On Wed, May 05, 2004 at 11:55:00AM +0300, Josh Zlatin-Amishav wrote: > There are two seperate projects here. The first is ntop. It is very easy > to install on Debian, I haven't had experience installing ntop on other > platforms. I setup ntop on a bridge between my router and firewall. You > can configure ntop to log to an RRD database, thus you do not have to > worry about data reduction. You can find out more here: > http://www.ntop.org/ntop.html
Another option is to use the byte counter attached to every IPTables rule. (Run 'iptables -L -v' to see it -- pretty neat, no?) This means you can use it for traffic statistics with conditions as rich as IPTables' filtering is. Simply add ACCEPT rules. On IGLU, I hooked MRTG to it, to get various bandwidth statistics. MRTG's contrib/ directory contains scripts which allow gathering stats from IPChains/IPTables counters. > You need the iproute package. I wrote a bash script using HTB to handle the QoS on my > entire Internet connection. If you just want to limit the bandwidth on one box I > would use the TBF > (Token Bucket Filter) instead of HTB (Hierarchical Token Bucket). BTW, HTB is very recommended even for regular ADSL/cable connections. Simply add this to your /etc/ppp/ip-up.d/: tc qdisc add dev $PPP_IFACE root tbf rate 90kbit latency 50ms burst 1540 # replace '90kbit' with your own upstream rate minus few kbits and get an immediate improvement in ping times and SSH/telnet responsiveness. ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
