Need help using argus
Carter Bullard
carter at qosient.com
Fri Nov 9 07:34:05 EST 2001
Argus does support RTP discovery. Doesn't Net2phone
use H.323 and RTP for its sessions? Argus will report
the RTP sessions, and the filters all support rtp
as a keyword, so that should help.
If you cannot rely on the destination port of the
flow, Argus supports capturing up to 512 bytes of user
data for any transaction. This is more than enough to
recognize the service that is being supported by the
connection. You will need to write your own routines
to analyze the user data buffer. ragrep() does allow
you to match user data buffers against regular
expressions, so you could use this to find gnutella,
http, napster, kazaa keywords in the user data buffers.
Carter
Carter Bullard
QoSient, LLC
300 E. 56th Street, Suite 18K
New York, New York 10022
carter at qosient.com
Phone +1 212 588-9133
Fax +1 212 588-9134
http://qosient.com
> -----Original Message-----
> From: freddy at simicro-distribution.mg
> [mailto:freddy at simicro-distribution.mg] On Behalf Of Freddy
> RAKOTOARISON
> Sent: Friday, November 09, 2001 6:40 AM
> To: argus-info at lists.andrew.cmu.edu; carter at qosient.com
> Subject: Re: Need help using argus
>
>
>
> Hi !
>
> Using argus, if I'm a provider, what is the best way to
> recognise on my server that one connection of my client
> provide by Net2phone & Napster for example ?
>
> Thank's !
>
> --
> *** Njara ***
> =================================================
> # Freddy RAKOTOARISON #
> # Simicro Internet #
> # E-mail : freddy at simicro-internet.mg #
> # Tel : (261) 20 22 648 83 #
> =================================================
>
>
>
>
>
More information about the argus
mailing list