Can I use Argus to do IP fragment/reassemble tasks?
Carter Bullard
carter at qosient.com
Thu May 23 07:13:14 EDT 2002
Hey George,
Argus is a flow monitor. As a monitor it does read
fragments and performs reassembly, but argus does not
generate IP packets.
If you've got a tcpdump file, run argus like this:
argus -r tcpdump.file -w - | ra -n
or
argus -r tcpdump.file -w /tmp/argus.out
ra -nr /tmp/argus.out
and you will see some of what the argus package can do
for you.
It sounds like you should be looking at source for an
IP stack, which is available in the Linux source
code.
Carter
Carter Bullard
QoSient, LLC
300 E. 56th Street, Suite 18K
New York, New York 10022
carter at qosient.com
Phone +1 212 588-9133
Fax +1 212 588-9134
http://qosient.com
> -----Original Message-----
> From: owner-argus-info at lists.andrew.cmu.edu
> [mailto:owner-argus-info at lists.andrew.cmu.edu] On Behalf Of
> maillist151 at sohu.com
> Sent: Thursday, May 23, 2002 12:01 AM
> To: argus-info at lists.andrew.cmu.edu
> Cc: argus-info at lists.andrew.cmu.edu
> Subject: Can I use Argus to do IP fragment/reassemble tasks?
>
>
> Hi, pals!
>
> I have got some some IP fragment packages of a large datagram.
> (more than 1500 bytes). Can I use Argus to reassemble the IP
> packages?
>
> Another question, if I have a large datagram from higher
> level (maybe TCP),
> can I use Argus to fragment the large datagram into small IP
> packages?
>
> Best regards,
> George Ma
>
>
More information about the argus
mailing list