Network Traffic
network_traffic
The Network Traffic object describes characteristics of network traffic. Network traffic refers to data moving across a network at a given point of time.
Attributes
| Caption | Name | Type | Description |
|---|---|---|---|
| Total Bytes | bytes | Long | The total number of bytes (in and out). |
| Bytes In | bytes_in | Long | The number of bytes sent from the destination to the source. |
| Bytes Missed | bytes_missed | Long | Indicates the number of bytes missed, which is representative of packet loss. |
| Bytes Out | bytes_out | Long | The number of bytes sent from the source to the destination. |
| Chunks | chunks | Long | The total number of chunks (in and out). |
| Chunks In | chunks_in | Long | The number of chunks sent from the destination to the source. |
| Chunks Out | chunks_out | Long | The number of chunks sent from the source to the destination. |
| Total Packets | packets | Long | The total number of packets (in and out). |
| Packets In | packets_in | Long | The number of packets sent from the destination to the source. |
| Packets Out | packets_out | Long | The number of packets sent from the source to the destination. |
| Raw Data | raw_data | JSON | Group: |
| Record ID | record_id | String | Group: |
| Unmapped | unmapped | Unmapped[] | Data from the source that was not mapped into the schema. |
Relationships
Inbound Relationships
These objects and events reference Network Traffic in their attributes:
- FTP Activity
- Airborne Broadcast Activity
- HTTP Activity
- Network File Activity
- Tunnel Activity
- SSH Activity
- NTP Activity
- Web Resource Access Activity
- Drone Flights Activity
- DHCP Activity
- RDP Activity
- Web Resources Activity
- DNS Activity
- Network Activity
- SMB Activity
Outbound Relationships
Network Traffic references the following objects and events in its attributes:
This page describes qdm-1.5.1+ocsf-1.6.0
Updated 5 days ago