[Cflowd] Hi .... I have a question about the Cflow.pm

From: 譆鼻繭 (tensaich@epnetworks.co.kr)
Date: Sun Dec 29 2002 - 00:23:55 PST

Next message: Nicholas L. Nigay: "[Cflowd] patch for arts++ to build with gcc-3.x"

Previous message: mlpi_uy_rff3qw@amazon.com: "[Cflowd] 教您如何做一張漂亮的網頁"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I'm sorry for troubling you ,but plese help me about the cflowd and Cflow.pm

Oh...Let me introduce myself...

My name is Choi Sang Chun and korean.

network/system engineer...

To my regret ...I'm not english...^^

Return to the subject.....

I'm using the perl and running the example source in Cflow.pm

#########################################################################
# Example source...^^
#########################################################################
#!/usr/local/bin/perl

use Cflow qw(:flowvars find);

my $udp = getprotobyname('udp');
#verbose(0);
find(\&wanted, @ARGV? @ARGV : <*.flows*>);

sub wanted {

        #return if ($srcport < 1024 || $dstport < 1024);
        #return unless (($srcport == 31337 || $dstport == 31337) &&
        # $udp == $protocol);

        printf("%s %15.15s.%-5hu %15.15s.%-5hu %2hu %10u %10u\n",
                $localtime,
                $srcip,
                $srcport,
                $dstip,
                $dstport,
                $protocol,
                $pkts,
                $bytes)
}

###########################################################################

By the way, the timestamp were very strange in under result.

What's the problem...???

#########################################################################
# result
#########################################################################

Taurus.gngidc.net:/usr/local/arts/project/test 229 # ./cflow.pl
flows.20020326 | more
2002/03/26 08:58:50 0.0.0.5.0 0.0.0.69.1036 60
12 2886731009
1970/01/01 09:00:00 0.0.12.211.0 115.197.48.0.4967 0
1697460271 808398894
1970/01/01 09:17:16 0.108.20.19.57264 0.1.132.95.0 0
67108864 5
1970/01/01 10:22:47 186.60.159.186.2560 230.0.0.6.5632 101
458752 3283
1952/10/27 21:50:08 0.0.1.139.9984 142.0.0.0.0 4
0 7083539
1975/04/27 06:26:24 12.0.0.0.0 12.172.16.5.0 0
272408505 3124535226
1928/08/14 08:32:08 103.101.45.48.1 47.49.47.48.0 0
65536 0
1970/01/13 16:34:55 0.0.0.0.36 0.5.0.0.0 185
67895296 830480
1970/01/01 09:04:16 0.0.0.0.0 12.211.115.192.0 0
342320429 808399151
1972/02/26 04:48:16 0.0.0.0.0 32.40.19.31.1024 0
0 327680
1981/05/19 14:20:45 159.186.230.0.14848 0.6.0.0.7 48
0 215216034

########################################################################

thanks ...

Regards...

_______________________________________________
Cflowd mailing list
Cflowd@caida.org
http://login.caida.org/mailman/listinfo/cflowd

Next message: Nicholas L. Nigay: "[Cflowd] patch for arts++ to build with gcc-3.x"
Previous message: mlpi_uy_rff3qw@amazon.com: "[Cflowd] 教您如何做一張漂亮的網頁"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Dec 29 2002 - 00:42:21 PST