argus-clients-3.0.5.15, rabins and 32 Debian
Wolfgang Barth
wob at swobspace.de
Thu Jun 23 03:09:39 EDT 2011
Hey Carter,
> Hmmmm, not sure what that means. my rabins() uses the same options you have below.
> thoth:tmp carter$ rabins -M rmon hard zero time 1m -m smac -r test.out -s stime spkts dpkts sbytes dbytes state
I found the problem: rename your log to something like
argus-2011-06-21-00:00:00.log and try it again.
My result:
rabins-3.0.5.15-i386 -M time 1m -r argus-2011-06-21-00:00:00.log
Rabins Version 3.0.5.15
usage: rabins-3.0.5.15-i386 -M splitmode [splitmode options] [raoptions]
options: -M <mode> supported modes of operation:
....
Then renaming the argus logfile to argus.log:
rabins-3.0.5.15-i386 -M time 1m -r /tmp/argus.log
Same logfile, shorter name, works perfect. Seems to be a bug in filename
parsing with ":". Replacing ":" to "_" works.
Wolfgang
PS: the file name bug only occurs in rabins, not in ra
--
<wob (at) swobspace de> * http://www.swobspace.de
More information about the argus
mailing list