On Mon, Jun 06, 2005 at 01:37:46PM +0200, Douglas Lane wrote: > > Basically I want to take certain traffic (such as VoIP,HTTP,FTP,etc...) and > mark it on INPUT, OUTPUT and FORWARD chains and then using iptables -v to > get the packet statistics and log it into MRTG or something similar. > Yes it is possible. Try: iptables -t mangle -A INPUT -m layer7 --l7proto http \ -j MARK --set-mark 1 iptables -t mangle -A FORWARD -m layer --l7proto http \ -j MARK --set-mark 2 iptables -t mangle -A OUTPUT -m layer --l7proto http \ -j MARK --set-mark 3 Get packet statistics with: iptables -t mangle -L -n -v Best regards, -- Andre Raabe <andre.raabe@xxxxxx> GnuPG: 0xD275A240 | 8B69 EABD 46A4 3B88 354B A25C 4322 AC35 D275 A240 http://www.tuxknowledge.org | bash@xxxxxxxxxxxxx | encryption welcome
Attachment:
signature.asc
Description: Digital signature
