ip.dst_host": "192.168.0.1",
39244 "ip.host": "192.168.0.1",
39245 "Source GeoIP: Unknown": "",
39246 "Destination GeoIP: Unknown": ""
39249 "udp.srcport": "54194",
39250 "udp.dstport": "53",
39251 "udp.port": "54194",
39253 "udp.length": "45",
39254 "udp.checksum": "0x0000ec90",
39255 "udp.checksum.status": "2",
39256 "udp.stream": "463"
39259 "dns.response_in": "48059",
39260 "dns.id": "0x000004fa",
39261 "dns.flags": "0x00000100",
39262 "dns.flags_tree": {
39263 "dns.flags.response": "0",
39264 "dns.flags.opcode": "0",
39265 "dns.flags.truncated": "0",
39266 "dns.flags.recdesired": "1",
39267 "dns.flags.z": "0",
39268 "dns.flags.checkdisable": "0"
39270 "dns.count.queries": "1",
39271 "dns.count.answers": "0",
39272 "dns.count.auth_rr": "0",
39273 "dns.count.add_rr": "0",
39275 "dcp.cpp.philips.com: type AAAA, class IN": {
39276 "dns.qry.name": "dcp.cpp.philips.com",
39277 "dns.qry.name.len": "19",
39278 "dns.count.labels": "4",
39279 "dns.qry.type": "28",
39280 "dns.qry.class": "0x00000001"
39289 "_index": "packets-2017-10-26",
39290 "_type": "pcap_file",
39295 "frame.encap_type": "1",
39296 "frame.time": "Oct 20, 2017 07:33:23.447069000 PDT",
39297 "frame.offset_shift": "0.000000000",
39298 "frame.time_epoch": "1508510003.447069000",
39299 "frame.time_delta": "0.002012000",
39300 "frame.time_delta_displayed": "0.002012000",
39301 "frame.time_relative": "52291.041865000",
39302 "frame.number": "48059",
39303 "frame.len": "137",
39304 "frame.cap_len": "137",
39305 "frame.marked": "0",
39306 "frame.ignored": "0",
39307 "frame.protocols": "eth:ethertype:ip:udp:dns",
39308 "frame.coloring_rule.name": "UDP",
39309 "frame.coloring_rule.string": "udp"
39312 "eth.dst": "00:17:88:69:ee:e4",
39314 "eth.dst_resolved": "PhilipsL_69:ee:e4",
39315 "eth.addr": "00:17:88:69:ee:e4",
39316 "eth.addr_resolved": "PhilipsL_69:ee:e4",
39320 "eth.src": "b0:b9:8a:73:69:8e",
39322 "eth.src_resolved": "Netgear_73:69:8e",
39323 "eth.addr": "b0:b9:8a:73:69:8e",
39324 "eth.addr_resolved": "Netgear_73:69:8e",
39328 "eth.type": "0x00000800"
39332 "ip.hdr_len": "20",
39333 "ip.dsfield": "0x00000000",
39334 "ip.dsfield_tree": {
39335 "ip.dsfield.dscp": "0",
39336 "ip.dsfield.ecn": "0"
39339 "ip.id": "0x000001dc",
39340 "ip.flags": "0x00000002",
39342 "ip.flags.rb": "0",
39343 "ip.flags.df": "1",
39346 "ip.frag_offset": "0",
39349 "ip.checksum": "0x0000b6a4",
39350 "ip.checksum.status": "2",
39351 "ip.src": "192.168.0.1",
39352 "ip.addr": "192.168.0.1",
39353 "ip.src_host": "192.168.0.1",
39354 "ip.host": "192.168.0.1",
39355 "ip.dst": "192.168.0.160",
39356 "ip.addr": "192.168.0.160",
39357 "ip.dst_host": "192.168.0.160",
39358 "ip.host": "192.168.0.160",
39359 "Source GeoIP: Unknown": "",
39360 "Destination GeoIP: Unknown": ""
39363 "udp.srcport": "53",
39364 "udp.dstport": "54194",
39366 "udp.port": "54194",
39367 "udp.length": "103",
39368 "udp.checksum": "0x0000826a",
39369 "udp.checksum.status": "2",
39370 "udp.stream": "463"
39373 "dns.response_to": "48058",
39374 "dns.time": "0.002012000",
39375 "dns.id": "0x000004fa",
39376 "dns.flags": "0x00008180",
39377 "dns.flags_tree": {
39378 "dns.flags.response": "1",
39379 "dns.flags.opcode": "0",
39380 "dns.flags.authoritative": "0",
39381 "dns.flags.truncated": "0",
39382 "dns.flags.recdesired": "1",
39383 "dns.flags.recavail": "1",
39384 "dns.flags.z": "0",
39385 "dns.flags.authenticated": "0",
39386 "dns.flags.checkdisable": "0",
39387 "dns.flags.rcode": "0"
39389 "dns.count.queries": "1",
39390 "dns.count.answers": "0",
39391 "dns.count.auth_rr": "1",
39392 "dns.count.add_rr": "0",
39394 "dcp.cpp.philips.com: type AAAA, class IN": {
39395 "dns.qry.name": "dcp.cpp.philips.com",
39396 "dns.qry.name.len": "19",
39397 "dns.count.labels": "4",
39398 "dns.qry.type": "28",
39399 "dns.qry.class": "0x00000001"
39402 "Authoritative nameservers": {
39403 "cpp.philips.com: type SOA, class IN, mname ns1.ext.philips.com": {
39404 "dns.resp.name": "cpp.philips.com",
39405 "dns.resp.type": "6",
39406 "dns.resp.class": "0x00000001",
39407 "dns.resp.ttl": "412",
39408 "dns.resp.len": "46",
39409 "dns.soa.mname": "ns1.ext.philips.com",
39410 "dns.soa.rname": "ddi-authority.philips.com",
39411 "dns.soa.serial_number": "387",
39412 "dns.soa.refresh_interval": "1200",
39413 "dns.soa.retry_interval": "300",
39414 "dns.soa.expire_limit": "1209600",
39415 "dns.soa.mininum_ttl": "3600"
39424 "_index": "packets-2017-10-26",
39425 "_type": "pcap_file",
39430 "frame.encap_type": "1",
39431 "frame.time": "Oct 20, 2017 07:33:23.447897000 PDT",
39432 "frame.offset_shift": "0.000000000",
39433 "frame.time_epoch": "1508510003.447897000",
39434 "frame.time_delta": "0.000828000",
39435 "frame.time_delta_displayed": "0.000828000",
39436 "frame.time_relative": "52291.042693000",
39437 "frame.number": "48060",
39439 "frame.cap_len": "79",
39440 "frame.marked": "0",
39441 "frame.ignored": "0",
39442 "frame.protocols": "eth:ethertype:ip:udp:dns",
39443 "frame.coloring_rule.name": "UDP",
39444 "frame.coloring_rule.string": "udp"
39447 "eth.dst": "b0:b9:8a:73:69:8e",
39449 "eth.dst_resolved": "Netgear_73:69:8e",
39450 "eth.addr": "b0:b9:8a:73:69:8e",
39451 "eth.addr_resolved": "Netgear_73:69:8e",
39455 "eth.src": "00:17:88:69:ee:e4",
39457 "eth.src_resolved": "PhilipsL_69:ee:e4",
39458 "eth.addr": "00:17:88:69:ee:e4",
39459 "eth.addr_resolved": "PhilipsL_69:ee:e4",
39463 "eth.type": "0x00000800"
39467 "ip.hdr_len": "20",
39468 "ip.dsfield": "0x00000000",
39469 "ip.dsfield_tree": {
39470 "ip.dsfield.dscp": "0",
39471 "ip.dsfield.ecn": "0"
39474 "ip.id": "0x0000fb5e",
39475 "ip.flags": "0x00000002",
39477 "ip.flags.rb": "0",
39478 "ip.flags.df": "1",
39481 "ip.frag_offset": "0",
39484 "ip.checksum": "0x0000bd5b",
39485 "ip.checksum.status": "2",
39486 "ip.src": "192.168.0.160",
39487 "ip.addr": "192.168.0.160",
39488 "ip.src_host": "192.168.0.160",
39489 "ip.host": "192.168.0.160",
39490 "ip.dst": "192.168.0.1",
39491 "ip.addr": "192.168.0.1",
39492 "ip.dst_host": "192.168.0.1",
39493 "ip.host": "192.168.0.1",
39494 "Source GeoIP: Unknown": "",
39495 "Destination GeoIP: Unknown": ""
39498 "udp.srcport": "35295",
39499 "udp.dstport": "53",
39500 "udp.port": "35295",
39502 "udp.length": "45",
39503 "udp.checksum": "0x00005163",
39504 "udp.checksum.status": "2",
39505 "udp.stream": "464"
39508 "dns.response_in": "48061",
39509 "dns.id": "0x000004fb",
39510 "dns.flags": "0x00000100",
39511 "dns.flags_tree": {
39512 "dns.flags.response": "0",
39513 "dns.flags.opcode": "0",
39514 "dns.flags.truncated": "0",
39515 "dns.flags.recdesired": "1",
39516 "dns.flags.z": "0",
39517 "dns.flags.checkdisable": "0"
39519 "dns.count.queries": "1",
39520 "dns.count.answers": "0",
39521 "dns.count.auth_rr": "0",
39522 "dns.count.add_rr": "0",
39524 "dcp.cpp.philips.com: type A, class IN": {
39525 "dns.qry.name": "dcp.cpp.philips.com",
39526 "dns.qry.name.len": "19",
39527 "dns.count.labels": "4",
39528 "dns.qry.type": "1",
39529 "dns.qry.class": "0x00000001"
39538 "_index": "packets-2017-10-26",
39539 "_type": "pcap_file",
39544 "frame.encap_type": "1",
39545 "frame.time": "Oct 20, 2017 07:33:23.449477000 PDT",
39546 "frame.offset_shift": "0.000000000",
39547 "frame.time_epoch": "1508510003.449477000",
39548 "frame.time_delta": "0.001580000",
39549 "frame.time_delta_displayed": "0.001580000",
39550 "frame.time_relative": "52291.044273000",
39551 "frame.number": "48061",
39552 "frame.len": "285",
39553 "frame.cap_len": "285",
39554 "frame.marked": "0",
39555 "frame.ignored": "0",
39556 "frame.protocols": "eth:ethertype:ip:udp:dns",
39557 "frame.coloring_rule.name": "UDP",
39558 "frame.coloring_rule.string": "udp"
39561 "eth.dst": "00:17:88:69:ee:e4",
39563 "eth.dst_resolved": "PhilipsL_69:ee:e4",
39564 "eth.addr": "00:17:88:69:ee:e4",
39565 "eth.addr_resolved": "PhilipsL_69:ee:e4",
39569 "eth.src": "b0:b9:8a:73:69:8e",
39571 "eth.src_resolved": "Netgear_73:69:8e",
39572 "eth.addr": "b0:b9:8a:73:69:8e",
39573 "eth.addr_resolved": "Netgear_73:69:8e",
39577 "eth.type": "0x00000800"
39581 "ip.hdr_len": "20",
39582 "ip.dsfield": "0x00000000",
39583 "ip.dsfield_tree": {
39584 "ip.dsfield.dscp": "0",
39585 "ip.dsfield.ecn": "0"
39588 "ip.id": "0x000001dd",
39589 "ip.flags": "0x00000002",
39591 "ip.flags.rb": "0",
39592 "ip.flags.df": "1",
39595 "ip.frag_offset": "0",
39598 "ip.checksum": "0x0000b60f",
39599 "ip.checksum.status": "2",
39600 "ip.src": "192.168.0.1",
39601 "ip.addr": "192.168.0.1",
39602 "ip.src_host": "192.168.0.1",
39603 "ip.host": "192.168.0.1",
39604 "ip.dst": "192.168.0.160",
39605 "ip.addr": "192.168.0.160",
39606 "ip.dst_host": "192.168.0.160",
39607 "ip.host": "192.168.0.160",
39608 "Source GeoIP: Unknown": "",
39609 "Destination GeoIP: Unknown": ""
39612 "udp.srcport": "53",
39613 "udp.dstport": "35295",
39615 "udp.port": "35295",
39616 "udp.length": "251",
39617 "udp.checksum": "0x000082fe",
39618 "udp.checksum.status": "2",
39619 "udp.stream": "464"
39622 "dns.response_to": "48060",
39623 "dns.time": "0.001580000",
39624 "dns.id": "0x000004fb",
39625 "dns.flags": "0x00008180",
39626 "dns.flags_tree": {
39627 "dns.flags.response": "1",
39628 "dns.flags.opcode": "0",
39629 "dns.flags.authoritative": "0",
39630 "dns.flags.truncated": "0",
39631 "dns.flags.recdesired": "1",
39632 "dns.flags.recavail": "1",
39633 "dns.flags.z": "0",
39634 "dns.flags.authenticated": "0",
39635 "dns.flags.checkdisable": "0",
39636 "dns.flags.rcode": "0"
39638 "dns.count.queries": "1",
39639 "dns.count.answers": "1",
39640 "dns.count.auth_rr": "3",
39641 "dns.count.add_rr": "6",
39643 "dcp.cpp.philips.com: type A, class IN": {
39644 "dns.qry.name": "dcp.cpp.philips.com",
39645 "dns.qry.name.len": "19",
39646 "dns.count.labels": "4",
39647 "dns.qry.type": "1",
39648 "dns.qry.class": "0x00000001"
39652 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
39653 "dns.resp.name": "dcp.cpp.philips.com",
39654 "dns.resp.type": "1",
39655 "dns.resp.class": "0x00000001",
39656 "dns.resp.ttl": "412",
39657 "dns.resp.len": "4",
39658 "dns.a": "5.79.62.93"
39661 "Authoritative nameservers": {
39662 "cpp.philips.com: type NS, class IN, ns ns2.ext.philips.com": {
39663 "dns.resp.name": "cpp.philips.com",
39664 "dns.resp.type": "2",
39665 "dns.resp.class": "0x00000001",
39666 "dns.resp.ttl": "2798",
39667 "dns.resp.len": "10",
39668 "dns.ns": "ns2.ext.philips.com"
39670 "cpp.philips.com: type NS, class IN, ns ns3.ext.philips.com": {
39671 "dns.resp.name": "cpp.philips.com",
39672 "dns.resp.type": "2",
39673 "dns.resp.class": "0x00000001",
39674 "dns.resp.ttl": "2798",
39675 "dns.resp.len": "6",
39676 "dns.ns": "ns3.ext.philips.com"
39678 "cpp.philips.com: type NS, class IN, ns ns1.ext.philips.com": {
39679 "dns.resp.name": "cpp.philips.com",
39680 "dns.resp.type": "2",
39681 "dns.resp.class": "0x00000001",
39682 "dns.resp.ttl": "2798",
39683 "dns.resp.len": "6",
39684 "dns.ns": "ns1.ext.philips.com"
39687 "Additional records": {
39688 "ns1.ext.philips.com: type A, class IN, addr 57.67.40.20": {
39689 "dns.resp.name": "ns1.ext.philips.com",
39690 "dns.resp.type": "1",
39691 "dns.resp.class": "0x00000001",
39692 "dns.resp.ttl": "153850",
39693 "dns.resp.len": "4",
39694 "dns.a": "57.67.40.20"
39696 "ns2.ext.philips.com: type A, class IN, addr 57.77.21.76": {
39697 "dns.resp.name": "ns2.ext.philips.com",
39698 "dns.resp.type": "1",
39699 "dns.resp.class": "0x00000001",
39700 "dns.resp.ttl": "124773",
39701 "dns.resp.len": "4",
39702 "dns.a": "57.77.21.76"
39704 "ns3.ext.philips.com: type A, class IN, addr 57.73.36.68": {
39705 "dns.resp.name": "ns3.ext.philips.com",
39706 "dns.resp.type": "1",
39707 "dns.resp.class": "0x00000001",
39708 "dns.resp.ttl": "124773",
39709 "dns.resp.len": "4",
39710 "dns.a": "57.73.36.68"
39712 "ns1.ext.philips.com: type AAAA, class IN, addr 2a01:ce89:8001::57:67:40:20": {
39713 "dns.resp.name": "ns1.ext.philips.com",
39714 "dns.resp.type": "28",
39715 "dns.resp.class": "0x00000001",
39716 "dns.resp.ttl": "143028",
39717 "dns.resp.len": "16",
39718 "dns.aaaa": "2a01:ce89:8001::57:67:40:20"
39720 "ns2.ext.philips.com: type AAAA, class IN, addr 2a01:ce95:4001:100:57:77:21:76": {
39721 "dns.resp.name": "ns2.ext.philips.com",
39722 "dns.resp.type": "28",
39723 "dns.resp.class": "0x00000001",
39724 "dns.resp.ttl": "14750",
39725 "dns.resp.len": "16",
39726 "dns.aaaa": "2a01:ce95:4001:100:57:77:21:76"
39728 "ns3.ext.philips.com: type AAAA, class IN, addr 2a01:ce9d:1::57:73:36:68": {
39729 "dns.resp.name": "ns3.ext.philips.com",
39730 "dns.resp.type": "28",
39731 "dns.resp.class": "0x00000001",
39732 "dns.resp.ttl": "14750",
39733 "dns.resp.len": "16",
39734 "dns.aaaa": "2a01:ce9d:1::57:73:36:68"
39743 "_index": "packets-2017-10-26",
39744 "_type": "pcap_file",
39749 "frame.encap_type": "1",
39750 "frame.time": "Oct 20, 2017 07:33:23.865101000 PDT",
39751 "frame.offset_shift": "0.000000000",
39752 "frame.time_epoch": "1508510003.865101000",
39753 "frame.time_delta": "0.001627000",
39754 "frame.time_delta_displayed": "0.415624000",
39755 "frame.time_relative": "52291.459897000",
39756 "frame.number": "48078",
39758 "frame.cap_len": "79",
39759 "frame.marked": "0",
39760 "frame.ignored": "0",
39761 "frame.protocols": "eth:ethertype:ip:udp:dns",
39762 "frame.coloring_rule.name": "UDP",
39763 "frame.coloring_rule.string": "udp"
39766 "eth.dst": "b0:b9:8a:73:69:8e",
39768 "eth.dst_resolved": "Netgear_73:69:8e",
39769 "eth.addr": "b0:b9:8a:73:69:8e",
39770 "eth.addr_resolved": "Netgear_73:69:8e",
39774 "eth.src": "00:17:88:69:ee:e4",
39776 "eth.src_resolved": "PhilipsL_69:ee:e4",
39777 "eth.addr": "00:17:88:69:ee:e4",
39778 "eth.addr_resolved": "PhilipsL_69:ee:e4",
39782 "eth.type": "0x00000800"
39786 "ip.hdr_len": "20",
39787 "ip.dsfield": "0x00000000",
39788 "ip.dsfield_tree": {
39789 "ip.dsfield.dscp": "0",
39790 "ip.dsfield.ecn": "0"
39793 "ip.id": "0x0000fb69",
39794 "ip.flags": "0x00000002",
39796 "ip.flags.rb": "0",
39797 "ip.flags.df": "1",
39800 "ip.frag_offset": "0",
39803 "ip.checksum": "0x0000bd50",
39804 "ip.checksum.status": "2",
39805 "ip.src": "192.168.0.160",
39806 "ip.addr": "192.168.0.160",
39807 "ip.src_host": "192.168.0.160",
39808 "ip.host": "192.168.0.160",
39809 "ip.dst": "192.168.0.1",
39810 "ip.addr": "192.168.0.1",
39811 "ip.dst_host": "192.168.0.1",
39812 "ip.host": "192.168.0.1",
39813 "Source GeoIP: Unknown": "",
39814 "Destination GeoIP: Unknown": ""
39817 "udp.srcport": "56468",
39818 "udp.dstport": "53",
39819 "udp.port": "56468",
39821 "udp.length": "45",
39822 "udp.checksum": "0x0000e3ac",
39823 "udp.checksum.status": "2",
39824 "udp.stream": "465"
39827 "dns.response_in": "48079",
39828 "dns.id": "0x000004fc",
39829 "dns.flags": "0x00000100",
39830 "dns.flags_tree": {
39831 "dns.flags.response": "0",
39832 "dns.flags.opcode": "0",
39833 "dns.flags.truncated": "0",
39834 "dns.flags.recdesired": "1",
39835 "dns.flags.z": "0",
39836 "dns.flags.checkdisable": "0"
39838 "dns.count.queries": "1",
39839 "dns.count.answers": "0",
39840 "dns.count.auth_rr": "0",
39841 "dns.count.add_rr": "0",
39843 "dcp.cpp.philips.com: type AAAA, class IN": {
39844 "dns.qry.name": "dcp.cpp.philips.com",
39845 "dns.qry.name.len": "19",
39846 "dns.count.labels": "4",
39847 "dns.qry.type": "28",
39848 "dns.qry.class": "0x00000001"
39857 "_index": "packets-2017-10-26",
39858 "_type": "pcap_file",
39863 "frame.encap_type": "1",
39864 "frame.time": "Oct 20, 2017 07:33:23.865672000 PDT",
39865 "frame.offset_shift": "0.000000000",
39866 "frame.time_epoch": "1508510003.865672000",
39867 "frame.time_delta": "0.000571000",
39868 "frame.time_delta_displayed": "0.000571000",
39869 "frame.time_relative": "52291.460468000",
39870 "frame.number": "48079",
39872 "frame.cap_len": "79",
39873 "frame.marked": "0",
39874 "frame.ignored": "0",
39875 "frame.protocols": "eth:ethertype:ip:udp:dns",
39876 "frame.coloring_rule.name": "UDP",
39877 "frame.coloring_rule.string": "udp"
39880 "eth.dst": "00:17:88:69:ee:e4",
39882 "eth.dst_resolved": "PhilipsL_69:ee:e4",
39883 "eth.addr": "00:17:88:69:ee:e4",
39884 "eth.addr_resolved": "PhilipsL_69:ee:e4",
39888 "eth.src": "b0:b9:8a:73:69:8e",
39890 "eth.src_resolved": "Netgear_73:69:8e",
39891 "eth.addr": "b0:b9:8a:73:69:8e",
39892 "eth.addr_resolved": "Netgear_73:69:8e",
39896 "eth.type": "0x00000800"
39900 "ip.hdr_len": "20",
39901 "ip.dsfield": "0x00000000",
39902 "ip.dsfield_tree": {
39903 "ip.dsfield.dscp": "0",
39904 "ip.dsfield.ecn": "0"
39907 "ip.id": "0x000001de",
39908 "ip.flags": "0x00000002",
39910 "ip.flags.rb": "0",
39911 "ip.flags.df": "1",
39914 "ip.frag_offset": "0",
39917 "ip.checksum": "0x0000b6dc",
39918 "ip.checksum.status": "2",
39919 "ip.src": "192.168.0.1",
39920 "ip.addr": "192.168.0.1",
39921 "ip.src_host": "192.168.0.1",
39922 "ip.host": "192.168.0.1",
39923 "ip.dst": "192.168.0.160",
39924 "ip.addr": "192.168.0.160",
39925 "ip.dst_host": "192.168.0.160",
39926 "ip.host": "192.168.0.160",
39927 "Source GeoIP: Unknown": "",
39928 "Destination GeoIP: Unknown": ""
39931 "udp.srcport": "53",
39932 "udp.dstport": "56468",
39934 "udp.port": "56468",
39935 "udp.length": "45",
39936 "udp.checksum": "0x00008230",
39937 "udp.checksum.status": "2",
39938 "udp.stream": "465"
39941 "dns.response_to": "48078",
39942 "dns.time": "0.000571000",
39943 "dns.id": "0x000004fc",
39944 "dns.flags": "0x00008180",
39945 "dns.flags_tree": {
39946 "dns.flags.response": "1",
39947 "dns.flags.opcode": "0",
39948 "dns.flags.authoritative": "0",
39949 "dns.flags.truncated": "0",
39950 "dns.flags.recdesired": "1",
39951 "dns.flags.recavail": "1",
39952 "dns.flags.z": "0",
39953 "dns.flags.authenticated": "0",
39954 "dns.flags.checkdisable": "0",
39955 "dns.flags.rcode": "0"
39957 "dns.count.queries": "1",
39958 "dns.count.answers": "0",
39959 "dns.count.auth_rr": "0",
39960 "dns.count.add_rr": "0",
39962 "dcp.cpp.philips.com: type AAAA, class IN": {
39963 "dns.qry.name": "dcp.cpp.philips.com",
39964 "dns.qry.name.len": "19",
39965 "dns.count.labels": "4",
39966 "dns.qry.type": "28",
39967 "dns.qry.class": "0x00000001"
39976 "_index": "packets-2017-10-26",
39977 "_type": "pcap_file",
39982 "frame.encap_type": "1",
39983 "frame.time": "Oct 20, 2017 07:33:23.866499000 PDT",
39984 "frame.offset_shift": "0.000000000",
39985 "frame.time_epoch": "1508510003.866499000",
39986 "frame.time_delta": "0.000827000",
39987 "frame.time_delta_displayed": "0.000827000",
39988 "frame.time_relative": "52291.461295000",
39989 "frame.number": "48080",
39991 "frame.cap_len": "79",
39992 "frame.marked": "0",
39993 "frame.ignored": "0",
39994 "frame.protocols": "eth:ethertype:ip:udp:dns",
39995 "frame.coloring_rule.name": "UDP",
39996 "frame.coloring_rule.string": "udp"
39999 "eth.dst": "b0:b9:8a:73:69:8e",
40001 "eth.dst_resolved": "Netgear_73:69:8e",
40002 "eth.addr": "b0:b9:8a:73:69:8e",
40003 "eth.addr_resolved": "Netgear_73:69:8e",
40007 "eth.src": "00:17:88:69:ee:e4",
40009 "eth.src_resolved": "PhilipsL_69:ee:e4",
40010 "eth.addr": "00:17:88:69:ee:e4",
40011 "eth.addr_resolved": "PhilipsL_69:ee:e4",
40015 "eth.type": "0x00000800"
40019 "ip.hdr_len": "20",
40020 "ip.dsfield": "0x00000000",
40021 "ip.dsfield_tree": {
40022 "ip.dsfield.dscp": "0",
40023 "ip.dsfield.ecn": "0"
40026 "ip.id": "0x0000fb6a",
40027 "ip.flags": "0x00000002",
40029 "ip.flags.rb": "0",
40030 "ip.flags.df": "1",
40033 "ip.frag_offset": "0",
40036 "ip.checksum": "0x0000bd4f",
40037 "ip.checksum.status": "2",
40038 "ip.src": "192.168.0.160",
40039 "ip.addr": "192.168.0.160",
40040 "ip.src_host": "192.168.0.160",
40041 "ip.host": "192.168.0.160",
40042 "ip.dst": "192.168.0.1",
40043 "ip.addr": "192.168.0.1",
40044 "ip.dst_host": "192.168.0.1",
40045 "ip.host": "192.168.0.1",
40046 "Source GeoIP: Unknown": "",
40047 "Destination GeoIP: Unknown": ""
40050 "udp.srcport": "42815",
40051 "udp.dstport": "53",
40052 "udp.port": "42815",
40054 "udp.length": "45",
40055 "udp.checksum": "0x00003401",
40056 "udp.checksum.status": "2",
40057 "udp.stream": "466"
40060 "dns.response_in": "48081",
40061 "dns.id": "0x000004fd",
40062 "dns.flags": "0x00000100",
40063 "dns.flags_tree": {
40064 "dns.flags.response": "0",
40065 "dns.flags.opcode": "0",
40066 "dns.flags.truncated": "0",
40067 "dns.flags.recdesired": "1",
40068 "dns.flags.z": "0",
40069 "dns.flags.checkdisable": "0"
40071 "dns.count.queries": "1",
40072 "dns.count.answers": "0",
40073 "dns.count.auth_rr": "0",
40074 "dns.count.add_rr": "0",
40076 "dcp.cpp.philips.com: type A, class IN": {
40077 "dns.qry.name": "dcp.cpp.philips.com",
40078 "dns.qry.name.len": "19",
40079 "dns.count.labels": "4",
40080 "dns.qry.type": "1",
40081 "dns.qry.class": "0x00000001"
40090 "_index": "packets-2017-10-26",
40091 "_type": "pcap_file",
40096 "frame.encap_type": "1",
40097 "frame.time": "Oct 20, 2017 07:33:23.867228000 PDT",
40098 "frame.offset_shift": "0.000000000",
40099 "frame.time_epoch": "1508510003.867228000",
40100 "frame.time_delta": "0.000729000",
40101 "frame.time_delta_displayed": "0.000729000",
40102 "frame.time_relative": "52291.462024000",
40103 "frame.number": "48081",
40105 "frame.cap_len": "95",
40106 "frame.marked": "0",
40107 "frame.ignored": "0",
40108 "frame.protocols": "eth:ethertype:ip:udp:dns",
40109 "frame.coloring_rule.name": "UDP",
40110 "frame.coloring_rule.string": "udp"
40113 "eth.dst": "00:17:88:69:ee:e4",
40115 "eth.dst_resolved": "PhilipsL_69:ee:e4",
40116 "eth.addr": "00:17:88:69:ee:e4",
40117 "eth.addr_resolved": "PhilipsL_69:ee:e4",
40121 "eth.src": "b0:b9:8a:73:69:8e",
40123 "eth.src_resolved": "Netgear_73:69:8e",
40124 "eth.addr": "b0:b9:8a:73:69:8e",
40125 "eth.addr_resolved": "Netgear_73:69:8e",
40129 "eth.type": "0x00000800"
40133 "ip.hdr_len": "20",
40134 "ip.dsfield": "0x00000000",
40135 "ip.dsfield_tree": {
40136 "ip.dsfield.dscp": "0",
40137 "ip.dsfield.ecn": "0"
40140 "ip.id": "0x000001df",
40141 "ip.flags": "0x00000002",
40143 "ip.flags.rb": "0",
40144 "ip.flags.df": "1",
40147 "ip.frag_offset": "0",
40150 "ip.checksum": "0x0000b6cb",
40151 "ip.checksum.status": "2",
40152 "ip.src": "192.168.0.1",
40153 "ip.addr": "192.168.0.1",
40154 "ip.src_host": "192.168.0.1",
40155 "ip.host": "192.168.0.1",
40156 "ip.dst": "192.168.0.160",
40157 "ip.addr": "192.168.0.160",
40158 "ip.dst_host": "192.168.0.160",
40159 "ip.host": "192.168.0.160",
40160 "Source GeoIP: Unknown": "",
40161 "Destination GeoIP: Unknown": ""
40164 "udp.srcport": "53",
40165 "udp.dstport": "42815",
40167 "udp.port": "42815",
40168 "udp.length": "61",
40169 "udp.checksum": "0x00008240",
40170 "udp.checksum.status": "2",
40171 "udp.stream": "466"
40174 "dns.response_to": "48080",
40175 "dns.time": "0.000729000",
40176 "dns.id": "0x000004fd",
40177 "dns.flags": "0x00008180",
40178 "dns.flags_tree": {
40179 "dns.flags.response": "1",
40180 "dns.flags.opcode": "0",
40181 "dns.flags.authoritative": "0",
40182 "dns.flags.truncated": "0",
40183 "dns.flags.recdesired": "1",
40184 "dns.flags.recavail": "1",
40185 "dns.flags.z": "0",
40186 "dns.flags.authenticated": "0",
40187 "dns.flags.checkdisable": "0",
40188 "dns.flags.rcode": "0"
40190 "dns.count.queries": "1",
40191 "dns.count.answers": "1",
40192 "dns.count.auth_rr": "0",
40193 "dns.count.add_rr": "0",
40195 "dcp.cpp.philips.com: type A, class IN": {
40196 "dns.qry.name": "dcp.cpp.philips.com",
40197 "dns.qry.name.len": "19",
40198 "dns.count.labels": "4",
40199 "dns.qry.type": "1",
40200 "dns.qry.class": "0x00000001"
40204 "dcp.cpp.philips.com: type A, class IN, addr 5.79.62.93": {
40205 "dns.resp.name": "dcp.cpp.philips.com",
40206 "dns.resp.type": "1",
40207 "dns.resp.class": "0x00000001",
40208 "dns.resp.ttl": "412",
40209 "dns.resp.len": "4",
40210 "dns.a": "5.79.62.93"
40219 "_index": "packets-2017-10-26",
40220 "_type": "pcap_file",
40225 "frame.encap_type": "1",
40226 "frame.time": "Oct 20, 2017 07:37:53.461226000 PDT",
40227 "frame.offset_shift": "0.000000000",
40228 "frame.time_epoch": "1508510273.461226000",
40229 "frame.time_delta": "5.280384000",
40230 "frame.time_delta_displayed": "269.593998000",
40231 "frame.time_relative": "52561.056022000",
40232 "frame.number": "48304",
40234 "frame.cap_len": "76",
40235 "frame.marked": "0",
40236 "frame.ignored": "0",
40237 "frame.protocols": "eth:ethertype:ip:udp:dns",
40238 "frame.coloring_rule.name": "UDP",
40239 "frame.coloring_rule.string": "udp"
40242 "eth.dst": "b0:b9:8a:73:69:8e",
40244 "eth.dst_resolved": "Netgear_73:69:8e",
40245 "eth.addr": "b0:b9:8a:73:69:8e",
40246 "eth.addr_resolved": "Netgear_73:69:8e",
40250 "eth.src": "00:17:88:69:ee:e4",
40252 "eth.src_resolved": "PhilipsL_69:ee:e4",
40253 "eth.addr": "00:17:88:69:ee:e4",
40254 "eth.addr_resolved": "PhilipsL_69:ee:e4",
40258 "eth.type": "0x00000800"
40262 "ip.hdr_len": "20",
40263 "ip.dsfield": "0x00000000",
40264 "ip.dsfield_tree": {
40265 "ip.dsfield.dscp": "0",
40266 "ip.dsfield.ecn": "0"
40269 "ip.id": "0x00000e4c",
40270 "ip.flags": "0x00000002",
40272 "ip.flags.rb": "0",
40273 "ip.flags.df": "1",
40276 "ip.frag_offset": "0",
40279 "ip.checksum": "0x0000aa71",
40280 "ip.checksum.status": "2",
40281 "ip.src": "192.168.0.160",
40282 "ip.addr": "192.168.0.160",
40283 "ip.src_host": "192.168.0.160",
40284 "ip.host": "192.168.0.160",
40285 "ip.dst": "192.168.0.1",
40286 "ip.addr": "192.168.0.1",
40287 "ip.dst_host": "192.168.0.1",
40288 "ip.host": "192.168.0.1",
40289 "Source GeoIP: Unknown": "",
40290 "Destination GeoIP: Unknown": ""
40293 "udp.srcport": "49801",
40294 "udp.dstport": "53",
40295 "udp.port": "49801",
40297 "udp.length": "42",
40298 "udp.checksum": "0x00009630",
40299 "udp.checksum.status": "2",
40300 "udp.stream": "467"
40303 "dns.response_in": "48305",
40304 "dns.id": "0x000004fe",
40305 "dns.flags": "0x00000100",
40306 "dns.flags_tree": {
40307 "dns.flags.response": "0",
40308 "dns.flags.opcode": "0",
40309 "dns.flags.truncated": "0",
40310 "dns.flags.recdesired": "1",
40311 "dns.flags.z": "0",
40312 "dns.flags.checkdisable": "0"
40314 "dns.count.queries": "1",
40315 "dns.count.answers": "0",
40316 "dns.count.auth_rr": "0",
40317 "dns.count.add_rr": "0",
40319 "www2.meethue.com: type A, class IN": {
40320 "dns.qry.name": "www2.meethue.com",
40321 "dns.qry.name.len": "16",
40322 "dns.count.labels": "3",
40323 "dns.qry.type": "1",
40324 "dns.qry.class": "0x00000001"
40333 "_index": "packets-2017-10-26",
40334 "_type": "pcap_file",
40339 "frame.encap_type": "1",
40340 "frame.time": "Oct 20, 2017 07:37:53.467660000 PDT",
40341 "frame.offset_shift": "0.000000000",
40342 "frame.time_epoch": "1508510273.467660000",
40343 "frame.time_delta": "0.006434000",
40344 "frame.time_delta_displayed": "0.006434000",
40345 "frame.time_relative": "52561.062456000",
40346 "frame.number": "48305",
40347 "frame.len": "513",
40348 "frame.cap_len": "513",
40349 "frame.marked": "0",
40350 "frame.ignored": "0",
40351 "frame.protocols": "eth:ethertype:ip:udp:dns",
40352 "frame.coloring_rule.name": "UDP",
40353 "frame.coloring_rule.string": "udp"
40356 "eth.dst": "00:17:88:69:ee:e4",
40358 "eth.dst_resolved": "PhilipsL_69:ee:e4",
40359 "eth.addr": "00:17:88:69:ee:e4",
40360 "eth.addr_resolved": "PhilipsL_69:ee:e4",
40364 "eth.src": "b0:b9:8a:73:69:8e",
40366 "eth.src_resolved": "Netgear_73:69:8e",
40367 "eth.addr": "b0:b9:8a:73:69:8e",
40368 "eth.addr_resolved": "Netgear_73:69:8e",
40372 "eth.type": "0x00000800"
40376 "ip.hdr_len": "20",
40377 "ip.dsfield": "0x00000000",
40378 "ip.dsfield_tree": {
40379 "ip.dsfield.dscp": "0",
40380 "ip.dsfield.ecn": "0"
40383 "ip.id": "0x00001912",
40384 "ip.flags": "0x00000002",
40386 "ip.flags.rb": "0",
40387 "ip.flags.df": "1",
40390 "ip.frag_offset": "0",
40393 "ip.checksum": "0x00009df6",
40394 "ip.checksum.status": "2",
40395 "ip.src": "192.168.0.1",
40396 "ip.addr": "192.168.0.1",
40397 "ip.src_host": "192.168.0.1",
40398 "ip.host": "192.168.0.1",
40399 "ip.dst": "192.168.0.160",
40400 "ip.addr": "192.168.0.160",
40401 "ip.dst_host": "192.168.0.160",
40402 "ip.host": "192.168.0.160",
40403 "Source GeoIP: Unknown": "",
40404 "Destination GeoIP: Unknown": ""
40407 "udp.srcport": "53",
40408 "udp.dstport": "49801",
40410 "udp.port": "49801",
40411 "udp.length": "479",
40412 "udp.checksum": "0x000083e2",
40413 "udp.checksum.status": "2",
40414 "udp.stream": "467"
40417 "dns.response_to": "48304",
40418 "dns.time": "0.006434000",
40419 "dns.id": "0x000004fe",
40420 "dns.flags": "0x00008180",
40421 "dns.flags_tree": {
40422 "dns.flags.response": "1",
40423 "dns.flags.opcode": "0",
40424 "dns.flags.authoritative": "0",
40425 "dns.flags.truncated": "0",
40426 "dns.flags.recdesired": "1",
40427 "dns.flags.recavail": "1",
40428 "dns.flags.z": "0",
40429 "dns.flags.authenticated": "0",
40430 "dns.flags.checkdisable": "0",
40431 "dns.flags.rcode": "0"
40433 "dns.count.queries": "1",
40434 "dns.count.answers": "4",
40435 "dns.count.auth_rr": "9",
40436 "dns.count.add_rr": "9",
40438 "www2.meethue.com: type A, class IN": {
40439 "dns.qry.name": "www2.meethue.com",
40440 "dns.qry.name.len": "16",
40441 "dns.count.labels": "3",
40442 "dns.qry.type": "1",
40443 "dns.qry.class": "0x00000001"
40447 "www2.meethue.com: type CNAME, class IN, cname brands.lighting.philips.com.edgekey.net": {
40448 "dns.resp.name": "www2.meethue.com",
40449 "dns.resp.type": "5",
40450 "dns.resp.class": "0x00000001",
40451 "dns.resp.ttl": "128",
40452 "dns.resp.len": "41",
40453 "dns.cname": "brands.lighting.philips.com.edgekey.net"
40455 "brands.lighting.philips.com.edgekey.net: type CNAME, class IN, cname e15361.b.akamaiedge.net": {
40456 "dns.resp.name": "brands.lighting.philips.com.edgekey.net",
40457 "dns.resp.type": "5",
40458 "dns.resp.class": "0x00000001",
40459 "dns.resp.ttl": "4319",
40460 "dns.resp.len": "22",
40461 "dns.cname": "e15361.b.akamaiedge.net"
40463 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.125": {
40464 "dns.resp.name": "e15361.b.akamaiedge.net",
40465 "dns.resp.type": "1",
40466 "dns.resp.class": "0x00000001",
40467 "dns.resp.ttl": "20",
40468 "dns.resp.len": "4",
40469 "dns.a": "173.223.52.125"
40471 "e15361.b.akamaiedge.net: type A, class IN, addr 173.223.52.112": {
40472 "dns.resp.name": "e15361.b.akamaiedge.net",
40473 "dns.resp.type": "1",
40474 "dns.resp.class": "0x00000001",
40475 "dns.resp.ttl": "20",
40476 "dns.resp.len": "4",
40477 "dns.a": "173.223.52.112"
40480 "Authoritative nameservers": {
40481 "b.akamaiedge.net: type NS, class IN, ns n6b.akamaiedge.net": {
40482 "dns.resp.name": "b.akamaiedge.net",
40483 "dns.resp.type": "2",
40484 "dns.resp.class": "0x00000001",
40485 "dns.resp.ttl": "2303",
40486 "dns.resp.len": "6",
40487 "dns.ns": "n6b.akamaiedge.net"
40489 "b.akamaiedge.net: type NS, class IN, ns n2b.akamaiedge.net": {
40490 "dns.resp.name": "b.akamaiedge.net",
40491 "dns.resp.type": "2",
40492 "dns.resp.class": "0x00000001",
40493 "dns.resp.ttl": "2303",
40494 "dns.resp.len": "6",
40495 "dns.ns": "n2b.akamaiedge.net"
40497 "b.akamaiedge.net: type NS, class IN, ns a0b.akamaiedge.net": {
40498 "dns.resp.name": "b.akamaiedge.net",
40499 "dns.resp.type": "2",
40500 "dns.resp.class": "0x00000001",
40501 "dns.resp.ttl": "2303",
40502 "dns.resp.len": "6",
40503 "dns.ns": "a0b.akamaiedge.net"
40505 "b.akamaiedge.net: type NS, class IN, ns n4b.akamaiedge.net": {
40506 "dns.resp.name": "b.akamaiedge.net",
40507 "dns.resp.type": "2",
40508 "dns.resp.class": "0x00000001",
40509 "dns.resp.ttl": "2303",
40510 "dns.resp.len": "6",
40511 "dns.ns": "n4b.akamaiedge.net"
40513 "b.akamaiedge.net: type NS, class IN, ns n5b.akamaiedge.net": {
40514 "dns.resp.name": "b.akamaiedge.net",
40515 "dns.resp.type": "2",
40516 "dns.resp.class": "0x00000001",
40517 "dns.resp.ttl": "2303",
40518 "dns.resp.len": "6",
40519 "dns.ns": "n5b.akamaiedge.net"
40521 "b.akamaiedge.net: type NS, class IN, ns n1b.akamaiedge.net": {
40522 "dns.resp.name": "b.akamaiedge.net",
40523 "dns.resp.type": "2",
40524 "dns.resp.class": "0x00000001",
40525 "dns.resp.ttl": "2303",
40526 "dns.resp.len": "6",
40527 "dns.ns": "n1b.akamaiedge.net"
40529 "b.akamaiedge.net: type NS, class IN, ns n7b.akamaiedge.net": {
40530 "dns.resp.name": "b.akamaiedge.net",
40531 "dns.resp.type": "2",
40532 "dns.resp.class": "0x00000001",
40533 "dns.resp.ttl": "2303",
40534 "dns.resp.len": "6",
40535 "dns.ns": "n7b.akamaiedge.net"
40537 "b.akamaiedge.net: type NS, class IN, ns n3b.akamaiedge.net": {
40538 "dns.resp.name": "b.akamaiedge.net",
40539 "dns.resp.type": "2",
40540 "dns.resp.class": "0x00000001",
40541 "dns.resp.ttl": "2303",
40542 "dns.resp.len": "6",
40543 "dns.ns": "n3b.akamaiedge.net"
40545 "b.akamaiedge.net: type NS, class IN, ns n0b.akamaiedge.net": {
40546 "dns.resp.name": "b.akamaiedge.net",
40547 "dns.resp.type": "2",
40548 "dns.resp.class": "0x00000001",
40549 "dns.resp.ttl": "2303",
40550 "dns.resp.len": "6",
40551 "dns.ns": "n0b.akamaiedge.net"
40554 "Additional records": {
40555 "n0b.akamaiedge.net: type A, class IN, addr 88.221.81.192": {
40556 "dns.resp.name": "n0b.akamaiedge.net",
40557 "dns.resp.type": "1",
40558 "dns.resp.class": "0x00000001",
40559 "dns.resp.ttl": "3658",
40560 "dns.resp.len": "4",
40561 "dns.a": "88.221.81.192"
40563 "n1b.akamaiedge.net: type A, class IN, addr 96.17.70.191": {
40564 "dns.resp.name": "n1b.akamaiedge.net",
40565 "dns.resp.type": "1",
40566 "dns.resp.class": "0x00000001",
40567 "dns.resp.ttl": "6321",
40568 "dns.resp.len": "4",
40569 "dns.a": "96.17.70.191"
40571 "n2b.akamaiedge.net: type A, class IN, addr 165.254.146.244": {
40572 "dns.resp.name": "n2b.akamaiedge.net",
40573 "dns.resp.type": "1",
40574 "dns.resp.class": "0x00000001",
40575 "dns.resp.ttl": "6833",
40576 "dns.resp.len": "4",
40577 "dns.a": "165.254.146.244"
40579 "n3b.akamaiedge.net: type A, class IN, addr 173.223.52.109": {
40580 "dns.resp.name": "n3b.akamaiedge.net",
40581 "dns.resp.type": "1",
40582 "dns.resp.class": "0x00000001",
40583 "dns.resp.ttl": "3038",
40584 "dns.resp.len": "4",
40585 "dns.a": "173.223.52.109"
40587 "n4b.akamaiedge.net: type A, class IN, addr 198.172.88.207": {
40588 "dns.resp.name": "n4b.akamaiedge.net",
40589 "dns.resp.type": "1",
40590 "dns.resp.class": "0x00000001",
40591 "dns.resp.ttl": "3940",
40592 "dns.resp.len": "4",
40593 "dns.a": "198.172.88.207"
40595 "n5b.akamaiedge.net: type A, class IN, addr 173.223.52.131": {
40596 "dns.resp.name": "n5b.akamaiedge.net",
40597 "dns.resp.type": "1",
40598 "dns.resp.class": "0x00000001",
40599 "dns.resp.ttl": "7681",
40600 "dns.resp.len": "4",
40601 "dns.a": "173.223.52.131"
40603 "n6b.akamaiedge.net: type A, class IN, addr 173.223.52.133": {
40604 "dns.resp.name": "n6b.akamaiedge.net",
40605 "dns.resp.type": "1",
40606 "dns.resp.class": "0x00000001",
40607 "dns.resp.ttl": "3520",
40608 "dns.resp.len": "4",
40609 "dns.a": "173.223.52.133"
40611 "n7b.akamaiedge.net: type A, class IN, addr 204.1.137.41": {
40612 "dns.resp.name": "n7b.akamaiedge.net",
40613 "dns.resp.type": "1",
40614 "dns.resp.class": "0x00000001",
40615 "dns.resp.ttl": "5538",
40616 "dns.resp.len": "4",
40617 "dns.a": "204.1.137.41"
40619 "a0b.akamaiedge.net: type AAAA, class IN, addr 2600:1480:e800::c0": {
40620 "dns.resp.name": "a0b.akamaiedge.net",
40621 "dns.resp.type": "28",
40622 "dns.resp.class": "0x00000001",
40623 "dns.resp.ttl": "5335",
40624 "dns.resp.len": "16",
40625 "dns.aaaa": "2600:1480:e800::c0"
projects / pingpong.git / blob