Need help using argus
Carter Bullard
carter at qosient.com
Thu Nov 8 09:33:23 EST 2001
These are the hosts that 192.168.1.1 is talking to,
so they will be included in the top talker list.
If you only want the top talker, use "-N 1" to pick
the first one in the list.
Carter
Carter Bullard
QoSient, LLC
300 E. 56th Street, Suite 18K
New York, New York 10022
carter at qosient.com
Phone +1 212 588-9133
Fax +1 212 588-9134
http://qosient.com
> -----Original Message-----
> From: freddy at simicro-distribution.mg
> [mailto:freddy at simicro-distribution.mg] On Behalf Of Freddy
> RAKOTOARISON
> Sent: Thursday, November 08, 2001 7:09 AM
> To: argus-info at lists.andrew.cmu.edu; carter at qosient.com
> Subject: Re: Need help using argus
>
>
>
> Hi,
>
> I'm using 2.0.1-3 argus version, and I don't know why
> I've different record using the command below. Or, I
> specified that it will do record simply for host 192.168.1.1.
>
>
> # ramon -L 0 -M topN -r argus-dernier.data -dst port smtp and
> host 192.168.1.1
>
> ramon TopN Report
> Start_Time Duration Flgs Type SrcAddr
> SrcPkt Dstpkt SrcBytes DstBytes state
> 10-25-01 14:28:58.253897 11541.459753 * ip 192.168.1.1
> 1405 2050 180992 2156292 CON
> 10-25-01 14:28:58.253897 11541.459753 * ip 192.168.1.7
> 1855 1189 2138638 92843 CON
> 10-25-01 14:51:30.797655 9928.665660 * ip 192.168.1.90
> 195 216 17654 88149 CON
>
> What means the two last line ?
>
> Thanks in advance
>
> Cordialy!
>
> --
> *** Njara ***
> =================================================
> # Freddy RAKOTOARISON #
> # Simicro Internet #
> # E-mail : freddy at simicro-internet.mg #
> # Tel : (261) 20 22 648 83 #
> =================================================
>
>
>
>
>
More information about the argus
mailing list