Date: Tue, 13 Sep 2005 21:32:36 +0200 From: =?ISO-8859-1?Q?Erik_N=F8rgaard?= <norgaard@locolomo.org> To: Derrick MacPherson <dm@mainframe.ca> Cc: freebsd-questions@FreeBSD.org Subject: Re: traffic accounting. Message-ID: <43272954.3050906@locolomo.org> In-Reply-To: <1126638334.8813.18.camel@Mandarin-04.mainframe.ca> References: <1126638334.8813.18.camel@Mandarin-04.mainframe.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
Derrick MacPherson wrote: > I am going to pop a machine (bridged interfaces) in tween our LAN and > our firewall (pix) and am wanting to know what people would recommend > for IP accounting, it would be great to have a web based output to show > what traffic, from/to what hosts so the boss is happy to look at it. You can create a firewall that just passes everything and counts it. If you're not going to block anything you don't need statefull firewalling and pf should do just fine. Otherwise ipfilter will do better. I have done this some year ago with ipfilter Last time I looked at accounting for pf the problem was to get all packets counted, both ways, with statefull filtering. The problem was that the packet would only be counted when matched against a rule, and that would only happen when the state was created, this is not a problem with non-statefull filtering since all packets will traverse the ruleset every time. It may have changed, or there may be some other ways arround. I have heard about flowd but never tried to use it. That said, pf has some features I think your boss would (or should) like more than flashy web pages: Queueing so you can priotize your boss trafic over everyone else - ofcourse, you installing it can put yourself first in the queue :-) Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt Subject ID: A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9 Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?43272954.3050906>