If you havn't to many diferent ip/ip-ranges to monitor you can enter iptables
filter rules for that ips with no action, just to count the trafic, than use a
script and mrtg to show them. something like:
iptables -A FORWARD -s [MonitoredIP] -i [NIC_conecting_to_IP]
iptables -A FORWARD -d {MonitoredIP] -o [NIC_conecting_to_IP]
make a script to grab the bytecount and output them as mrtg expect
(IN,OUT,UPTIME,HOSTNAME). Change ^[1,2] to select your rules
in the chain where you grab the trafic.
iptables -nvxL FORWARD --line-numbers|egrep ^[1,2]|awk '{print $3}'
Cópia Kim Jensen <kimj@xxxxxxx>:
> On Wednesday 26 March 2003 22:11, Rowan Reid wrote:
> > I have an answer but you also got me thinking. A good tool to keep
> > track of traffic via ip addresses would be mrtg. However is there an
> > mrtg type tool that uses the counters in iptables rules to keep track
> of
> > traffic and output it in a user friendly form.
>
> If you wish to see things in a more user friendly way (or usable way, as
> no
> system is friendly :-) can be hard as you have to define what in what
> you
> wish to see things!
>
> mrtg is quite good, since you get the results on a webpage, but for
> tracking
> ip specific things - I don't know, as I don't think the kernel remembers
> this
> statistic. You can read per interface but not from each ip connecting to
> an
> interface.
>
> /Kim
>
>
