Home > Uncategorized > Quick argus query, time versus bytes and packets

Quick argus query, time versus bytes and packets

You can likely do the same thing with ralabel, ra, rabins and rasql:

select from_unixtime(stime), daddr, saddr, sbytes, dbytes, spkts, dpkts from argus.argustable_20120820 where stime between unix_timestamp('2012-08-20 10:37:00') and unix_timestamp('2012-08-20 10:40:00');

Kbps:

select from_unixtime(stime), sum(sbytes)*0.000976562 as skbps, sum(dbytes)*0.000976562 as dkbps, sum(spkts), sum(dpkts) from argus.argustable_20120820 where stime between unix_timestamp('2012-08-20 11:13:00') and unix_timestamp('2012-08-20 11:15:00') group by from_unixtime(stime);

1 byte = 0.000976562 kbits

Advertisements
Tags:
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: