Hello Hans, I'm pretty sure this could be done with ntop/netflow. You can find a bunch of HOWTOs if you'd google for ntop and remote router or sth., such like: http://nst.sourceforge.net/nst/docs/user/ch09s02.html
However, I still didn't find the time to set it up for my router. Good luck, Chris On Sun, Jan 31, 2010 at 9:45 PM, Hans <[email protected]> wrote: > Hello Chris, > > I am also interested in logging / measuring the IP traffic on a user (IP- > or MAC- address) basis. > Did you get any further with this? > > Hans. > > -----Oorspronkelijk bericht----- > *Van:* [email protected] [mailto: > [email protected]] *Namens *Christopher Intemann > *Verzonden:* zondag 20 december 2009 16:30 > *Aan:* [email protected] > *Onderwerp:* Re: [fonosfera] HTTP-Log > > And one more interesting tool: ulogd > Can't get that to work either: > > r...@fonera:~# ulogd > Sun Dec 20 15:29:38 2009 <8> ulogd.c:737 unable to create ipulogd handle > ERROR: Unable to bind netlink socket: No such file or directory > > I installed the iptables-mod-ulog - wouldn't help :-( > Chris > > On Sun, Dec 20, 2009 at 3:24 PM, Christopher Intemann > <[email protected]>wrote: > >> I found another interesting package: ettercap >> I thought that could maybe do the trick... >> However, there seems to be not enough space on the fonera to install it, >> and I therefore installed the package in /tmp >> I had to install a whole bunch of libraries as well >> I could execute the ettercap command then, but, unlike on my Mac OSX box, >> it did exit immediately, claiming that it had to disable forwarding but >> could not reenable it. >> I could not reenable forwarding manually as well (by restarting network, >> firewall etc.) and I had to reboot my fonera. Why was that? >> I also tested the logging feature of iptables. But that did as well not >> work as expected. If I log all connections via ppp0, the only thing that is >> logged are the connections of ppp0 with its counterpart, e.g. my service >> provide, but not the websites that were actually visited. >> I could of course install ettercap on an external linux-box, but I'd >> rather prefer to have everything running on the router... >> snmp works more or less fine now, at least. Thanks again, Steven! >> According to the manual, the missing mib files seem to be "normal". >> After copying the configuration files in /etc/snmp/, I can retrive at >> least some information. >> However, how would I get information about the websites visited through >> the router? I tried several commands and even a gui-based snmp-management >> software - without any success, unfortunately. >> Which command line would I use to log the websites (e.g. snmpwalk?) >> Any hints? >> Thanks, >> Chris >> >> >> >> On Sun, Dec 20, 2009 at 8:59 AM, Steven Leeman <[email protected]> wrote: >> >>> >>> >>> On Sat, Dec 19, 2009 at 10:26 PM, Christopher Intemann < >>> [email protected]> wrote: >>> >>>> Steven, >>>> thank you, that looks very prospecting! Searched on the web for sth. >>>> like that for ages! >>>> I guess the first part (SNMP native sensors) belongs in the MIB-File. >>>> However. Where will I have to put the MIB-File then? >>>> Thank you! >>>> Chris >>>> >>> >>> >>> cp MY-MIB.txt /usr/share/snmp/mibs >>> >>> >>>> >>>> On Sat, Dec 19, 2009 at 10:16 PM, Steven Leeman <[email protected]>wrote: >>>> >>>>> >>>>> >>>>> On Sat, Dec 19, 2009 at 10:06 PM, Christopher Intemann < >>>>> [email protected]> wrote: >>>>> >>>>>> Hi, >>>>>> I installed snmpd on my fonera. >>>>>> The install was pretty straight forward. Nice! >>>>>> I can now connect to the box from my computer and read out >>>>>> snmp-information. >>>>>> At least some - when I try to get traffic information, I receive the >>>>>> message snmp v1 not supported (or sth). >>>>>> However, the installation does not seem to be compete, since I get a >>>>>> bunch of error messages claiming missing mib-files on the router. >>>>>> Indeed I cannot find mib-files, nor a directory where they are >>>>>> supposed to be found. >>>>>> Where do I get the mib-files and where do I put them? >>>>>> Thanks, >>>>>> Chris >>>>>> >>>>> >>>>> could the following be of use: >>>>> >>>>> http://axelvigo.com/cisco/InstallSnmp.html >>>>> http://glr81.free.fr/pages/openwrt-snmp-oid.htm >>>>> >>>>> _______________________________________________ >>>>> Development mailing list >>>>> [email protected] >>>>> http://fonosfera.org/mailman/listinfo/development >>>>> >>>>> >>>> >>>> _______________________________________________ >>>> Development mailing list >>>> [email protected] >>>> http://fonosfera.org/mailman/listinfo/development >>>> >>>> >>> >>> _______________________________________________ >>> Development mailing list >>> [email protected] >>> http://fonosfera.org/mailman/listinfo/development >>> >>> >> > Geen virus gevonden in het binnenkomende-bericht. > Gecontroleerd door AVG - www.avg.com > Versie: 9.0.717 / Virusdatabase: 270.14.115/2576 - datum van uitgifte: > 12/19/09 20:40:00 > > > _______________________________________________ > Development mailing list > [email protected] > http://fonosfera.org/mailman/listinfo/development > >
_______________________________________________ Development mailing list [email protected] http://fonosfera.org/mailman/listinfo/development
