The software is ElastiFlow (robcowart/elastiflow) built on ELK stack. Its a pig for resources, and of course netflow is a fairly steep network tax, but all in all worth it IMHO. Great software for analysis anyway.
Yeah I agree... its time for some further investigation. I'll decode the...
@mat200:
Device Type
IPC-HDBW4431R-ZS
Software Version
2.420.0000.21.R, Build Date: 2016-07-24
WEB Version
3.2.1.364036
ONVIF Version
2.42
Device Type
IPC-HDBW4433R-ZS
System Version
2.621.0000.28.R, Build Date: 2017-09-12
WEB Version
3.2.1.495007
ONVIF Version
16.12(V2.3.1.460928)
@Dramus...
Both .51 and .52 are Dahua cameras, and they beacon to China regularly. (see attached)
Anyone have more information on this?
I would strongly advise blocking their egress on your routers or configure their IPs static with no default route.