concept of flow in Argus
Rahimeh Khodadadi
rahimeh.khodadadi at gmail.com
Mon Dec 22 17:37:31 EST 2014
hi,
I have a question about a flow generation by Argus.
In wiki pedia has been written that "All packets with the same source
address/port and destination address/port within a time period are
considered as one flow."
on contrary, in Argus, is not it, because of its features such as, sbytes,
dbytes, total bytes, it means that flow network in Argus is done in 2 way
???
Is Argus wrong?
Thanks in advance,
Rahimeh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20141223/1a559056/attachment.html>
More information about the argus
mailing list