IPFilter maintains a last-packet cache for both input and output...
If you have time, I would appreciate it if you could send me the output
of the two command strings below which output the effectiveness of the
cache.
Please reply directly to me and include a rough guestimate of how many
boxes are behidn IPFilter.
Thanks,
Darren
ipfstat | awk ' { if ($1 == "output" && $3 == "blocked") { i=$4; i+=$6; } if
($2 == "cache") { print "in hits",$6*100/i; } } ' -
ipfstat | awk ' { if ($1 == "input" && $3 == "blocked") { i=$4; i+=$6; } if ($2
== "cache") { print "in hits",$4*100/i; } } ' -
