RE: lug-bg: traffic log with ipchains
- Subject: RE: lug-bg: traffic log with ipchains
- From: gashti_dolu@xxxxxxxxx (gggg ggg)
- Date: Thu, 1 Mar 2001 13:07:36 -0800 (PST)
abe v kraina smetka az polzvam neshto ot roda;
ipchains -A input -i eth0 -s 0/0 -d 10.10.10.25 -j
ACCEPT -b
i za vaprosnia IP 25 se natrupva trafika , no samo na
edinia chain , vapreki 4e e za in i out.mnogo e grozno
da ne ti e razdelen in i out trafika.
tova iskah da mi pomognete - kak da gi razdelia.
g.
--- Kliment Ognianov <kleo@xxxxxxxxxxxxx> wrote:
> RE: lug-bg: traffic log with ipchainsuhhhhhhh
> da be, da! :)
> A mistake! ;PPP
> -----Original Message-----
> From: owner-lug-bg@xxxxxxxxxxxxxxxxxx
> [mailto:owner-lug-bg@xxxxxxxxxxxxxxxxxx]On Behalf Of
> Boyan Krosnov
> Sent: Wednesday, February 28, 2001 4:54 PM
> To: lug-bg@xxxxxxxxxxxxxxxxxx
> Subject: RE: lug-bg: traffic log with ipchains
>
>
> read below
>
> --
> Boyan Krosnov (http://www.nat.bg/~bkrosnov)
> Network Administrator
> Lirex BG Ltd.
>
> > -----Original Message-----
> > From: Kliment Ognianov
> [mailto:kleo@xxxxxxxxxxxxx]
> > Sent: Wednesday, February 28, 2001 10:10 AM
> > To: lug-bg@xxxxxxxxxxxxxxxxxx
> > Subject: RE: lug-bg: traffic log with ipchains
> >
> >
> > 6tom e 10.10.x.x za6to maskata ti e 24?????
> e kakyv ti e problema ? :)
> 10.0.0.0/8 nawremeto e bila A class mreja zadelena
> za private upotreba
> (sidenote: drugi takiwa sa
> 16xB class 172.16.0.0/16 do 172.31.0.0/16
> 256xC class 192.168.0.0/24 do 192.168.255.0/24
> )
> interneta e classless (tyrsi RFC-ta za VLSM i
> CIDR) oshte ot predi az da
> zapochana da se zanimawam s nego
> (sidenote: w momenta private adresite sa
> 10.0.0.0/8 , ne kazwajte dumichkata Aclass :)
> 172.16.0.0/12
> 192.168.0.0/16
> kato userite mogat po proizwolen nachin da si
> polzwat podmreji na tiq
> mreji
> )
>
> > I osven tova vmesto da pravish po 2 chain-a ( da
> smenqsh -s i
> > -d) sloji si
> > napravo -b
> > ipchains -A input -i eth0 -s 0/0 -d 10.10.0.0/16
> -b -l -j ACCEPT
> towa dobawq dwa reda w chain-a! pishe si go w mana
> na ipchains.
> edinstwenoto preimushtestwo e che pishesh edin red
> wyw skripta kojto ti
> prawi firewall-a wmesto dwa
>
> > osven tova sloji
> > echo "1" > /proc/sys/net/ipv4/ip_forward
> (predpolagam , 4e go
> > imash, ina4e
> > zabravqsh za masq-ing)
>
> > ipchains -P forward DENY
> > ipchains -A forward -s 10.10.0.0/16 -d
> !10.10.0.0/16 -j MASQ
> > Predpolagam , 4e 6te stane.....
> >
> > I vse pak ne e li po-udobno da polzvash mrtg???
> mrtg ne e tool s kojto moje da se prawi accounting
> na ip trafik
> mrtg e tool za prawene na krasivi kartinki koito
> chowek da si gleda.
>
>
__________________________________________________
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail.
http://personal.mail.yahoo.com/
===========================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers)
Otpiswaneto RABOTI !!! : Majordomo@xxxxxxxxxxxxxxxxxx UNSUBSCRIBE LUG-BG
http://www.linux-bulgaria.org/ Hosted by Internet Group Ltd. - Stara Zagora
|