summaryrefslogtreecommitdiffstats
path: root/doc/pgsql.table
blob: 193f747a65179d4514d9fe946cad294c76aea6e0 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
/*  ulogd.pgsql.table, Version 0.1
 *
 *  sample of a postgres table for ulogd
 *
 *  All columns except "id" are optional!  Comment all unwanted
 *  columns out, e.g. by prefixing them with '--'
 *
 *  "raw_pkt" is not supported by ulogd_PGSQL
 */

CREATE SEQUENCE "seq_ulog";

CREATE TABLE "ulog" (
        "id"             integer DEFAULT nextval('seq_ulog') NOT NULL,

        "oob_prefix"     character varying(32),
        "oob_time_sec"   integer,
        "oob_time_usec"  integer,
        "oob_mark"       bigint,
        "oob_in"         character varying(32),
        "oob_out"        character varying(32),

        "raw_mac"        character varying(80),
        "raw_pktlen"     bigint,

        "ip_ihl"         smallint,
        "ip_tos"         smallint,
        "ip_totlen"      integer,
        "ip_id"          integer,
        "ip_fragoff"     integer,
        "ip_ttl"         smallint,
        "ip_protocol"    smallint,
        "ip_csum"        integer,

/* log IPs as unsigned int32 (default)                */
        "ip_saddr"       bigint,
        "ip_daddr"       bigint,

/* log IPs as string (--with-pgsql-log-ip-as-string)  */
--      "ip_saddr"       character varying(40),
--      "ip_daddr"       character varying(40),

/* log IPs as inet   (--with-pgsql-log-ip-as-string)  */
--      "ip_saddr"       inet,
--      "ip_daddr"       inet,


        "tcp_sport"      integer,
        "tcp_dport"      integer,
        "tcp_seq"        bigint,
        "tcp_ackseq"     bigint,
        "tcp_urg"        boolean,
        "tcp_ack"        boolean,
        "tcp_psh"        boolean,
        "tcp_rst"        boolean,
        "tcp_syn"        boolean,
        "tcp_fin"        boolean,
        "tcp_window"     integer,
        "tcp_urgp"       integer,

        "udp_sport"      integer,
        "udp_dport"      integer,
        "udp_len"        integer,

        "icmp_type"      smallint,
        "icmp_code"      smallint,
        "icmp_echoid"    integer,
        "icmp_echoseq"   integer,
        "icmp_gateway"   bigint,
        "icmp_fragmtu"   integer,

        "pwsniff_user"   character varying(30),
        "pwsniff_pass"   character varying(30),

        "ahesp_spi"      smallint,

        "local_time"     bigint,
        "local_hostname" character varying(40)
);