More information is available through the Menus above
Inbound SSH Traffic
(UNIX_TIMESTAMP() - 1800) GROUP BY src_ip ORDER BY COUNT(DISTINCT(dst_ip)) DESC LIMIT 10";
$result = $conn2->query($sql);
//If there are results, display them in a table
if ($result->num_rows >0) {
echo "Inbound connections from the last 30 minutes";
echo "
"; echo "
";
} else {
echo "No Results, something is likely broken.";
}
$conn2->close();
?>
"; echo "
| Source IP | # of targets | # of connections | Source Whois | Destination IPs |
|---|---|---|---|---|
| ".$row["src_ip"]." | ".$row["COUNT(DISTINCT(dst_ip))"]." | ".$row["COUNT(src_ip)"]." | Whois | List |
Total Connections, every 30 minutes for the past 24hrs.
(UNIX_TIMESTAMP() - 900) GROUP BY src_ip";
$iplist = mysqli_query($conn1, $query1);
echo "Locations of the Unique Source IP addresses from the last 15 minutes";
//Initialize your first couple variables
$encodedString = ""; //This is the string that will hold all your location data
$x = 0; //This is a trigger to keep the string tidy
//Multiple rows are returned
while ($row = mysqli_fetch_array($iplist))
{
$ip = $row['src_ip'];
$location = $geoip->lookupLocation($ip);
//This is to keep an empty first or last line from forming, when the string is split
if ( $x == 0 )
{
$separator = "";
}
else
{
//Each row in the database is separated in the string by four *'s
$separator = "****";
}
//Saving to the String, each variable is separated by three &'s
$encodedString = $encodedString.$separator.
"IP: ".$row['src_ip'].
"
Lat: ".$location->latitude.
"
Long: ".$location->longitude.
"