Argus-2.0 progress report
Carter Bullard
carter at qosient.com
Fri Aug 18 10:55:40 EDT 2000
Gentle People,
I have an interim working version of Argus-2.0 that
I've got working on Linux and Solaris. So far I have
the architectural structure of Argus-2.0, multithreaded,
new signal handling strategies, etc... and some rudimentary
5-tuple flow tracking, running on both Linux and Solaris.
I've added the new probe identifier support, variable length
record support, direct support for record aggregation,
flow transaction identifiers and the new packet timing
metrics needed for better application profiling/performance
monitoring. I'm using CVS to help manage the code.
So we've come some way.
I still have multiple output file support, multiple
independent filtering support, application data reporting,
which involves implementing the event strategy and of course,
I have to put back in the TCP protocol support, and add
some other protocols of interest, like IGMP, and RTP.
So there is still a lot to do.
There are quite a few (large number) of bugs, so
I'm going to hold off distributing for general testing
until the end of the month. At that time, I'd like to
get some portability testing done, if there are any
volunteers.
Now, off for a bagel and some coffee and then back to
the software grinding machine.
Carter
Carter Bullard
QoSient, LLC
300 E. 56th Street, Suite 17A
New York, New York 10022
carter at qosient.com
Phone +1 212 813-9426
Fax +1 212 813-9426
More information about the argus
mailing list