Piping argus output
Yotam Rubin
yotam at makif.omer.k12.il
Mon Jun 4 21:35:58 EDT 2001
Greetings,
I've been thinking that it would be nice if argus could pipe its output
to external programs. This applies for both the captured packets and the
flow data. A possible syntax for this piping would be to prefix the argument
of relevant directives (ARGUS_OUTPUT_FILE and ARGUS_PACKET_CAPTURE_FILE) with
'|'. Piping is pretty useful, as it extremely increases flexibility.
Piping can come in handy when one does not wish to store packet dumps on one's
logging argus host. One could pipe the packet dumps to an ssl wrapped
netcat and securely transmit packets to a safe host. It would be nice of course
if argus supported this kind of packet transmission in the same manner that
argus supports flow transmission, but flexibility is always solicited.
What do you think?
Regards, Yotam Rubin
More information about the argus
mailing list