Merge pull request #1209 from Hacker0x01/sw/small-tweaks-to-gateway-docs

Apply small improvements to gateway hacker traffic logs page
Hacker0x01 · Oct 20, 2023 · 473c3e3 · 473c3e3
2 parents 8344c35 + 9b7ef70
commit 473c3e3
Showing 1 changed file with 5 additions and 4 deletions.
diff --git a/docs/organizations/vpn-hacker-traffic-logs.md b/docs/organizations/vpn-hacker-traffic-logs.md
@@ -18,7 +18,7 @@ Three types of logs are available that are described in detail below:
  Field  | Description
 --------|------------
 HTTP Host | Hostname in the HTTP header for the HTTP request.
-Email | Email address of the user who made the HTTP request. This is generated by the WARP client.
+Email | [Email address alias](/hackers/hacker-email-alias.html) associated with the user who made the HTTP request. This is generated by the WARP client.
 Action | The Gateway Action taken based on the first rule that matched (for example, Allow or Block).
 Datetime | Date and time of the HTTP request.
 URL | Full URL of the HTTP request.
@@ -36,13 +36,14 @@ SessionID | The session identifier of this network session.
 
 Field | Description
 ------|------------
-Destination IP | IP address of the packet’s target.
+Destination IP | IP address of the packet's target.
+Destination Port | Port of the packet's target.
 Action | The Gateway Action taken based on the first rule that matched (for example, Allow or Block). 
 Session ID | ID of the unique session.
 Datetime | Date and time of the session.
 Source Port | Source port number for the packet.
 SNI | Host whose Server Name Indication (SNI) header Gateway will filter traffic against.
-Email | Email address of the user sending the packet.
+Email | [Email address alias](/hackers/hacker-email-alias.html) associated with the user sending the packet.
 OverrideIP | Overridden IP of the network session, if any.
 OverridePort | Overridden port of the network session, if any.
 Transport | Transport protocol used for this session. Possible values are **tcp**, **quic** and **udp**.
@@ -62,7 +63,7 @@ ConnectionReuse | Whether the TCP connection was reused for multiple HTTP reques
 EgressColoName | The name of the Cloudflare colocation from which traffic egressed to the origin.
 EgressIP | Source IP used when egressing traffic from Cloudflare to the origin.
 EgressPort | Source port used when egressing traffic from Cloudflare to the origin.
-Email | [Email address alias](/hackers/hacker-email-alias.html) associated with the user identity which initiated the network session.
+Email | [Email address alias](/hackers/hacker-email-alias.html) associated with the user who initiated the network session.
 IngressColoName | The name of the Cloudflare colocation to which traffic ingressed.
 Offramp | The type of destination to which the network session was routed. Possible values are **internet**, **magic**, **cfd_tunnel** and **WARP**.
 OriginIP | The IP of the destination origin for the network session.