Currently ports/sysutils/ipa supports IPv4/v6 Firewall and IP Filter,
so I implemented it already.
Sometime admins want to count bytes on Ethernet segment
(for example). As I know IP Firewall and IP Filter can't catch
all bytes on interface (interface is switched to promiscuous-mode).
If I'm wrong please tell me how to do it with IP Firewall and IP Filter.
I tried to test pcap(3) library, but unfortunately it is not well documented
(for me at least). Also I didn't find any good documentation in Internet.
So any advice with pcap(3) are welcome.
----- Original Message -----
From: Mike Wade <[EMAIL PROTECTED]>
Newsgroups: lucky.freebsd.hackers
Sent: 4 april 2001. 16:57
Subject: Re: Is it possible to use some BPF filters in one process, in some
> On Wed, 4 Apr 2001, Andrey Simonenko wrote:
>
> > So, here is my question. Is it possible to use some pcap_dispatch(3)
> > functions in one process? I need to use pcap_dispatch(3) only for
> > counting number of bytes, I don't need to check network packets.
>
> Why not use ipfw's count command instead? Example:
>
> [root@net-ninja]:~> ipfw add 10 count ip from any to 192.168.1.1 in recv
fxp0
> [root@net-ninja]:~> ipfw add 11 count ip from 192.168.1.1 to any out xmit
fxp0
> [root@net-ninja]:~> ipfw show 10 11
> 00010 7 430 count ip from any to 192.168.1.1 in recv fxp0
> 00011 2 187 count ip from 192.168.1.1 to any out xmit fxp0
>
> Second column reports packets xfered, thrid column reports bytes xfered.
>
> ---
> Mike Wade ([EMAIL PROTECTED])
> Chief Technical Officer
> CDC Internet, Inc.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
