Re: iptables / traffic accounting

To: Marc Demlenne <m.demlenne@skynet.be>
Cc: debian-firewall@lists.debian.org
Subject: Re: iptables / traffic accounting
From: Pedro Corte-Real <typo@netcabo.pt>
Date: 19 May 2003 23:37:35 +0100
Message-id: <[🔎] 1053383855.8816.11.camel@planck>
In-reply-to: <[🔎] 20030519221859.GO1225@marcelle.homelinux.org>
References: <[🔎] F74480D1A441E64BA58F889759796ECC01D1A7@ctgex.contrigo.local> <[🔎] 1053381064.8813.8.camel@planck> <[🔎] 20030519221859.GO1225@marcelle.homelinux.org>

On Mon, 2003-05-19 at 23:18, Marc Demlenne wrote:
> On Mon, May 19, 2003 at 10:51:04PM +0100, Pedro Corte-Real wrote:
> > >                 iptables -N traffic
> > >                 iptables -A traffic -i eth0
> > >                 iptables -A traffic -o eth0
> > > 
> > >                 iptables -A INPUT -j traffic
> > >                 iptables -A OUTPUT -j traffic
> > 
> > I was trying to use this but it doesn't seam to account for masquerade
> > packets. Any way around this?
> 
> Simply add a new rule, for your masq'ed paquets...
>                     iptables -A FORWARD -j traffic
> 
> The "IMPUT" chain is for paquets going inside your box
>     "OUTPUT"                           outside
>     "FORWARD"                          threw your box, and that are masq'ed. 


That did the trick, thanks.

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

References:
- iptables / traffic accounting
  - From: "Dreimann, Philipp" <p.dreimann@contrigo.de>
- Re: iptables / traffic accounting
  - From: Pedro Corte-Real <typo@netcabo.pt>
- Re: iptables / traffic accounting
  - From: Marc Demlenne <m.demlenne@skynet.be>

Prev by Date: Re: iptables / traffic accounting
Next by Date: Re: Setup of Internal Network with Many Real IPs
Previous by thread: Re: iptables / traffic accounting
Next by thread: Re: iptables / traffic accounting
Index(es):
- Date
- Thread