Status of SNMP / events modules in Argus?
Daniel Clark
dclark at pobox.com
Sun Jun 5 17:29:47 EDT 2011
Found this in mailing list archives -
http://article.gmane.org/gmane.network.argus/6704
"""
Argus-3.0.4 will get the argus "events" modules, where argus can poll
SNMP counters and gather data from /dev/proc (for machines that have
/dev/proc). The purpose of this is to bring other data into the flow
data stream for cross-dimensional correlation. Practically, this
means that you can have argus periodically run "lsof" on an end system
where it is running, to get application information for the flows.
"""
However I can't find any other doc or info on this - did it ever
happen, and if it did could someone speak to if it is working well for
them?
If not, anyone know of a tool that will work with SNMP info and make a
database queryable with command line tools along the lines of argus?
Application is tracking bandwidth use / MACs on a small dorm network
where we don't have root on all the switches to set up traffic flows
to the argus server, but where we do have SNMP access to this
information.
More information about the argus
mailing list