* DNAT and accounting
@ 2002-11-20 18:56 ard-netfilter
0 siblings, 0 replies; only message in thread
From: ard-netfilter @ 2002-11-20 18:56 UTC (permalink / raw)
To: netfilter
Hi,
I did not really find it yet (yes, I am a louse searcher) in the
archive, but does anybody know if it is possible to get
accounting statistics from a DNATted network?
I mean:
iptables -t nat --append PREROUTING --destination 192.168.1.0/24 \
--jump DNAT --to-destination 192.168.1.1
How can I get accounting statistics for all the ip addressess
that are in that range?
Something like
iptables -t mangle --append PREROUTING --source 192.168.1.4
or:
iptables -t mangle --append POSTROUTING --source 192.168.1.4
As I can see it: there is no table that is able to see the
un-DNATted version of the returning packet.
In other words: if I have set up a connection to 192.168.1.4, it
will be a DNATted connection to 192.168.1.1 . But now I want to
have statistics about how much 192.168.1.1 sends back in name of
192.168.1.4 . As far as I can see, all the tables only see
192.168.1.1 as the sender of the reply packets.
--
mail up 4+07:59, 4 users, load 0.00, 0.02, 0.00
mistar1 up 1+21:11, 6 users, load 0.00, 0.00, 0.00
Let your government know you value your freedom: sign the petition:
http://petition.eurolinux.org
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2002-11-20 18:56 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2002-11-20 18:56 DNAT and accounting ard-netfilter
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.