tag:blogger.com,1999:blog-12783726.post9093044229535560431..comments2024-02-19T16:39:32.319+08:00Comments on When {Puffy} Meets ^RedDevil^: Packets -> Flows -> SessionC.S.Leehttp://www.blogger.com/profile/10778262436985693992noreply@blogger.comBlogger5125tag:blogger.com,1999:blog-12783726.post-77306944647851051512008-05-24T02:52:00.000+08:002008-05-24T02:52:00.000+08:00hi pablo,Here's the tip -If you are using argus, y...hi pablo,<BR/><BR/>Here's the tip -<BR/><BR/>If you are using argus, you can use its client - rastream to achieve half of the things you have mentioned except matlab part.<BR/><BR/>Cheers ;]C.S.Leehttps://www.blogger.com/profile/10778262436985693992noreply@blogger.comtag:blogger.com,1999:blog-12783726.post-27821181311188089582008-05-24T02:33:00.000+08:002008-05-24T02:33:00.000+08:00Thx Lee. I be waiting that post.We are developing ...Thx Lee. I be waiting that post.<BR/>We are developing a perl script to generate flows reading directly from a pcap file and generate txt files with the flows generated in a slot time of duration T. The input parameters are: pcap file name, slot time(secs, duration T), outname(txt), mode (generate uni/biflows), flow duration (secs).<BR/>Every single txt file have a list of the flows information, ready for Matlab processing:<BR/>Time star/end of the flow,IPsrc, srcPrt, dstIP, dstPrt, proto, #pkts, volume(bytes)Pablohttps://www.blogger.com/profile/15959832843969189078noreply@blogger.comtag:blogger.com,1999:blog-12783726.post-77540806036271775812008-05-21T13:42:00.000+08:002008-05-21T13:42:00.000+08:00hi pablo,The definition applies for both unidirect...hi pablo,<BR/><BR/>The definition applies for both unidirectional and bidirectional flow, I will be going to write the post about the different between them with diagram and clean explanation so people can understand it better.<BR/><BR/>You can actually ask argus to generate unidirectional flow and I will show you in the new post.<BR/><BR/>Stay tuned and thanks!C.S.Leehttps://www.blogger.com/profile/10778262436985693992noreply@blogger.comtag:blogger.com,1999:blog-12783726.post-73431643090508021382008-05-21T10:40:00.000+08:002008-05-21T10:40:00.000+08:00Your post is great! , I am studying about traffic ...Your post is great! , I am studying about traffic modeling and I found your information very useful for me. I have question, the flow definition in your example is "bi-directional", is it?, is there a way to argus generate only uni-directional flows? <BR/>Definition of flows result sometimes confused for me, can you help with that?<BR/>Grettings!Pablohttps://www.blogger.com/profile/15959832843969189078noreply@blogger.comtag:blogger.com,1999:blog-12783726.post-10835741146351703532007-12-31T08:39:00.000+08:002007-12-31T08:39:00.000+08:00Great writeup!! Its nice to see some highlights o...Great writeup!! Its nice to see some highlights of other argus client tools other than just "ra". I think the client suite is heavily under-utilized.e0nhttps://www.blogger.com/profile/08642718678831767828noreply@blogger.com