Snort mailing list archives
perfmon-graph
From: sekure <sekure () gmail com>
Date: Fri, 16 Sep 2005 11:26:38 -0400
The format of the perfmonitor preprocessor has changed in Snort-2.4.0. I was wondering if Andreas or anyone else for that matter is planning on updating the perfmon-graph tool, or if someone can recommend a different utility for graphing snort performance statistics. Here is the new format for anyone who is curious, out of perf-base.c /* * * Log Base Per Stats to File for Use by the MC * * unixtime(in secs since epoch) * %pkts dropped * mbits/sec (wire) * alerts/sec * K-Packets/Sec (wire) * Avg Bytes/Pkt (wire) * %bytes pattern matched * syns/sec * synacks/sec * new-sessions/sec (stream cache) * del-sessions/sec (stream cache) * total-sessions open (stream cache) * max-sessions (stream cache) * streamflushes/sec * streamfaults/sec * streamtimeouts * fragcreates/sec * fragcompletes/sec * fraginserts/sec * fragdeletes/sec * fragflushes/sec * current-frags open (frag cache) * max-frags (frag cache) * fragtimeouts * fragfaults * num cpus (following triple is repeated for each CPU) * %user-cpu usage * %sys-cpu usage * %idle-cpu usage * mbits/sec (wire) * mbits/sec (ip fragmented) * mbits/sec (ip reassembled) * mbits/sec (stream rebuilt) * mbits/sec (app layer) * Avg Bytes/Pkt (wire) * Avg Bytes/Pkt (ip fragmented) * Avg Bytes/Pkt (ip reassembled) * Avg Bytes/Pkt (stream rebuilt) * Avg Bytes/Pkt (app layer) * K-Packets/Sec (wire) * K-Packets/Sec (ip fragmented) * K-Packets/Sec (ip reassembled) * K-Packets/Sec (stream rebuilt) * K-Packets/Sec (app layer) * */ ------------------------------------------------------- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42" plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- perfmon-graph sekure (Sep 16)
- Re: perfmon-graph Andreas Östling (Sep 16)