Time window issue
Rahimeh Khodadadi
rahimeh.khodadadi at gmail.com
Wed Jun 12 02:08:04 EDT 2013
Hi Carter,
Thanks for your quick reply.I follow your advices, but when I open file to
read, it is not clear by UTF-8, I attached the file.my command is:
rabins -M time 5m -B 10s -m proto sport dport saddr daddr -r
/usr/argus/data/argus.out -w argus.csv
and If I use command as below, it does works, note that I changed
"ARGUS_FLOW_STATUS_INTERVAL=300",
but the features of output file are replicated, I attached it to mail too:
racluster -T 300 -B 10 -p 3 -u -Z b -W -| /usr/local/bin/ralabel -r
/usr/argus/data/argus.out - -f /usr/local/argus/ralabel.conf -c "," -M
dsrs=+metric,+agr,+psize,+cocode -n -p 3 -u -Z b -s
"+ltime,+stime,+trans,+dur,+mean,+sco,+dco,+pkts,+spkts,+dpkts,+bytes" >
racluster.csv
Please help!!!
Thanks in advance,
Rahimeh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20130612/c2115a3e/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: racluster.csv
Type: text/csv
Size: 1443426 bytes
Desc: not available
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20130612/c2115a3e/attachment.csv>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: argus.csv
Type: text/csv
Size: 173540 bytes
Desc: not available
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20130612/c2115a3e/attachment-0001.csv>
More information about the argus
mailing list