On Friday 2010-04-02 16:27, Toure Mamadou wrote: >when i run this : >iptables -L FORWARD -v > >I got this output : >pkts bytes target prot opt in out source destination >2786 3744K ACCEPT udp -- any any anywhere anywhere udp dpt:search-agent >quota: 1024 bytes > >But when traffic pass through my box I got this output of iptables -L >FORWARD -v pkts bytes target prot opt in out source destination >2786 3744K ACCEPT udp -- any any anywhere anywhere udp dpt:search-agent >quota: 13976899182565778736 bytes > >Why the quota is too big even i have fixe to 1024. >I'm using kernel 2.6.30 with iptable 1.4.4 Note : I did not made any pach >for kernel nor iptable. The 139... is caused by a bug present in kernels before 2.6.31. Additionally, the quota cannot be displayed with iptables (it will stay at 1024 starting from 2.6.31), as the kernel does not export the current counter back to userspace. You will have to use xt_quota2 and its procfs interface to read the counters back. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
