Hi.
Has anyone figured the best way to count traffic on a firewall?
On a firewall or on your OS X system?
If you're referring to a firewall, SNMP is normally the way to go here.
I thought I'd ask before writing a script that checks ipfw data.
These leads back to the "ipfw isn't a firewall" discussions, its a
packet filter.
You want NI traffic stats in this case. And maybe you want rule
counts, which is going to get hairy quick.
Bascially the need is to count all packets diverted by natd,
originating from the internal net destined to the outside and vice
versa. Maybe there's some commercial solution available for headless
configs, or maybe someone has a working script already and can share
it with me.
Logging of ipfw is normally done for a COUNT number of packets, it's
not designed to be logging all the time, it's very prohibitive.
Instead you might consider something that can analyze tcpdump streams.
--
-dhan
------------------------------------------------------------------------
Dan Shoop AIM: iWiring
Systems & Networks Architect http://www.iwiring.net/
email@hidden http://www.ustsvs.com/
1-646-217-4725
iWiring provides systems and networks support for Mac OS X, unix, and
Open Source application technologies at affordable rates.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
