Extract DNS info from Flow
Rahimeh Khodadadi
rahimeh.khodadadi at gmail.com
Sun Jun 30 00:22:56 EDT 2013
Hi,
When I run such a command it doesn't work.
radump -r /usr/zero.argus -vvv -s suser:128 duser:128 -udp and port domain
s[0]=""
d[0]=""
s[0]=""
d[0]=""
s[0]=""
d[0]=""
s[0]=""
d[0]=""
Please help :((
On Wed, Jun 26, 2013 at 11:52 AM, Rahimeh Khodadadi <
rahimeh.khodadadi at gmail.com> wrote:
> Thanks alot,
>
>
> On Wed, Jun 26, 2013 at 8:12 AM, Matt Brown <matthewbrown at gmail.com>wrote:
>
>> Also try passivedns: https://github.com/gamelinux/passivedns
>>
>>
>> Good luck,
>>
>> Matt Brown
>>
>>
>> On Tue, Jun 25, 2013 at 9:11 AM, Rahimeh Khodadadi <
>> rahimeh.khodadadi at gmail.com> wrote:
>>
>>> Hi Carter,
>>>
>>> Please help me to know how to extract DNS info and its flags from flow?!
>>> with filtering commands I couldn't do it.
>>> I need urgently,
>>>
>>> Thanks in advance,
>>> Rahimeh
>>>
>>>
>>
>
>
> --
> With Best Regards
> Rahimeh Khodadadi
>
>
--
With Best Regards
Rahimeh Khodadadi
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20130630/ba9bf158/attachment.html>
More information about the argus
mailing list