Problem with tcpdump filters
Alaios
alaios at yahoo.com
Tue Dec 21 09:42:18 EST 2004
Hi... I face a problem with the argus and the filter
that i need to apply...
The following command
tcpdump -i eth4 -vv ip[1]==0x28 with the filter works
fine..
The problem is that i cannot apply it to argus...
argus -d -M 0.01 -S 0.01 -i $1 -w my-AF1 ip[1]==0x28
returns no packet...
I think that the problem is argus-oriented.. because
the ra give me packets but ends with a no data seen
message
e.x
....
skipped a bunch of lines
04-12-21 16:41:04.496108 0.200060 man
pkts 604 bytes 629368 drops 0 flows
3 closed 0 CON
04-12-21 16:41:04.696168 0.200053 man
pkts 714 bytes 743988 drops 0 flows
3 closed 0 CON
No data seen.
Plz suggest me something as fast a u can
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
More information about the argus
mailing list