From mboxrd@z Thu Jan  1 00:00:00 1970
From: Abdul-Wahid Paterson <abdulwahid@gmail.com>
Subject: Re: Iptables, php , realtime bandwidth usage
Date: Fri, 6 May 2005 17:06:15 +0100
Message-ID: <995fcdb005050609064dac8fcd@mail.gmail.com>
References: <000e01c5515e$b0b62570$1701a8c0@info2000256>
	<427A3E1C.3070803@riverviewtech.net>
	<f48e768e050505102175ad27b4@mail.gmail.com>
	<001e01c55248$33d22460$1701a8c0@info2000256>
Reply-To: Abdul-Wahid Paterson <abdulwahid@gmail.com>
Mime-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Return-path: <netfilter-bounces@lists.netfilter.org>
In-Reply-To: <001e01c55248$33d22460$1701a8c0@info2000256>
Content-Disposition: inline
List-Id: <netfilter.vger.kernel.org>
List-Unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
List-Archive: </pipermail/netfilter>
List-Post: <mailto:netfilter@lists.netfilter.org>
List-Help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-Subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
Sender: netfilter-bounces@lists.netfilter.org
Errors-To: netfilter-bounces@lists.netfilter.org
Content-Type: text/plain; charset="us-ascii"
To: Robert Becskei <brobiwbe@stcable.co.yu>
Cc: netfilter@lists.netfilter.org

Hi Robert,

Some options for you...

1. Install snmp service on all the machines. This can be done for
windows/linux machines and you can then plot the bandwidth with
something like cacti. Rather than just plotting your firewall which
won't give you the host break down you want.

2. iptraf is a console app that will allow you to get a pretty good
break down of what is currently happening.

3. Using iptables and ULOG is prob not a good idea unless you have a
very restrictive set of packets you actually want to look at. You
could though use ULOG with a web based app (search freshmeant for ulog
and you will find a couple).

4. Use something like squid and squid-graph...Prob not real time
enough for you but can give you an excellent breakdown of what
everyone on the network has been up to, what sites they have gone to
and how much bandwidth they have been using.

Regards,

Abdul-Wahid




On 5/6/05, Robert Becskei <brobiwbe@stcable.co.yu> wrote:
> Hello,
>=20
>  thanx for all the responses, but those tools arent exactly what I'm look=
ing
> for (and maybe I need to practice english a bit more as well :) ).
>=20
>  example :
>=20
>  computers----router----proxy---gateway---internet
>=20
>  computer1 192.168.1.10
>  computer2 192.168.1.11
>  computer3 192.168.1.12
>=20
>  at the router I would like to see that at that moment how much bandwithd=
 is
> being used.
>  for example I would like to see something like this (example) :
>=20
>  computer1  download 10kbyte/s  upload 1.5kbyte/s
>  computer2 download 0kbyte/s upload 0kbyte/s
>  computer3 download 20kbyte/s upload 2kbyte/s
>=20
>  my problem is (I currently use cacti, and bigsister), that I cannot see =
how
> is my bandwidthd currenly used on a per host basis.
>  I can see graphs about that my current download and upload is this and t=
hat
> (overall), but I would like to see something as shown
>  above in the example, I wonder if there is some tool for that ?
>=20
> Sincerely
> Robert Becskei
>=20
>=20
> ----- Original Message -----
> From: "Glaucius Djalma Pereira Junior" <glaucius@gmail.com>
> To: "Taylor, Grant" <gtaylor@riverviewtech.net>
> Cc: <netfilter@lists.netfilter.org>
> Sent: Thursday, May 05, 2005 19:21
> Subject: Re: Iptables, php , realtime bandwidth usage
>=20
> use it
>=20
> http://ifmonitor.preteritoimperfeito.com/
>=20
> On 5/5/05, Taylor, Grant <gtaylor@riverviewtech.net> wrote:
> > >  I wonder if someone could help me find something similiar to this :
> > >
> > >  -can monitor bandwidthd usage in real time (php maybe...)
> > >
> > >  -if possible it could resolve ip address to dns name ? ( I have setu=
p
> > > my own dynamicdns dhcp server combo )
> >
> > You may want to look in to some of the SNMP monitoring tools (two come =
to
> > mind MRTG and Cacti) as they will do a lot of the graphics and graphica=
l
> > web access for you.  However to do this you will either need a manged +
> > SNMP capable switch to watch which port each computer is plugged in to =
or
> > you will need to set up some sort of rules for counting on your router =
/
> > firewall and then set up some sort of SNMP package on the router /
> > firewall to point your SNMP monitoring app at.
> >
> > As far as getting close to real time stats you could set up some iptabl=
es
> > rules to easily count what passes through the router in each direction =
for
> > each client.  You may want to look at the accounting matches as they ar=
e
> > designed explicitly for this or just basic packet matching rules will w=
ork
> > too.  One word to the wise (unless there is a way to defeat this) the
> > bytes and packet counters on iptables output will start rounding at som=
e
> > point, I'm not sure where, so you may want to pass the -Z option to zer=
o
> > out the counters periodically (each polling cycle) to make sure that yo=
u
> > get all packets and not loose them to rounding.
> >
> >
> > Grant. . . .
> >
> >
>=20
> --
> Glaucius Djalma Pereira Junior
> glaucius@gmail.com
>=20
>