Date: Mon, 21 Jun 1999 11:04:35 -0700 From: Ludwig Pummer <ludwigp@bigfoot.com> To: "Alexey V.Vinogradov" <alexv@Sun.Farlep.Net>, freebsd-questions@freebsd.org Subject: Re: about more than 2x in ipfw accounting via NAT Message-ID: <4.1.19990621104846.0091eda0@mail-r> In-Reply-To: <199906211648.TAA20695@Sun.Farlep.Net>
next in thread | previous in thread | raw e-mail | index | archive | help
At 09:48 AM 6/21/1999 , Alexey V.Vinogradov wrote:
>I use for count bytes ipfw rules. But, i see strange problem - when i count
>from real ip-address to real ip-address, count looking good.
>But if i prbably count from NAT ip-address, i see 2x count bytes. Do you see
>this problem ? How i can decide it?
From "man natd":
>Natd normally runs in the background as a daemon. It is passed raw IP
>packets as they travel into and out of the machine, and will possibly
>change these before re-injecting them back into the IP packet stream.
^ ^ ^ ^ ^ ^
Put all of your counting rules after the "divert natd" line. Any ipfw rules
before the divert line get called twice. Any after that get called once.
(I think. This is all logical according to the man page and my train of
thought. I've never actually tried byte-counting).
--Ludwig Pummer ( ludwigp@bigfoot.com ) ICQ UIN: 692441
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.1.19990621104846.0091eda0>