[ARGUS] Question with ra -d
Peter Van Epp
vanepp at sfu.ca
Tue Jul 20 13:42:03 EDT 2004
Try adding the -U flag to the argus_bpf (or argus_whatever) itself as
in:
argus_bpf -dU 64 -w argus.out
I know that works on 2.0.6 because I've done it. There may be a bug or a
syntax change in the config file command.
Peter Van Epp / Operations and Technical Support
Simon Fraser University, Burnaby, B.C. Canada
On Tue, Jul 20, 2004 at 01:16:40PM -0400, Jeff Wolfe wrote:
>
> Hi folks,
>
> I've been using an older version of argus to sample traffic on a link.
> I'd been using ra -d s64:d64 .... to get the first 64 bytes of the
> flows. After upgrading to 2.0.6, calling ra with the same options
> doesn't seem to produce any output. I do have ARGUS_CAPTURE_DATA_LEN=64
> in my argus.conf file..
>
> Any ideas?
>
> Thanks!
>
> -JEff
More information about the argus
mailing list