Jitter and intrapacket delay
Carter Bullard
carter at qosient.com
Fri Jul 13 09:56:04 EDT 2007
As I said, you are using the wrong syntax. While that is not your
only problem,
it is a problem. There are no "jit" or "intpkt" fields and all
records do not have
jitter information in them. Here is my attempt:
ra -c '|' -S amon -s +sintpkt +dintpkt +dur
StartTime|Flgs|Proto|SrcAddr|Sport|Dir|DstAddr|Dport|SrcPkts|DstPkts|
SrcBytes|DstBytes|State|SIntPkt|DIntPkt|Dur
09:53:30.921307| e |arp|192.168.0.202||who|192.168.0.1||3|0|180|
0|INT|||0.000995
09:53:33.730313| e |udp|192.168.0.1|router|->|192.168.0.255|
router|1|0|66|0|INT|||0.000000
09:53:33.856879| e |tcp|207.237.36.98|9171|<?>|216.92.197.167|
imap|1|1|66|66|FIN|||0.023512
09:53:33.859093| e |tcp|207.237.36.98|6183|<?>|17.250.248.152|
imaps|8|6|676|811|CON|270507.000000|350512.000000|1.893553
09:53:34.064204| e |tcp|207.237.36.98|fsc-port|->|
216.92.197.167|imap|17|26|1202|31629|CON|31277.000000|11717.400391|
0.500436
09:53:34.242689| e |tcp|207.237.36.98|6206|<?>|216.92.197.167|
imap|2|1|170|134|CON|||0.035715
09:53:34.559823| e |tcp|207.237.36.98|9218|->|17.250.248.152|
imaps|18|16|1835|4544|RST|81839.820312|95100.867188|1.510698
09:53:34.908662| e |udp|207.237.36.98|metasage|<->|
192.43.244.18|ntp|1|1|90|90|CON|||0.123894
09:53:35.743563| e |tcp|192.168.0.66|54339|->|192.168.0.82|
monitor|12|11|811|3538|CON|389905.000000|428862.000000|4.288958
09:53:35.752332| e |udp|192.168.0.82|filenet-rpc|<->|
192.168.0.66|domain|3|3|254|420|CON|723.000000|499.000000|0.001720
09:53:39.619407| e |arp|192.168.0.1||who|192.168.0.74||1|0|60|0|
INT|||0.000000
09:53:39.619422| e |arp|192.168.0.1||who|192.168.0.3||1|0|60|0|
INT|||0.000000
09:53:39.619427| e |arp|192.168.0.1||who|192.168.0.203||1|0|60|
0|INT|||0.000000
09:53:40.792242| e |tcp|192.168.0.66|54339|->|192.168.0.82|
monitor|4|4|264|1468|CON|1190073.000000|1190088.000000|4.000573
Carter
On Jul 13, 2007, at 7:45 AM, Urtho wrote:
> argus -JR -P560 -i eth0 -U512 -m -D8 -F /etc/argus_no.conf >> /
> argus/debug.log >2&1 &
>
> debug.log:
> argus[30164]: 13 Jul 07 13:36:33.879604 started
> argus[30164]: 13 Jul 07 13:36:33.880359 ArgusGetInterfaceStatus:
> interface eth0 is up
> argus[30164]: 13 Jul 07 13:39:22.702690 connect from
> localhost.localdomain
>
> [root at radius argus]# ra -c '|' -n -S localhost:560 -s +jit +sjit
> +djit +intpkt +dur
> 13:43:12.075494| e V |rtp|193.192.170.34|5312|<->|83.15.159.92|
> 4872|250|152|18500|10646|CON|||4.980093
>
> :(((
>
>
More information about the argus
mailing list