API tools faq
paste
Advertisement
Guest User

QUIC blocked - Trustwave, no.

a guest
Nov 25th, 2014
245
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 13.64 KB | None | 0 0
raw download clone embed print report
  1. 1527: QUIC_SESSION
  2. drive.google.com
  3. Start Time: 2014-11-25 14:25:25.096
  4.  
  5. t=41994 [st= 0] +QUIC_SESSION [dt=?]
  6. --> host = "drive.google.com"
  7. --> is_https = true
  8. --> port = 443
  9. --> require_confirmation = false
  10. t=42010 [st= 16] QUIC_SESSION_CERTIFICATE_VERIFIED
  11. --> subjects = ["*.google.com","*.android.com","*.appengine.google.com","*.cloud.google.com","*.google-analytics.com","*.google.ca","*.google.cl","*.google.co.in","*.google.co.jp","*.google.co.uk","*.google.com.ar","*.google.com.au","*.google.com.br","*.google.com.co","*.google.com.mx","*.google.com.tr","*.google.com.vn","*.google.de","*.google.es","*.google.fr","*.google.hu","*.google.it","*.google.nl","*.google.pl","*.google.pt","*.googleadapis.com","*.googleapis.cn","*.googlecommerce.com","*.googlevideo.com","*.gstatic.cn","*.gstatic.com","*.gvt1.com","*.gvt2.com","*.metric.gstatic.com","*.urchin.com","*.url.google.com","*.youtube-nocookie.com","*.youtube.com","*.youtubeeducation.com","*.ytimg.com","android.com","g.co","goo.gl","google-analytics.com","google.com","googlecommerce.com","urchin.com","youtu.be","youtube.com","youtubeeducation.com"]
  12. t=42010 [st= 16] QUIC_SESSION_CRYPTO_HANDSHAKE_MESSAGE_SENT
  13. --> CHLO<
  14. SNI : "drive.google.com"
  15. STK : 0xC1A33E618B87D6A4FF269287368D28A90EF87871CFD837A18F3DA7CD4329BB732973E27065C15EBA746F9C609DCD86BF66779CACA1962DE6
  16. VER : 'Q023'
  17. CCS : 0x399FF95340F7FEC97B26E9E7E45C71FF
  18. NONC: 0x5474E5B57ADDC3511BF60F4AEDB9488CB0D424DFB283409DD60F6288A84759C6
  19. MSPC: 100
  20. AEAD: 'CC12'
  21. UAID: "canary Chrome/41.0.2230.0"
  22. SCID: 0xF4FD7B2B31C6922E912D1EBC56139ED7
  23. PDMD: 'X509'
  24. ICSL: 30
  25. KATO: 0
  26. PUBS: 0x15F5EC3B2AED160ECF8AA319E6330EC04C2FFF5E81A30F6530FBAE8F13E75375
  27. KEXS: 'C255'
  28. COPT:
  29. CCRT: 0xFD25BC25041E71401247FD4D4291E508400B7B90A9AE79EB
  30. CGST: 'QBIC'
  31. IRTT: 42250
  32. CETV: 0x1A429F8509D8432593B19003F262055811C830A71861D9AC474FAD0883E5570A4BFFF955F8A9F4FCEBE65DA4FEE69A2551407CD1C00AB4A2FFD613435EF5C5DB3A45696CD6F5756B46BD7D06C1D84941B3E92F53130EDBE7997C4B14F2AAC20669E8B50B4531C05F5EE50EB6354892C9723B33E5C759BC6DE45618157EF48BDBFE1605D9006C00501768E0F690FD10FD3349B1B5E14B1A6AEE78F5720FF48C0AAA510CBB
  33. CFCW: 10485760
  34. IFCW: 10485760
  35. SFCW: 10485760
  36. >
  37. t=42011 [st= 17] QUIC_SESSION_STREAM_FRAME_SENT
  38. --> fin = false
  39. --> length = 1024
  40. --> offset = "0"
  41. --> stream_id = 1
  42. t=42012 [st= 18] QUIC_SESSION_PACKET_SENT
  43. --> encryption_level = 0
  44. --> packet_sequence_number = "1"
  45. --> sent_time_us = -1486575512
  46. --> size = 1350
  47. --> transmission_type = 0
  48. t=42017 [st= 23] QUIC_HTTP_STREAM_SEND_REQUEST_HEADERS
  49. --> :host: drive.google.com
  50. :method: GET
  51. :path: /drive/
  52. :scheme: https
  53. :version: HTTP/1.1
  54. accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  55. accept-encoding: gzip, deflate, sdch
  56. accept-language: en-US,en;q=0.8
  57. cache-control: max-age=0
  58. cookie: [1030 bytes were stripped]
  59. user-agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2230.0 Safari/537.36
  60. x-chrome-connected: id=114933638127971565738,mode=0,enable_account_consistency=false
  61. x-chrome-uma-enabled: 1
  62. --> quic_priority = 4
  63. --> quic_stream_id = 5
  64. t=42018 [st= 24] QUIC_SESSION_STREAM_FRAME_SENT
  65. --> fin = false
  66. --> length = 1321
  67. --> offset = "0"
  68. --> stream_id = 3
  69. t=42019 [st= 25] QUIC_SESSION_PACKET_SENT
  70. --> encryption_level = 1
  71. --> packet_sequence_number = "2"
  72. --> sent_time_us = -1486569512
  73. --> size = 1350
  74. --> transmission_type = 0
  75. t=42022 [st= 28] QUIC_SESSION_STREAM_FRAME_SENT
  76. --> fin = false
  77. --> length = 126
  78. --> offset = "1321"
  79. --> stream_id = 3
  80. t=42023 [st= 29] QUIC_SESSION_PACKET_SENT
  81. --> encryption_level = 1
  82. --> packet_sequence_number = "3"
  83. --> sent_time_us = -1486564512
  84. --> size = 157
  85. --> transmission_type = 0
  86. t=42043 [st= 49] QUIC_SESSION_PACKET_RECEIVED
  87. --> peer_address = "74.125.193.102:443"
  88. --> self_address = "10.20.92.78:54468"
  89. --> size = 37
  90. t=42043 [st= 49] QUIC_SESSION_PACKET_HEADER_RECEIVED
  91. --> connection_id = "555689321347420270"
  92. --> entropy_flag = 1
  93. --> fec_flag = 0
  94. --> fec_group = 0
  95. --> packet_sequence_number = "1"
  96. --> reset_flag = 0
  97. --> version_flag = 0
  98. t=42043 [st= 49] QUIC_SESSION_VERSION_NEGOTIATED
  99. --> version = "QUIC_VERSION_23"
  100. t=42043 [st= 49] QUIC_SESSION_VERSION_NEGOTIATED
  101. --> version = "QUIC_VERSION_23"
  102. t=42043 [st= 49] QUIC_SESSION_ACK_FRAME_RECEIVED
  103. --> delta_time_largest_observed_us = 0
  104. --> entropy_hash = 2
  105. --> largest_observed = "1"
  106. --> missing_packets = []
  107. --> received_packet_times = [{"received":-1486608397,"sequence_number":1}]
  108. --> revived_packets = []
  109. --> truncated = false
  110. t=42043 [st= 49] QUIC_SESSION_STOP_WAITING_FRAME_RECEIVED
  111. --> sent_info = {"least_unacked":"1"}
  112. t=42044 [st= 50] QUIC_SESSION_PACKET_RECEIVED
  113. --> peer_address = "74.125.193.102:443"
  114. --> self_address = "10.20.92.78:54468"
  115. --> size = 1350
  116. t=42045 [st= 51] QUIC_SESSION_PACKET_HEADER_RECEIVED
  117. --> connection_id = "555689321347420270"
  118. --> entropy_flag = 0
  119. --> fec_flag = 0
  120. --> fec_group = 0
  121. --> packet_sequence_number = "2"
  122. --> reset_flag = 0
  123. --> version_flag = 0
  124. t=42045 [st= 51] QUIC_SESSION_STREAM_FRAME_RECEIVED
  125. --> fin = false
  126. --> length = 244
  127. --> offset = "0"
  128. --> stream_id = 1
  129. t=42045 [st= 51] QUIC_SESSION_CRYPTO_HANDSHAKE_MESSAGE_RECEIVED
  130. --> SHLO<
  131. STK : 0xF008DB736A6DA19A761E99CA754F2CCB5641F04773D31F9C38FF7D4B1B8845BB7273648A2545E07F953CFEC36686040FB0A2A6CE4101604B
  132. VER : 'Q023','Q022','Q019'
  133. MSPC: 100
  134. ICSL: 30
  135. KATO: 0
  136. CADR: [::ffff:32cb:aa76]:6792
  137. PUBS: 0x0313E1EF3F6D8151B677A9169A45C1976D578B480F73F62802D895F47EA4BE32
  138. CGST: 'QBIC'
  139. CFCW: 1048576
  140. IFCW: 1048576
  141. SFCW: 65536
  142. >
  143. t=42047 [st= 53] QUIC_SESSION_ACK_FRAME_SENT
  144. --> delta_time_largest_observed_us = 2000
  145. --> entropy_hash = 2
  146. --> largest_observed = "2"
  147. --> missing_packets = []
  148. --> received_packet_times = [{"received":-1486544512,"sequence_number":1},{"received":-1486542512,"sequence_number":2}]
  149. --> revived_packets = []
  150. --> truncated = false
  151. t=42047 [st= 53] QUIC_SESSION_STOP_WAITING_FRAME_SENT
  152. --> sent_info = {"least_unacked":"2"}
  153. t=42048 [st= 54] QUIC_SESSION_PACKET_SENT
  154. --> encryption_level = 2
  155. --> packet_sequence_number = "4"
  156. --> sent_time_us = -1486540512
  157. --> size = 40
  158. --> transmission_type = 0
  159. t=42052 [st= 58] QUIC_SESSION_PACKET_RECEIVED
  160. --> peer_address = "74.125.193.102:443"
  161. --> self_address = "10.20.92.78:54468"
  162. --> size = 40
  163. t=42052 [st= 58] QUIC_SESSION_PACKET_HEADER_RECEIVED
  164. --> connection_id = "555689321347420270"
  165. --> entropy_flag = 1
  166. --> fec_flag = 0
  167. --> fec_group = 0
  168. --> packet_sequence_number = "3"
  169. --> reset_flag = 0
  170. --> version_flag = 0
  171. t=42053 [st= 59] QUIC_SESSION_ACK_FRAME_RECEIVED
  172. --> delta_time_largest_observed_us = 0
  173. --> entropy_hash = 2
  174. --> largest_observed = "3"
  175. --> missing_packets = []
  176. --> received_packet_times = [{"received":-1486603072,"sequence_number":2},{"received":-1486599528,"sequence_number":3}]
  177. --> revived_packets = []
  178. --> truncated = false
  179. t=42053 [st= 59] QUIC_SESSION_STOP_WAITING_FRAME_RECEIVED
  180. --> sent_info = {"least_unacked":"1"}
  181. t=57019 [st=15025] QUIC_SESSION_PING_FRAME_SENT
  182. t=57019 [st=15025] QUIC_SESSION_PACKET_SENT
  183. --> encryption_level = 2
  184. --> packet_sequence_number = "5"
  185. --> sent_time_us = -1471568512
  186. --> size = 24
  187. --> transmission_type = 0
  188. t=57166 [st=15172] QUIC_SESSION_PACKET_RETRANSMITTED
  189. --> new_packet_sequence_number = "6"
  190. --> old_packet_sequence_number = "5"
  191. t=57226 [st=15232] QUIC_SESSION_PACKET_RETRANSMITTED
  192. --> new_packet_sequence_number = "7"
  193. --> old_packet_sequence_number = "6"
  194. t=57287 [st=15293] QUIC_SESSION_PACKET_RETRANSMITTED
  195. --> new_packet_sequence_number = "8"
  196. --> old_packet_sequence_number = "7"
  197. t=57687 [st=15693] QUIC_SESSION_PACKET_RETRANSMITTED
  198. --> new_packet_sequence_number = "9"
  199. --> old_packet_sequence_number = "8"
  200. t=58487 [st=16493] QUIC_SESSION_PACKET_RETRANSMITTED
  201. --> new_packet_sequence_number = "10"
  202. --> old_packet_sequence_number = "9"
  203. t=60088 [st=18094] QUIC_SESSION_PACKET_RETRANSMITTED
  204. --> new_packet_sequence_number = "11"
  205. --> old_packet_sequence_number = "10"
  206. t=63289 [st=21295] QUIC_SESSION_PACKET_RETRANSMITTED
  207. --> new_packet_sequence_number = "12"
  208. --> old_packet_sequence_number = "11"
  209. t=69692 [st=27698] QUIC_SESSION_PACKET_RETRANSMITTED
  210. --> new_packet_sequence_number = "13"
  211. --> old_packet_sequence_number = "12"
  212. t=82492 [st=40498] QUIC_SESSION_PACKET_RETRANSMITTED
  213. --> new_packet_sequence_number = "14"
  214. --> old_packet_sequence_number = "13"
  215. t=86019 [st=44025] QUIC_SESSION_ACK_FRAME_SENT
  216. --> delta_time_largest_observed_us = 43967000
  217. --> entropy_hash = 10
  218. --> largest_observed = "3"
  219. --> missing_packets = []
  220. --> received_packet_times = [{"received":-1486535512,"sequence_number":3}]
  221. --> revived_packets = []
  222. --> truncated = false
  223. t=86019 [st=44025] QUIC_SESSION_STOP_WAITING_FRAME_SENT
  224. --> sent_info = {"least_unacked":"4"}
  225. t=86019 [st=44025] QUIC_SESSION_CONNECTION_CLOSE_FRAME_SENT
  226. --> details = ""
  227. --> quic_error = 25 (QUIC_CONNECTION_TIMED_OUT)
  228. t=86020 [st=44026] QUIC_SESSION_PACKET_SENT
  229. --> encryption_level = 2
  230. --> packet_sequence_number = "15"
  231. --> sent_time_us = -1442567512
  232. --> size = 44
  233. --> transmission_type = 0
  234. t=86020 [st=44026] QUIC_SESSION_CLOSED
  235. --> from_peer = false
  236. --> quic_error = 25 (QUIC_CONNECTION_TIMED_OUT)
  237. t=86020 [st=44026] QUIC_SESSION_CLOSED
  238. --> from_peer = false
  239. --> quic_error = 25 (QUIC_CONNECTION_TIMED_OUT)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!