Fwd: BOUNCE argus-info at lists.andrew.cmu.edu: Non-member submission from [Michael Anderson <mca at arlut.utexas.edu>]
Jeffrey T Eaton
jeaton+ at andrew.cmu.edu
Thu Oct 18 11:20:06 EDT 2001
AiAAp
ceived: from lists2.andrew.cmu.edu (LISTS2.ANDREW.CMU.EDU [128.2.10.216])
by mx2.andrew.cmu.edu (8.12.0.Beta16/8.12.0.Beta16) with ESMTP id f9IEtXtx005801
for <jeaton+majordomo at andrew.cmu.edu>; Thu, 18 Oct 2001 10:55:33 -0400
Received: (from postman at localhost)
by lists2.andrew.cmu.edu (8.12.0.Beta16/8.12.0.Beta16) id f9IEtX7X011753;
Thu, 18 Oct 2001 10:55:33 -0400 (EDT)
-------------- next part --------------
Approved: poeppinglist
Message-ID: <3BCEEDFB.2F1AB470 at arlut.utexas.edu>
Date: Thu, 18 Oct 2001 09:58:04 -0500
From: Michael Anderson <mca at arlut.utexas.edu>
X-Mailer: Mozilla 4.76 [en] (Windows NT 5.0; U)
X-Accept-Language: en
MIME-Version: 1.0
To: argus-info at lists.andrew.cmu.edu
Subject: new user needs help
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
I am a new argus user. I have built and installed argus 2.0.3. I then
started argus as: argus -d -e `hostname` -i eth1 -U128 -mRS 30 -w
/var/log/argus/argus.out. It seems to start up OK and the output file is
generated. However, the data in the file indicates that argus is not
seeing any connections. I'm running snort on the same interface. Can I
have only 1 packet capture utility on the interface at a time? Any
ideas as to why argus is not seeing any data.
Thanks,
Mike
More information about the argus
mailing list