I'm not sure I'm getting what's going on here exactly. The ndpiReader example seems to simply allocate and track these state machines on a flow by flow basis and passes them into the detection function with the flow state machine, but the API reads as if the src and dst state machines should be tracked on a per host basis and not on a per flow basis?
If these src and dest state machines are tracked per flow why aren't they just tracked in the ndpi_struct? I'm not sure if what I'm looking at is just an idiosyncrasy with the API or is indicative of an oversimplification in the example application. Thanks for your advice! -- David Hinkle Senior Software Developer Phone: 800.243.3729x3000 Email: [email protected] Hours: Mon-Fri 8:00AM-5:00PM (CT) _______________________________________________ Ntop-misc mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop-misc
