listening on multiple interfaces
Carter Bullard
carter at qosient.com
Tue Apr 30 16:10:37 EDT 2002
Hey Jeff,
Argus 2.0.4-5 can output its packet stream to a tcpdump
formatted file, but you need to specify it using an argus.conf
style configuration file. Checkout the
#ARGUS_PACKET_CAPTURE_FILE="/var/log/argus/packet.out"
directive in the sample argus.conf file in argus-2.0.5.beta.whatever.
This may do what you want?
Carter
Carter Bullard
QoSient, LLC
300 E. 56th Street, Suite 18K
New York, New York 10022
carter at qosient.com
Phone +1 212 588-9133
Fax +1 212 588-9134
http://qosient.com
> -----Original Message-----
> From: owner-argus-info at lists.andrew.cmu.edu
> [mailto:owner-argus-info at lists.andrew.cmu.edu] On Behalf Of Jeff Wolfe
> Sent: Tuesday, April 30, 2002 3:49 PM
> To: argus-info at lists.andrew.cmu.edu
> Subject: listening on multiple interfaces
>
>
>
> Hi Folks,
>
> I've gotten used to argus' ability to listen on multiple
> ports on the same
> machine. (we use the Shomiti Century taps which have 2
> outputs, one for TX and
> one for RX.)
> Is anyone aware of a tool that can write tcpdump formatted
> output files but
> capture from two interfaces simultaneously? Failing that, I
> guess I could use
> or write a tool to multiplex two seperate tcpdump streams together..
>
> Any ideas?
>
> I need to capture some streams for analysis and the only
> format my tools
> understand is tcpdump capture files.
>
> Thanks..
>
>
> -JEff
>
>
>
More information about the argus
mailing list