Re: iptables / traffic accounting

To: Pedro Corte-Real <typo@netcabo.pt>
Cc: debian-firewall@lists.debian.org
Subject: Re: iptables / traffic accounting
From: Marc Demlenne <m.demlenne@skynet.be>
Date: Tue, 20 May 2003 00:18:59 +0200
Message-id: <[🔎] 20030519221859.GO1225@marcelle.homelinux.org>
In-reply-to: <[🔎] 1053381064.8813.8.camel@planck>
References: <[🔎] F74480D1A441E64BA58F889759796ECC01D1A7@ctgex.contrigo.local> <[🔎] 1053381064.8813.8.camel@planck>

On Mon, May 19, 2003 at 10:51:04PM +0100, Pedro Corte-Real wrote:
> >                 iptables -N traffic
> >                 iptables -A traffic -i eth0
> >                 iptables -A traffic -o eth0
> > 
> >                 iptables -A INPUT -j traffic
> >                 iptables -A OUTPUT -j traffic
> 
> I was trying to use this but it doesn't seam to account for masquerade
> packets. Any way around this?

Simply add a new rule, for your masq'ed paquets...
                    iptables -A FORWARD -j traffic

The "IMPUT" chain is for paquets going inside your box
    "OUTPUT"                           outside
    "FORWARD"                          threw your box, and that are masq'ed. 


-- 
   __o   
 _`\<,_  Marc Demlenne                   Public Key on www.keyserver.net
(_)/ (_) GPG/768FA483 BFD8 E61B 180C 3E7A 3435  D393 B605 9979 768F A483

Attachment: pgpBs2fwY8faz.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: iptables / traffic accounting
  - From: Pedro Corte-Real <typo@netcabo.pt>

References:
- iptables / traffic accounting
  - From: "Dreimann, Philipp" <p.dreimann@contrigo.de>
- Re: iptables / traffic accounting
  - From: Pedro Corte-Real <typo@netcabo.pt>

Prev by Date: Re: iptables / traffic accounting
Next by Date: Re: iptables / traffic accounting
Previous by thread: Re: iptables / traffic accounting
Next by thread: Re: iptables / traffic accounting
Index(es):
- Date
- Thread