On Tue 17 Feb 2015 12:27:34 NZDT +1300, Walter Parker wrote: > For the real time monitor, if you switch from WAN to LAN, you can see who > is doing spikes. For the other items, you can see how much bandwidth each > internal IP addresses has used in one of those packages. Unless you have > servers in a DMZ outside of the firewall or are doing some sort of traffic > reflection to internal hosts, all traffic to/from a desktop to the firewall > is traffic to the internet.
We probably have a different idea of network topology. E.g. the wifi is on a different network (I don't trust wireless) to the LAN. Then I grab a laptop, connect it to wifi, and transfer 1GB with a desktop, LAN fileserver, or whatever. All this traffic goes through pfsense, but not through WAN, and is of no interest in finding out which LAN/wifi/etc host had how much traffic to the Internet (through WAN). bytes/s is of not much interest to me either, total bytes per day/week/month is. The problem with the pfsense bandwidth packages (all of them) is that they're interface based. They tell me how much traffic each host connected to interface A contributed to the traffic through A. What I want to know is how much traffic each host connected to interface A, B, C contributes to traffic through *D*. This is of interest to anyone charged by volume by their ISP. The netflow setup looks like the only contender for this, but it does nothing by itself and the whole setup looks a bit involved. I'll make another effort when I get the time. Open source on Linux only for me though, unless it is on pfsense. Thanks for thinking of the screenshots but I don't think they'd add much to your description. Volker -- Volker Kuhlmann http://volker.top.geek.nz/ Please do not CC list postings to me. _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
