On Tue, Aug 02, 2005 at 10:27:57PM +0200, Henning Brauer wrote: > * Tihomir Koychev <[EMAIL PROTECTED]> [2005-08-02 12:11]: > > > Does this mean that basic label-based IP accounting > > > won't mix with > > > keeping state at all? > > no, states have a pointer back to the rule that created it and update > the stats on it.
I discovered this recently. I was confused due to the structure of my original ruleset, which kept state on a catch-all rule in stead of for individual clients. > > there is patch in current > > http://www.openbsd.org/cgi-bin/cvsweb/src/sbin/pfctl/pfctl.c > > which allow counting in/out packets + in/out bytes > > from labels. > > that is ENTIRELY unrelated to the OPs question. and the pfctl part is, > well, only a part of it, and the smaller one. However unrelated, I think it might have been what I was actually looking for. I gave up trying to patch all the individual files, and upgraded to the 3.7 snapshot as of 20th july. Now I'm a happy hippo fiddling with all the counters I could ever want. It's your work, right, Henning? Good job. sven
