Date: Wed, 26 Oct 2005 02:58:16 +0200 From: Philip Lykke Carlsen <plcplc@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: traffic accounting per username with ipfw in 5.4 ? (more) Message-ID: <200510260258.17153.plcplc@gmail.com> In-Reply-To: <Pine.LNX.4.21.0510241745090.8180-100000@shell.dhp.com> References: <Pine.LNX.4.21.0510241745090.8180-100000@shell.dhp.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Monday 24 October 2005 23:54 skrev user: > Hello, > > On Tue, 25 Oct 2005, Andrew P. wrote: > > On 10/25/05, user <user@dhp.com> wrote: > > > I remember that ipfw had been augmented some time ago to do traffic > > > counting, etc., based on usernames ... but I see no mention of that in > > > the ipfw man page on my 5.4-RELEASE system. > > > > > > Is this something that only exists in IPFW2 ? Does ipfw2 even exist > > > anymore ? > > > > > > Can someone clarify for me what is going on with regard to what used to > > > be called IPFW2, FreeBSD 5.x, and per-user traffic counting ? > > > > > > thanks. > > > > ipfw2 replaced ipfw in 5.x > > > > Read the manpage more carefully, please. Search > > for "uid" option. > > Thanks - I was searching for username and getting nowhere. Also, thank > you for the clarification regarding ipfw2/ipfw and their current state. > > I notice that the traffic accounting per uid only applies to traffic > initiated by that user, and initiated from the local machine. If I scp a > file away from the machine (as user X) the traffic does not get > incremented, and if I scp a file to the local machine (as user X) it also > does not get incremented - even though those are non-anonymous actions > that occur under the auspices of a particular username. > > Doe anyone have any suggestions for traffic accounting (of particularly > ssh traffic) on a per user basis, for _all_ traffic that occurs under the > auspices of that username, and not just what _they themselves_ initiate, > personally, in their own login shell ? > > Thank you. I've looked a bit into this, and it appears that sshd changes uid in FreeBSD 6.0 (I use 6.0RC1) .. I bet upgrading the system would be a lot easier than constructing a complex traffic-accounting system.. I'd think so at least..
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200510260258.17153.plcplc>