racluster agregation per dst port
jean-marc pouchoulon
jeanmarc.pouchoulon at gmail.com
Mon Oct 12 06:43:32 EDT 2009
Helo Argus list,
I'd like to have a sum of bytes/packets on specific dst port
racluster -m dport -r ./argus_00\:00\:00 - dst port 110 or dst port 995
StartTime Flgs Proto sCo SrcAddr Sport Dir
dCo DstAddr Dport TotPkts TotBytes State
00:00:00.000000 Ne ip ZZ 0.0.0.0 ->
ZZ 0.0.0.0 29957 1456503 INT
00:00:02.375000 Ne ip ZZ 0.0.0.0 ->
ZZ 0.0.0.0 5281 372398 INT
is there is a way to print the dst port ?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20091012/c3805084/attachment.html>
More information about the argus
mailing list