On Monday 14 November 2011 01:33:11 Erich Weiler wrote: > Actually, another question might be: How can I prove that my firewall > really is dropping packets in transit, as it forwards them on? Is there > some sysctl oid that would show dropped packets, so some netstat counter > I can look at?
I'll say something stupid, but in the worst case just use tcpdump to capture both of your interfaces, and then compare them, one way or the other... A quick google of "pcap diff" gives some results, like http://sourceforge.net/projects/tpcat/ -- Rémy Sanchez http://hyperthese.net/
signature.asc
Description: This is a digitally signed message part.
