Argus 3.0 and Fedora 9
Mike Iglesias
iglesias at uci.edu
Mon Mar 2 18:37:30 EST 2009
Carter Bullard wrote:
> Hey Mike,
> I use Fedora all the time. So what is the INTERFACE line in your
> argus.conf file look like? It could be opening the wrong interface?
It's opening the right interface:
# fgrep eth1 typescript
argus[22618]: 02 Mar 09 14:56:52.796688 setArgusDevice(eth1) returning
argus[22618]: 02 Mar 09 14:56:52.800928 ArgusOpenInterface()
pcap_open_live(eth1) returned 0x9065528
argus[22618]: 02 Mar 09 14:56:52.801066 ArgusOpenInterface(0xb7fbd008, 'eth1')
returning
ArgusWarning: argus[22618]: 02 Mar 09 14:56:52.802236
ArgusGetInterfaceStatus: interface eth1 is up
# fgrep eth1 /etc/argus.conf
ARGUS_INTERFACE=eth1
I want it to write to /log/argus/argus.out
# fgrep argus.out /etc/argus.conf
ARGUS_OUTPUT_FILE=/log/argus/argus.out
The file gets created by argus if it's not there, and it appears to be writing
Man records to the file according to ra.
This system was running Fedora 7 and argus v2. I reinstalled it with Fedora
9, and argus v2 did not write data either. I was planning on upgrading to
argus v3, but I wanted to wait a bit before doing that. Since v2 didn't work,
I tried v3. I've tried both argus-3.0.0 and argus-3.0.1.beta.2.
--
Mike Iglesias Email: iglesias at uci.edu
University of California, Irvine phone: 949-824-6926
Network & Academic Computing Services FAX: 949-824-2270
More information about the argus
mailing list