flow model and argus irc channel
CS Lee
geek00l at gmail.com
Tue Apr 21 12:11:05 EDT 2009
hi oguz,
I'm not quite sured what you mean when you say "some uni, and some bi",
argus is using biflow model by default.
I would like to see a argus file if you can send me.
Anyway I have just registered freenode #argus channel this morning and would
like to let people know about it in mailing list tomorrow, since you asked
it here so I would like to say that, I will be in the channel if you guys
have any interest in argus, please join there and share out. But as usual i
will say mailing list is the best place to ask stuffs since Carter and the
gang are around, but the reason i started argus channel is because to answer
simple question, or repetitive one so we can have Carter working on more
serious stuffs!
Cheers!
Date: Tue, 21 Apr 2009 16:53:53 +0300
From: Oguz Yarimtepe <comp.ogz at gmail.com>
Subject: [ARGUS] flow in general
To: Argus <argus-info at lists.andrew.cmu.edu>
Message-ID: <1240322033.7579.41.camel at ELK1655>
Content-Type: text/plain; charset=UTF-8
I was analyzing an http flow that is converted from a tcpdump file. I
was using racluster. I saw the flows generally uni-directional. Some are
bi-directional. I checked the meaning of directionality again from here,
but i didn't get the point indeed.
For ex when i see a bi-directional flow does that mean that every
package is from source to destination? Why is some http flows uni and
some bi directional?
I will be happy if someone give more detail about directionality.
And is there any #argus channel on irc, so that we can join and ask some
questions there also?
O?uz
--
Best Regards,
CS Lee<geek00L[at]gmail.com>
http://geek00l.blogspot.com
http://defcraft.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20090422/efaf18b0/attachment.html>
More information about the argus
mailing list