On Saturday 22 June 2002 3:00 pm, David B Harris wrote: > I'd suggest you use iptable's byte-counting instead. 'iptables -L -n -v -x'
Thanks, David - I forgot the '-x' in my version, and this makes the numbers an awful lot easier to process :-) > will list the bytes which have _crossed_ each given rule. (So it > won't just count which packets have matched.) I'm not sure I agree with this - I believe the byte / packet counters only count packets matched by the rule, so that if you have the rules: iptables -A FORWARD -p tcp --dport 25 -j ACCEPT iptables -A FORWARD -p tcp --dport 110 -j ACCEPT the counters for the first one will only show you SMTP traffic, and the counters for the second one will only show you POP3 traffic. Antony.
