base/bif/plugins/Zeek_GTPv1.events.bif.zeek¶

GLOBAL¶

Namespace: GLOBAL

Summary¶

Events¶

`gtpv1_create_pdp_ctx_request`: `event`	Generated for GTPv1-C Create PDP Context Request messages.
`gtpv1_create_pdp_ctx_response`: `event`	Generated for GTPv1-C Create PDP Context Response messages.
`gtpv1_delete_pdp_ctx_request`: `event`	Generated for GTPv1-C Delete PDP Context Request messages.
`gtpv1_delete_pdp_ctx_response`: `event`	Generated for GTPv1-C Delete PDP Context Response messages.
`gtpv1_g_pdu_packet`: `event`	Generated for GTPv1 G-PDU packets.
`gtpv1_message`: `event`	Generated for any GTP message with a GTPv1 header.
`gtpv1_update_pdp_ctx_request`: `event`	Generated for GTPv1-C Update PDP Context Request messages.
`gtpv1_update_pdp_ctx_response`: `event`	Generated for GTPv1-C Update PDP Context Response messages.

Detailed Interface¶

Events¶

gtpv1_create_pdp_ctx_request¶

Type: event (c: connection, hdr: gtpv1_hdr, elements: gtp_create_pdp_ctx_request_elements)

Generated for GTPv1-C Create PDP Context Request messages.

C: The connection over which the message is sent.
Hdr: The GTPv1 header.
Elements: The set of Information Elements comprising the message.

gtpv1_create_pdp_ctx_response¶

Type: event (c: connection, hdr: gtpv1_hdr, elements: gtp_create_pdp_ctx_response_elements)

Generated for GTPv1-C Create PDP Context Response messages.

C: The connection over which the message is sent.
Hdr: The GTPv1 header.
Elements: The set of Information Elements comprising the message.

gtpv1_delete_pdp_ctx_request¶

Type: event (c: connection, hdr: gtpv1_hdr, elements: gtp_delete_pdp_ctx_request_elements)

Generated for GTPv1-C Delete PDP Context Request messages.

C: The connection over which the message is sent.
Hdr: The GTPv1 header.
Elements: The set of Information Elements comprising the message.

gtpv1_delete_pdp_ctx_response¶

Type: event (c: connection, hdr: gtpv1_hdr, elements: gtp_delete_pdp_ctx_response_elements)

Generated for GTPv1-C Delete PDP Context Response messages.

C: The connection over which the message is sent.
Hdr: The GTPv1 header.
Elements: The set of Information Elements comprising the message.

gtpv1_g_pdu_packet¶

Type: event (outer: connection, inner_gtp: gtpv1_hdr, inner_ip: pkt_hdr)

Generated for GTPv1 G-PDU packets. That is, packets with a UDP payload that includes a GTP header followed by an IPv4 or IPv6 packet.

Outer: The GTP outer tunnel connection.
Inner_gtp: The GTP header.
Inner_ip: The inner IP and transport layer packet headers.

Note

Since this event may be raised on a per-packet basis, handling it may become particularly expensive for real-time analysis.

gtpv1_message¶

Type: event (c: connection, hdr: gtpv1_hdr)

Generated for any GTP message with a GTPv1 header.

C: The connection over which the message is sent.
Hdr: The GTPv1 header.

gtpv1_update_pdp_ctx_request¶

Type: event (c: connection, hdr: gtpv1_hdr, elements: gtp_update_pdp_ctx_request_elements)

Generated for GTPv1-C Update PDP Context Request messages.

C: The connection over which the message is sent.
Hdr: The GTPv1 header.
Elements: The set of Information Elements comprising the message.

gtpv1_update_pdp_ctx_response¶

Type: event (c: connection, hdr: gtpv1_hdr, elements: gtp_update_pdp_ctx_response_elements)

Generated for GTPv1-C Update PDP Context Response messages.

C: The connection over which the message is sent.
Hdr: The GTPv1 header.
Elements: The set of Information Elements comprising the message.

Read the Docs v: current (v5.2.0)

Versions: master; v5.2.0; v5.1.3; v5.1.2; v5.1.1; v5.1.0; v5.0.7; v5.0.6; v5.0.5; v5.0.4; v5.0.3; v5.0.2; v5.0.1; v5.0.0; v4.2.2; v4.1.1; v4.0.9; v3.2.3; v3.1.4; v3.0.14; lts; devel; current

Downloads: html

On Read the Docs: Project Home; Builds