Hi, Foll is how i invoked nProbe to make it read input from a tcpdump file..
nprobe -n 10.6.100.134:9992 -m 1 -r TCP_20min_conn.dmp -V 9 -U 260 -T "<TEMPLATE_INFO>" The tcpdump file is a complete 20 min SSH Traffic between two machines. I ran tcpdump on the collector's machine and captured the NF V9 traffic from nProbe and saved this to a dmp file. I later examined this dmp file using wireshark. What is see is 4 flowsets: Template flowset:0, options flowset:1, Data flowset:261(options data), Data Flowset: 260. The data flowset 260 seems to contains data for only one-direction of the my recorded 20 min TCP flow, client to server direction. How do i get nProbe to tell/export the information for the other direction, ie. server to client direction ? Thanks, Subra.
_______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
