Izvinqvam se che ne sledq thread-a, obache az ponezhe sum pisal dosta
podobni otchitaniq - da, tova s otchitaneto na edin interface raboti. Az
po princip go pravq taka
ipchains -I input -s usera -i eth1
ipchains -I output -d usera -i eth1
i mi vurshi rabota, dazhe na momenti ne se nalaga da se polzva tova s
-i eth1... napisal sum dazhe neshto - http://ludost.net/chains/, koeto
se zanimava s otchitane - ne e napraveno da se polzva ot vseki, ima si
nuzhda ot dopipvane za specifichni nuzhni, no misle che ot readme-to mozhe
da se razbere osnovnata ideq i da se reshi takuv problem.
On Thu, 28 Mar 2002, Teodor Georgiev wrote:
> a?
> e kak taka i dvete na edin ethernet?
>
> ----- Original Message -----
> From: "Marian Popov" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Thursday, March 28, 2002 12:37 AM
> Subject: Re: lug-bg: MRTG and IPCHAINS problem
>
>
> > On Wed, 27 Mar 2002, Teodor Georgiev wrote:
> >
> > >
> > >
> > > iskash da ti otchita TRANZITNIA trafik.
> > >
> > > slozhi go na forward verigata.
> > >
> > > da rechem che i az imam : PC1, PC2, PC3 -----> {gateway} -->
> > > (((internet)))
> > >
> > > iskash da otchitash INTERNET Trafika na vseko PC, a ne tozi ot PC-to do
> > > gateway'a,
> > > shtoto ako na gateway'a ima i mail server, togava shte im se otchita i
> tova
> > > na PC-tata.
> > >
> > > togava slagash forward chain na gateway i merish vsichko:
> > >
> > > ot : PC1|PC2|PC3
> > > kum : ! lokalnia subnet
> > >
> >
> >
> > Eto rule koito slojih
> >
> > ipchains -A forward -i eth1 -s CLIENT -d ! GATEWAY -j ACCEPT
> > ipchains -A forward -i eth1 -s ! GATEWAY -d CLIENT -j ACCEPT
> >
> > Pri tova polojenie poluchavam samo
> >
> > 0
> > 0
> >
> > I nishto poveche demek ne otchita nikakyv traffic.
> >
===========================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
