rasplit and netflow question
Michael Stone via Argus-info
argus-info at lists.andrew.cmu.edu
Wed Sep 21 19:35:52 EDT 2016
I mainly use the argus daemon to generate flow records, but in one case
I recieve netflow records and would like to store and access them in the
same way as the argus flow data. Reception seems to be working, as
ra -S cisco://any:9995
outputs the expected flows (though the first line always has a
1969-12-31 19:00 timestamp). If I try to use rasplit, though, nothing is
written to disk using
rasplit -M time 5m -S cisco://any:9995 -w /argus/%Y/%m/%d/%Y.%m.%d.%H.%M.%S
Should this work?
Mike Stone
More information about the argus
mailing list