I downloaded 2.4.18 and recompiled with the:
bridge-nf-0.0.6-against-2.4.18.diff patch.
My bridge is up and running, I can see packets on the
br0 interface.
iptables -A FORWARD -j ACCEPT -o br0 -m state --state
ESTABLISHED -s 128.192.11.100 -d 0/0 -p tcp
--set-counters 0 0
The above command works, and I see packets:
iptables -L FORWARD -v
Chain FORWARD (policy ACCEPT 318K packets, 148M bytes)
pkts bytes target prot opt in out source
destination
81 3300 ACCEPT tcp -- any br0
vegas.terry.uga.edu anywhere state
ESTABLISHED
If I change :
-d 0/0 -p tcp --set-counters 0 0
to :
-d 0/0 -p tcp --dport www --set-counters 0 0
(also tried ssh)
The counters for www or ssh are always zero. I also
tried various combos of ESTABLISHED, RELATED, NEW, and
INVALID, without success.
0 0 ACCEPT tcp -- any br0
vegas.terry.uga.edu anywhere state
RELATED,ESTABLISHED tcp dpt:http
I would like to set up 10 or so rules to do accounting
to/from various servers and ports.
What am I doing wrong? Any Suggestions?
Thanks,
John Taylor
[EMAIL PROTECTED]
__________________________________________________
Do You Yahoo!?
Yahoo! Sports - live college hoops coverage
http://sports.yahoo.com/
_______________________________________________
Bridge mailing list
[EMAIL PROTECTED]
http://www.math.leidenuniv.nl/mailman/listinfo/bridge
