Bug in Argus 2.0.3??, and possibly others (not reporting on some traffic)
Carter Bullard
carter at qosient.com
Thu Oct 18 18:17:25 EDT 2001
Hey Russell,
The types of things that will fail are MAC address
filtering, TCP state specific filtering, .... Est is
a generic condition and will work.
Carter
Carter Bullard
QoSient, LLC
300 E. 56th Street, Suite 18K
New York, New York 10022
carter at qosient.com
Phone +1 212 588-9133
Fax +1 212 588-9134
http://qosient.com
> -----Original Message-----
> From: owner-argus-info at lists.andrew.cmu.edu
> [mailto:owner-argus-info at lists.andrew.cmu.edu] On Behalf Of
> Russell Fulton
> Sent: Thursday, October 18, 2001 3:54 PM
> To: 'argus'
> Subject: Re: RE: Bug in Argus 2.0.3??, and possibly others
> (not reporting on some traffic)
>
>
>
> On Thu, 18 Oct 2001 09:32:13 -0400 Carter Bullard
> <carter at qosient.com>
> wrote:
>
> > If anyone is filtering when connected in real-time
> > to an argus, and the filter involves anything other
> > than the standard flow descriptors, then you will
> > have a problem getting all the records. I'll have
> > the test version up on the server today.
>
>
> Ummm... what are 'standard flow descriptors'? I use 'not
> est' in some
> of my applications.
>
> Russell Fulton, Computer and Network Security Officer
> The University of Auckland, New Zealand
>
>
More information about the argus
mailing list