* rate of traffic that mach a rule
@ 2010-09-01 20:55 Mamadou Touré
2010-09-01 22:05 ` Jan Engelhardt
2010-09-02 7:00 ` Richard Horton
0 siblings, 2 replies; 3+ messages in thread
From: Mamadou Touré @ 2010-09-01 20:55 UTC (permalink / raw)
To: netfilter
Hi all,
is there a mean to know the rate of traffic that mutch a rule?
for exemple i'd like to kow the rate of traffic that match the rule
iptables -t mangle -A POSTROUTING -p TCP -dport 80 -j ACCEPT
regards.
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: rate of traffic that mach a rule
2010-09-01 20:55 rate of traffic that mach a rule Mamadou Touré
@ 2010-09-01 22:05 ` Jan Engelhardt
2010-09-02 7:00 ` Richard Horton
1 sibling, 0 replies; 3+ messages in thread
From: Jan Engelhardt @ 2010-09-01 22:05 UTC (permalink / raw)
To: Mamadou Touré; +Cc: netfilter
On Wednesday 2010-09-01 22:55, Mamadou Touré wrote:
>Hi all,
>is there a mean to know the rate of traffic that mutch a rule?
Sort of (one can collect packets by using -j RATEEST and match
with -m rateest).
It just that it is not exported to userspace.
>for exemple i'd like to kow the rate of traffic that match the rule
>iptables -t mangle -A POSTROUTING -p TCP -dport 80 -j ACCEPT
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: rate of traffic that mach a rule
2010-09-01 20:55 rate of traffic that mach a rule Mamadou Touré
2010-09-01 22:05 ` Jan Engelhardt
@ 2010-09-02 7:00 ` Richard Horton
1 sibling, 0 replies; 3+ messages in thread
From: Richard Horton @ 2010-09-02 7:00 UTC (permalink / raw)
To: Mamadou Touré; +Cc: netfilter
2010/9/1 Mamadou Touré <e2ia.ci@gmail.com>:
> Hi all,
> is there a mean to know the rate of traffic that mutch a rule?
>
> for exemple i'd like to kow the rate of traffic that match the rule
> iptables -t mangle -A POSTROUTING -p TCP -dport 80 -j ACCEPT
>
As a thought create a htb queue:
One queue set to 100% of your line speed
One queue set to an arbitry value (say 50%) and allowed to borrow upto
100% (ceil parameter)
Mark traffic you want to rate monitor in iptables using -j MARK --set-mark
Use a tc filter to direct that traffic into the second queue and
monitor the queue statistics...
--
Richard Horton
Users are like a virus: Each causing a thousand tiny crises until the
host finally dies.
http://www.pbase.com/arimus - My online photogallery
http://www.richardhorton.info
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2010-09-02 7:00 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2010-09-01 20:55 rate of traffic that mach a rule Mamadou Touré
2010-09-01 22:05 ` Jan Engelhardt
2010-09-02 7:00 ` Richard Horton
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.