Ross Vandegrift wrote:
> Hello,
>
> Is there any documentation describing the setup required for uacctd?
> I'd like to check this out, but can't quite figure out all the steps I
> need to do in order to get things working.
>
> Thanks,
> Ross
Below is an example of uacctd that I'm running:
vya...@r1# cat /etc/pmacct/uacctd.conf
! autogenerated by /opt/vyatta/sbin/vyatta-netflow.pl
daemonize: true
promisc: false
pidfile: /var/run/uacctd.pid
imt_path: /tmp/uacctd.pipe
uacctd_group: 2
refresh_maps: true
pre_tag_map: /etc/pmacct/int_map
aggregate:
tag,src_mac,dst_mac,vlan,src_host,dst_host,src_port,dst_port,proto,tos,flows
syslog: daemon
plugins: memory,nfprobe[10.1.0.21-2055]
nfprobe_receiver[10.1.0.21-2055]: 10.1.0.21:2055
nfprobe_version[10.1.0.21-2055]: 9
nfprobe_engine[10.1.0.21-2055]: 0:0
Then I add the interfaces I want to iptables.
vya...@r1# iptables -t raw -nvL PREROUTING
Chain PREROUTING (policy ACCEPT 30 packets, 4236 bytes)
pkts bytes target prot opt in out source
destination
1608 85539 ULOG all -- eth1 * 0.0.0.0/0
0.0.0.0/0 ULOG copy_range 64 nlgroup 2 queue_threshold 10
0 0 ULOG all -- eth1.101 * 0.0.0.0/0
0.0.0.0/0 ULOG copy_range 64 nlgroup 2 queue_threshold 10
4710 1027K ULOG all -- eth0 * 0.0.0.0/0
0.0.0.0/0 ULOG copy_range 64 nlgroup 2 queue_threshold 10
I happen to choose the raw table to see the packets before nat/firewall,
but if you hook into netfilter in the POSTROUTING chain then you can
also get the output interface in the netflow records.
cheers,
stig
_______________________________________________
pmacct-discussion mailing list
http://www.pmacct.net/#mailinglists
