argus and netflow
Riccardo Veraldi
Riccardo.Veraldi at cnaf.infn.it
Wed Jul 14 12:15:09 EDT 2010
Hello,
I am analyzing network traffic with argus (radium) since a few days and
send Netflow data to the argus machine.
I wonder why I am missing somthing in the traffic.
For example I opened a bittorrent session but I am not seeing any
evidence of the torrent traffic.
I Should see hundred of connections or connection attempts but I can't
see anything...
Perhaps Netflow is not the correct way to monitor such traffic ?
I mean the Netflow granularity is not enough ?
Anyway I can't see anything also for long living bittorrent sessions and
this is weird.
any hints ?
thank you
Rick
More information about the argus
mailing list