new code on the server rc.40
Carter Bullard
carter at qosient.com
Mon Feb 26 22:30:55 EST 2007
Hey Peter,
I think this is an argus problem. Didn't we equate it with to a "
same packet
going by in the same direction but in two vlans " problem? Did you have
some packets that demonstrated this?
Carter
On Feb 26, 2007, at 10:12 PM, Peter Van Epp wrote:
> Looks to still be broken. As expected both argus and clients compile
> fine on Mac OS X but the time stamp is still 0:
>
>
> test4:~ vanepp$ /usr/local/bin/argus -r test.eth0.tcp -r
> test.eth1.tcp -w test.both.argus
> test4:~ vanepp$ /usr/local/bin/ra3 -r test.both.argus -n
> 08:21:29.155232 tcp 85.94.109.175.50608 -
> > 142.58.101.28.25 2 0
> 122 0 CON
> 08:21:38.155048 I tcp 85.94.109.175.113 ?
> > 142.58.101.28.60420 1 0
> 60 0 RST
> 08:21:38.155056 icmp 85.94.109.175 -
> > 142.58.101.28 1 0
> 70 0 URP
> 08:21:29.156385 d tcp 85.94.109.175.50608 -
> > 142.58.101.28.25 1 6 78
> 601 CON
> 16:00:00.000000 tcp 85.94.109.175.113 -
> > 142.58.101.28.60420 0 1
> 0 66 REQ
> 08:21:48.566009 tcp 85.94.109.175.50608 -
> > 142.58.101.28.25 0 4 0
> 328 FIN
> 19:10:12.845022 man 0
> 0 30 1 16 7
> 30 1464668 STP
> test4:~ vanepp$
>
> Peter Van Epp / Operations and Technical Support
> Simon Fraser University, Burnaby, B.C. Canada
>
>
More information about the argus
mailing list