Date: Mon, 11 Jun 2001 15:13:33 -0500 From: Ryan <ryanpek@swbell.net> To: freebsd-security@freebsd.org Subject: Re: IPFILTER byte/packet counting Message-ID: <000d01c0f2b2$fda1e540$01000001@mhx800> References: <3B24F469.13D59538@centtech.com> <000401c0f2b0$0331dfe0$01000001@mhx800> <3B25259B.404344DA@centtech.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Then you want to get some good connection monitoring software.. ANy suggestions any1? ----- Original Message ----- From: "Eric Anderson" <anderson@centtech.com> To: "Ryan" <ryanpek@swbell.net> Cc: <freebsd-security@freebsd.org> Sent: Monday, June 11, 2001 3:10 PM Subject: Re: IPFILTER byte/packet counting > Well, I know about this. But what I really need it basically bytes > passed in/out on a per rule basis. I need to graph (I'll use mrtg) the > usage per machine behind the transparent firewall (running IPFILTER). > > > Eric > > > > Ryan wrote: > > > > http://www.obfuscation.org/ipf/ > > > > this is the only link that i have > > Along with ipf you can use ipfmon which shows the following packet > > infomation > > [root@rolln /home/mhx$] ipfstat > > input packets: blocked 461 passed 46857 nomatch 0 counted 0 short 0 > > output packets: blocked 0 passed 47234 nomatch 0 counted 0 short 0 > > input packets logged: blocked 461 passed 0 > > output packets logged: blocked 0 passed 0 > > packets logged: input 0 output 0 > > log failures: input 17 output 0 > > fragment state(in): kept 0 lost 0 > > fragment state(out): kept 0 lost 0 > > packet state(in): kept 257 lost 0 > > packet state(out): kept 256 lost 0 > > ICMP replies: 454 TCP RSTs sent: 6 > > Invalid source(in): 0 > > Result cache hits(in): 332 (out): 4 > > IN Pullups succeeded: 0 failed: 0 > > OUT Pullups succeeded: 0 failed: 0 > > Fastroute successes: 460 failures: 0 > > TCP cksum fails(in): 0 (out): 0 > > Packet log flags set: (0) > > > > i hope that helps > > > > none > > ----- Original Message ----- > > From: "Eric Anderson" <anderson@centtech.com> > > To: <freebsd-security@freebsd.org> > > Sent: Monday, June 11, 2001 11:40 AM > > Subject: IPFILTER byte/packet counting > > > > > Using IPFILTER with a bridge, can ipf count packets and bytes going > > > to/from an ip? I see things like dummynet (which only works with > > > ipfw?). Does anyone have a good url of a howto or information on this? > > > I basically need to see usage (in bytes really) to/from certain ip's > > > behind my ipf/bridging firewall. > > > > > > Eric > > > > > > > > > -- > > > -------------------------------------------------------------------------- > > ----- > > > Eric Anderson anderson@centtech.com Centaur Technology (512) > > > 418-5792 > > > For every complex problem, there is a solution that is simple, neat, and > > > wrong. > > > -------------------------------------------------------------------------- > > ----- > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-security" in the body of the message > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-security" in the body of the message > > -- > -------------------------------------------------------------------------- ----- > Eric Anderson anderson@centtech.com Centaur Technology (512) > 418-5792 > For every complex problem, there is a solution that is simple, neat, and > wrong. > -------------------------------------------------------------------------- ----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000d01c0f2b2$fda1e540$01000001>