argus structures...
Russell Fulton
r.fulton at auckland.ac.nz
Thu Jun 21 22:37:13 EDT 2001
On Thu, 21 Jun 2001 22:14:59 -0400 Carter Bullard <carter at qosient.com>
wrote:
>
> The -z option is more precise that the -Z flag
Not always ;-) for single packet flow or flows with one packet in each
direction -Zb tells the whole story. Since most scans consist of just
this sort of traffic -Zb is a just what watcher needs.
You can also use -Zb to tell if any packets when a particular direction
in a tcp flow without going to -c.
Russell Fulton, Computer and Network Security Officer
The University of Auckland, New Zealand
More information about the argus
mailing list