Argus stops capturing data after a few hoursIs there a way to beep when tail -F stops to fetch new...
Why don't airports use arresting gears to recover energy from landing passenger planes?
What does “We have long ago paid the goblins of Moria,” from The Hobbit mean?
Why are there no programmes / playbills for movies?
How to make classical firearms effective on space habitats despite the coriolis effect?
Exam design: give maximum score per question or not?
Does household ovens ventilate heat to the outdoors?
In what sequence should an advanced civilization teach technology to medieval society to maximize rate of adoption?
Random restarts for unsatisfiable problems
Why does '/' contain '..'?
Floating Point XOR
Why is the year in this ISO timestamp not 2019?
What if I don't know whether my program will be linked to a GPL library or not?
Are there any “Third Order” acronyms used in space exploration?
How would you translate Evangelii Nuntiandi?
What is the origin of the "being immortal sucks" trope?
Permutations in Disguise
How to convert Mn2O3 to Mn3O4?
How to install Rasbian Stretch on Raspberry Pi 4?
Delete empty subfolders, keep parent folder
Are lay articles good enough to be the main source of information for PhD research?
Wouldn't Kreacher have been able to escape even without following an order?
Did Sauron ever betray Morgoth?
How many people need to succeed in a group check with three people?
Output Distinct Factor Cuboids
Argus stops capturing data after a few hours
Is there a way to beep when tail -F stops to fetch new results?Tracking what commands were executed after sudo to another usertcpdump not capturing http or tcp/ssl trafficTotal data usage history with SNMPSplunk Forwarder-->Monitoring/Capturing of Specific Events?Cacti stopped working after upgrade to StretchCreating alert notification if process stops touching file
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ margin-bottom:0;
}
I am using Argus to capture some network flow information and while the service doesn't die, it appears to stop capturing flow information after a few hours.
The service is running:
argus -J
It is not running in daemon mode, but I doubt that matters.
When running ra to list some data, I get an exception at the end:
ra -nnr argus.out
Exception, seems to indicate data is corrupted.
ra[28507]: 22:24:38.694511 ArgusGenerateRecordStruct: post ARGUS_DATA_DSR len is zero
I checked my logs and do not see anything indicating any activity at that time such as an exception with argus, DHCP renew, or service restarting, etc. My log file is only 4MB and my file system has over 6GB free.
I am at a loss for what is causing the issue. If I need to routinely restart the service to get it to capture, I can do that; however, every 4 hours seems excessive. Furthermore, I manually restarted the service to see if that would help and that alone does not fix it. Once the output file is corrupted at the end, I won't see anything beyond that and must rotate the file in conjunction with the restart.
Any ideas would be greatly appreciated.
monitoring argus
asked 52 mins ago
WalterWalter
5652 gold badges7 silver badges20 bronze badges
add a comment
|
I am using Argus to capture some network flow information and while the service doesn't die, it appears to stop capturing flow information after a few hours.
The service is running:
argus -J
It is not running in daemon mode, but I doubt that matters.
When running ra to list some data, I get an exception at the end:
ra -nnr argus.out
Exception, seems to indicate data is corrupted.
ra[28507]: 22:24:38.694511 ArgusGenerateRecordStruct: post ARGUS_DATA_DSR len is zero
I checked my logs and do not see anything indicating any activity at that time such as an exception with argus, DHCP renew, or service restarting, etc. My log file is only 4MB and my file system has over 6GB free.
I am at a loss for what is causing the issue. If I need to routinely restart the service to get it to capture, I can do that; however, every 4 hours seems excessive. Furthermore, I manually restarted the service to see if that would help and that alone does not fix it. Once the output file is corrupted at the end, I won't see anything beyond that and must rotate the file in conjunction with the restart.
Any ideas would be greatly appreciated.
monitoring argus
asked 52 mins ago
WalterWalter
5652 gold badges7 silver badges20 bronze badges
add a comment
|
I am using Argus to capture some network flow information and while the service doesn't die, it appears to stop capturing flow information after a few hours.
The service is running:
argus -J
It is not running in daemon mode, but I doubt that matters.
When running ra to list some data, I get an exception at the end:
ra -nnr argus.out
Exception, seems to indicate data is corrupted.
ra[28507]: 22:24:38.694511 ArgusGenerateRecordStruct: post ARGUS_DATA_DSR len is zero
I checked my logs and do not see anything indicating any activity at that time such as an exception with argus, DHCP renew, or service restarting, etc. My log file is only 4MB and my file system has over 6GB free.
I am at a loss for what is causing the issue. If I need to routinely restart the service to get it to capture, I can do that; however, every 4 hours seems excessive. Furthermore, I manually restarted the service to see if that would help and that alone does not fix it. Once the output file is corrupted at the end, I won't see anything beyond that and must rotate the file in conjunction with the restart.
Any ideas would be greatly appreciated.
monitoring argus
asked 52 mins ago
WalterWalter
5652 gold badges7 silver badges20 bronze badges
I am using Argus to capture some network flow information and while the service doesn't die, it appears to stop capturing flow information after a few hours.
The service is running:
argus -J
It is not running in daemon mode, but I doubt that matters.
When running ra to list some data, I get an exception at the end:
ra -nnr argus.out
Exception, seems to indicate data is corrupted.
ra[28507]: 22:24:38.694511 ArgusGenerateRecordStruct: post ARGUS_DATA_DSR len is zero
I checked my logs and do not see anything indicating any activity at that time such as an exception with argus, DHCP renew, or service restarting, etc. My log file is only 4MB and my file system has over 6GB free.
I am at a loss for what is causing the issue. If I need to routinely restart the service to get it to capture, I can do that; however, every 4 hours seems excessive. Furthermore, I manually restarted the service to see if that would help and that alone does not fix it. Once the output file is corrupted at the end, I won't see anything beyond that and must rotate the file in conjunction with the restart.
Any ideas would be greatly appreciated.
monitoring argus
monitoring argus
asked 52 mins ago
WalterWalter
5652 gold badges7 silver badges20 bronze badges
asked 52 mins ago
WalterWalter
5652 gold badges7 silver badges20 bronze badges
asked 52 mins ago
WalterWalter
5652 gold badges7 silver badges20 bronze badges
asked 52 mins ago
WalterWalter
5652 gold badges7 silver badges20 bronze badges
asked 52 mins ago
WalterWalter
5652 gold badges7 silver badges20 bronze badges
5652 gold badges7 silver badges20 bronze badges
add a comment
|
add a comment
|
0
active
oldest
votes
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "106"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/4.0/"u003ecc by-sa 4.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f541946%2fargus-stops-capturing-data-after-a-few-hours%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Unix & Linux Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f541946%2fargus-stops-capturing-data-after-a-few-hours%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
