Derrick MacPherson wrote:
I am going to pop a machine (bridged interfaces) in tween our LAN and
our firewall (pix) and am wanting to know what people would recommend
for IP accounting, it would be great to have a web based output to show
what traffic, from/to what hosts so the boss is happy to look at it.
You can create a firewall that just passes everything and counts it.
If you're not going to block anything you don't need statefull
firewalling and pf should do just fine. Otherwise ipfilter will do
better. I have done this some year ago with ipfilter
Last time I looked at accounting for pf the problem was to get all
packets counted, both ways, with statefull filtering. The problem was
that the packet would only be counted when matched against a rule, and
that would only happen when the state was created, this is not a problem
with non-statefull filtering since all packets will traverse the ruleset
every time.
It may have changed, or there may be some other ways arround. I have
heard about flowd but never tried to use it.
That said, pf has some features I think your boss would (or should) like
more than flashy web pages: Queueing so you can priotize your boss
trafic over everyone else - ofcourse, you installing it can put yourself
first in the queue :-)
Cheers, Erik
--
Ph: +34.666334818 web: http://www.locolomo.org
S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt
Subject ID: A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9
Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
