Re: Bandwidth monitoring

• Previous message: Ying-Chieh Liao: "Re: something wrong with fxp driver ?"
• In reply to: Robert Watson: "Re: Bandwidth monitoring"
• Next in thread: Michael Sierchio: "Re: Bandwidth monitoring"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 26 Jun 2003 22:56:56 -0700
To: Robert Watson <rwatson@freebsd.org>

On Thu, Jun 26, 2003 at 07:05:57PM -0400, Robert Watson wrote:
...
> > that an ISP is likely to charge for and have the tables 'reaped every
> > now and then by a daemon to give a time dimension to the data..
>
> Well, the case that this code was designed for was passive monitoring of
> many IPs over many systems (some of which have a large number of IP
> addresses, each to be separately billed). I also wanted to specifically
> disqualify local traffic between the hosts, since that wasn't part of the
> billing structure. You could certainly implement this using ipfw
> accounting, but only if you wanted to add one firewall rule for each
> matching case of interest (since we needed to separately measure), and you

just for the records, you can do counting on a per-host basis with
a single ipfw rule, using dummynet pipes:

        ... rules to remove undesired traffic...
        ipfw add pipe 1 ip from ${my_subnet} to not ${my_subnet} in
        ipfw pipe 1 config mask src-ip 0xffffffff
        sysctl net.inet.ip.dummynet.expire=0

This of course requires that the traffic you are interested in
flows through the box where you are running the above ipfw config.

        cheers
        luigi
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"

• Previous message: Ying-Chieh Liao: "Re: something wrong with fxp driver ?"
• In reply to: Robert Watson: "Re: Bandwidth monitoring"
• Next in thread: Michael Sierchio: "Re: Bandwidth monitoring"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: ipfw rules vs routes to localhost? ... >> ipfw to avoid things like UDP DNS lookups that might come in ant take up ... I'd like to be able to block a few tens of thousands of IPs. ... The ipfw rule drops inbound packets, ... the route solution converts each of these into a DoS attempt. ... (freebsd-net) Re: IPFW counters. ... To do this I will be using IPFW counter rules and ipa. ... (just curious on how you are setting this up if you only have a few IPs) ... (freebsd-questions) Block IP ... I'm using IPFW as my firewall. ... Also how do I block out IPs after a certain number of invalid login ... attempts to prevent brute forcing? ... (freebsd-stable)