# Palo Alto NGFW — Traffic Log Export
# Device: PA-3260 (perimeter-fw-01.lifetechpharma.com)
# Query: src=10.10.2.15 OR dst=203.0.113.87 OR dst=198.51.100.44
# Time range: 2024-11-01 to 2024-11-15
# Exported by: Ran Katz 2024-11-15 19:55 UTC
# NOTE: 14-day retention. Traffic older than 2024-11-01 is expired.
#
receive_time,serial,type,subtype,src,dst,natsrc,natdst,rule,srcuser,dstuser,app,vsys,from,to,inbound_if,outbound_if,logset,sessionid,repeatcnt,sport,dport,natsport,natdport,flags,proto,action,bytes,bytes_sent,bytes_received,packets,start,elapsed,category,sequence,actionflags,srcloc,dstloc,pkts_sent,pkts_received,session_end_reason
2024-11-01T07:14:02Z,0011223344556,TRAFFIC,end,10.10.3.22,203.0.113.87,10.10.3.22,203.0.113.87,OutboundHTTPS-Allow,LIFETECHPHARMA\p.levi,,ssl,vsys1,trust,untrust,ethernet1/1,ethernet1/2,default,18841002,1,50212,443,50212,443,0x400000,6,allow,14882,8441,6441,22,2024-11-01T07:14:02Z,47,computer-and-internet-security,88410022,0x0,10.0.0.0/8,US,12,10,tcp-fin
2024-11-01T07:21:14Z,0011223344556,TRAFFIC,end,10.10.3.22,203.0.113.87,10.10.3.22,203.0.113.87,OutboundHTTPS-Allow,LIFETECHPHARMA\p.levi,,ssl,vsys1,trust,untrust,ethernet1/1,ethernet1/2,default,18841041,1,50222,443,50222,443,0x400000,6,allow,14441,8221,6220,21,2024-11-01T07:21:14Z,45,computer-and-internet-security,88410041,0x0,10.0.0.0/8,US,11,10,tcp-fin
2024-11-01T07:28:44Z,0011223344556,TRAFFIC,end,10.10.3.22,203.0.113.87,10.10.3.22,203.0.113.87,OutboundHTTPS-Allow,LIFETECHPHARMA\p.levi,,ssl,vsys1,trust,untrust,ethernet1/1,ethernet1/2,default,18841088,1,50231,443,50231,443,0x400000,6,allow,13884,7882,6002,20,2024-11-01T07:28:44Z,44,computer-and-internet-security,88410088,0x0,10.0.0.0/8,US,11,9,tcp-fin
2024-11-06T00:09:44Z,0011223344556,TRAFFIC,end,10.10.3.22,203.0.113.87,10.10.3.22,203.0.113.87,OutboundHTTPS-Allow,LIFETECHPHARMA\p.levi,,ssl,vsys1,trust,untrust,ethernet1/1,ethernet1/2,default,19012004,1,50888,443,50888,443,0x400000,6,allow,16882,9441,7441,24,2024-11-06T00:09:44Z,51,computer-and-internet-security,90120004,0x0,10.0.0.0/8,US,13,11,tcp-fin
2024-11-06T00:14:14Z,0011223344556,TRAFFIC,end,10.10.2.15,198.51.100.44,10.10.2.15,198.51.100.44,OutboundHTTPS-Allow,LIFETECHPHARMA\svc_backup,,ssl,vsys1,trust,untrust,ethernet1/3,ethernet1/2,default,19012441,1,50912,443,50912,443,0x400000,6,allow,399900441,399481224,419217,2841,2024-11-06T00:14:14Z,312,unknown,90124441,0x0,10.0.0.0/8,US,2712,129,tcp-fin
2024-11-06T00:17:01Z,0011223344556,TRAFFIC,end,10.10.3.22,203.0.113.87,10.10.3.22,203.0.113.87,OutboundHTTPS-Allow,LIFETECHPHARMA\p.levi,,ssl,vsys1,trust,untrust,ethernet1/1,ethernet1/2,default,19012611,1,50924,443,50924,443,0x400000,6,allow,14002,8001,6001,21,2024-11-06T00:17:01Z,46,computer-and-internet-security,90126111,0x0,10.0.0.0/8,US,11,10,tcp-fin
2024-11-06T00:24:33Z,0011223344556,TRAFFIC,end,10.10.3.22,203.0.113.87,10.10.3.22,203.0.113.87,OutboundHTTPS-Allow,LIFETECHPHARMA\p.levi,,ssl,vsys1,trust,untrust,ethernet1/1,ethernet1/2,default,19012788,1,50941,443,50941,443,0x400000,6,allow,14112,8011,6101,21,2024-11-06T00:24:33Z,44,computer-and-internet-security,90127881,0x0,10.0.0.0/8,US,11,10,tcp-fin
2024-11-15T16:42:41Z,0011223344556,TRAFFIC,end,10.10.1.45,203.0.113.87,10.10.1.45,203.0.113.87,OutboundHTTPS-Allow,LIFETECHPHARMA\m.cohen,,ssl,vsys1,trust,untrust,ethernet1/1,ethernet1/2,default,19904441,1,51204,443,51204,443,0x400000,6,allow,28441,18221,10220,42,2024-11-15T16:42:41Z,63,computer-and-internet-security,99044441,0x0,10.0.0.0/8,US,23,19,tcp-fin
2024-11-15T16:49:22Z,0011223344556,TRAFFIC,end,10.10.1.45,203.0.113.87,10.10.1.45,203.0.113.87,OutboundHTTPS-Allow,LIFETECHPHARMA\m.cohen,,ssl,vsys1,trust,untrust,ethernet1/1,ethernet1/2,default,19904488,1,51211,443,51211,443,0x400000,6,allow,24882,14441,10441,36,2024-11-15T16:49:22Z,61,computer-and-internet-security,99044881,0x0,10.0.0.0/8,US,19,17,tcp-fin
2024-11-15T16:56:03Z,0011223344556,TRAFFIC,end,10.10.1.45,203.0.113.87,10.10.1.45,203.0.113.87,OutboundHTTPS-Allow,LIFETECHPHARMA\m.cohen,,ssl,vsys1,trust,untrust,ethernet1/1,ethernet1/2,default,19904522,1,51288,443,51288,443,0x400000,6,allow,25004,15001,10003,37,2024-11-15T16:56:03Z,59,computer-and-internet-security,99045221,0x0,10.0.0.0/8,US,20,17,tcp-fin
2024-11-15T19:14:08Z,0011223344556,TRAFFIC,end,10.10.1.45,10.10.2.20,10.10.1.45,10.10.2.20,InternalTraffic-Allow,LIFETECHPHARMA\m.cohen,,msrpc,vsys1,trust,trust,ethernet1/1,ethernet1/1,default,19905114,1,51401,135,51401,135,0x400000,6,allow,8441,4441,4000,18,2024-11-15T19:14:08Z,12,business-systems,99051141,0x0,10.0.0.0/8,10.0.0.0/8,10,8,tcp-fin
2024-11-15T19:14:18Z,0011223344556,TRAFFIC,end,10.10.1.45,10.10.2.20,10.10.1.45,10.10.2.20,InternalTraffic-Allow,LIFETECHPHARMA\m.cohen,,msrpc-base,vsys1,trust,trust,ethernet1/1,ethernet1/1,default,19905122,1,51408,49152,51408,49152,0x400000,6,allow,12884,8441,4443,22,2024-11-15T19:14:18Z,34,business-systems,99051221,0x0,10.0.0.0/8,10.0.0.0/8,13,9,tcp-fin