Pakon Hostname sorting

So far, I’ve been quite happy with the Pakon addon. I was initially hesitant since it relies on Suricata and I had some difficulties with Suricata before.

One thing I was wondering is if there are plans to be able to sort the Hostname field by domain. Right now, it sorts alphabetically from left to right. For this to be truly helpful, it should sort by domain.

For instance, this is how it currently sorts by Hostname.

yesterday 8:21:36 AM    00:00:04        adirondack      archive.canonical.com   http    1.04 KiB        684 Bytes
yesterday 3:12:11 PM    00:00:02        adirondack      archive.getdeb.net      http    534 Bytes       727 Bytes
yesterday 9:20:01 PM    00:00:00        adirondack      assets.gitlab-static.net        https   28.23 KiB       968.53 KiB
yesterday 8:35:47 PM    00:02:48        adirondack      button.flattr.com       https   1.7 KiB 8.99 KiB
yesterday 3:19:30 PM    00:02:07        adirondack      c.paypal.com    https   7.23 KiB        47.04 KiB
yesterday 3:19:43 PM    00:01:54        adirondack      c6.paypal.com   https   1.7 KiB 7.08 KiB
yesterday 3:11:46 PM    00:00:00        adirondack      changelogs.ubuntu.com   http    496 Bytes       396 Bytes
yesterday 8:36:53 PM    00:01:42        adirondack      coin.amazonpay.com      https   2.45 KiB        7.46 KiB
yesterday 8:27:46 PM    00:02:15        adirondack      dl.winehq.org   http    172 Bytes       92 Bytes
yesterday 8:22:02 PM    00:01:08        adirondack      dlmping2.adobe.com      https   1.93 KiB        7.22 KiB
yesterday 8:26:56 PM    00:00:00        adirondack      dlmping3.adobe.com      https   1.09 KiB        3.45 KiB

This is how it should, if you’re going to follow the DNS conventions.

yesterday 8:22:02 PM    00:01:08        adirondack      dlmping2.adobe.com      https   1.93 KiB        7.22 KiB
yesterday 8:26:56 PM    00:00:00        adirondack      dlmping3.adobe.com      https   1.09 KiB        3.45 KiB
yesterday 8:36:53 PM    00:01:42        adirondack      coin.amazonpay.com      https   2.45 KiB        7.46 KiB
yesterday 8:21:36 AM    00:00:04        adirondack      archive.canonical.com   http    1.04 KiB        684 Bytes
yesterday 8:35:47 PM    00:02:48        adirondack      button.flattr.com       https   1.7 KiB 8.99 KiB
yesterday 3:19:30 PM    00:02:07        adirondack      c.paypal.com    https   7.23 KiB        47.04 KiB
yesterday 3:19:43 PM    00:01:54        adirondack      c6.paypal.com   https   1.7 KiB 7.08 KiB
yesterday 3:11:46 PM    00:00:00        adirondack      changelogs.ubuntu.com   http    496 Bytes       396 Bytes
yesterday 3:12:11 PM    00:00:02        adirondack      archive.getdeb.net      http    534 Bytes       727 Bytes
yesterday 9:20:01 PM    00:00:00        adirondack      assets.gitlab-static.net        https   28.23 KiB       968.53 KiB
yesterday 8:27:46 PM    00:02:15        adirondack      dl.winehq.org   http    172 Bytes       92 Bytes

This allows true grouping of domainnames within this list. I believe seeing which domains requests are for is what I believe the true value of this output is.

2 Likes