You can put the rule on: #iptables -t mangle -I POSTROUTING -o INTERFACE_OF_192.168.0.50_SUBNET -d 192.168.0.50 then you can account in both directions separately ----- Original Message ----- From: "Arrizabalaga, Saioa" <sarrizabalaga@xxxxxxx> To: <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Friday, April 23, 2004 10:42 AM Subject: bytes counting Hello everyone, I have been reading some mails in this listing and it is said the best place to count bytes/packets is the mangle table, but I have a problem. I have three network cards in my linux box: eth0 (private LAN), eth1 (private LAN) and eth2 (internet). I would like to count the bytes/packets from/to 192.168.0.50 (it is in eth0) that goes/comes to/from internet (eth2). These are the rules I have: iptables -A POSTROUTING -t mangle -o eth2 -s 192.168.0.50 With this rule I catch all the packets going from 192.168.0.50 to eth2, but I know where to put the rule to catch the packets going from eth2 to 192.168.0.50, because as far as I can see it, when I put the rule: iptables -A PREROUTING -t mangle -i eth2 -d 192.168.0.50 nothing is caught because the packet has not been SNAT-ed yet. Am I wrong? Any help would be appreciated. Saioa Arrizabalaga
