all the fields
George Jones
fooologist at gmail.com
Wed Aug 25 08:29:06 EDT 2010
Hi. Trying to understand what all the ~180 or so data fields are that are
are made available
from argus. The following fields are defined in
support/Config/ra.print.all.conf but not described in ra(1).
shops
dhops
sipid
dipid
senc
denc
svlan - both svlan and svid described as "source VLAN identifier"....what's
the difference ?
svid
sint
pktidl
sintpktmax
sintpktmin
dintpktmax
dintpktmin
sintpktactmax
sintpktactmin
dintpktactmax
dintpktactmin
sintpktidlmax
sintpktidlmin
dintpktidlma
dintpktidlmin
deldur
delstime
delltime
dspkts
ddpkts
dsbytes
ddbytes
pdspkts
pddpkts
pdsbytes
pddbytes
tcpext
jdelay
ldelay
bins
binnum
synack
ackdat
Could you shed a little light on them ?
Also, could not find a description (in ra(1)) of what the flags fields mean
("i", "e", "s", "d").
Thanks.
Curious,
---George
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20100825/0507d655/attachment.html>
More information about the argus
mailing list