Radium/ra client tools flow timestamps oddities with direct Netflow
Mike Iglesias
iglesias at uci.edu
Mon Dec 4 11:45:00 EST 2017
On 12/04/2017 08:03 AM, Drew Dixon wrote:
> I suppose to boil it down, I can't really seem to understand why the timestamps
> are off by 8 hours in the future when the netflow data is certainly not delayed
> in being processed by radium/racluster more than an hour or so at the very
> most, for some flows- but probably more like ballpark ~10 minutes or so on
> average. Right now the only thing that might make sense is that radium is not
> calculating the timestamps properly but I'm not certain.
8 hours is the difference between US Pacific Standard Time and GMT/UTC. What
time zone does your system think it's in? Use the "date" command to find out.
--
Mike Iglesias Email: iglesias at uci.edu
University of California, Irvine phone: 949-824-6926
Office of Information Technology FAX: 949-824-2270
More information about the argus
mailing list