> > > Apparently, this is a means to send packets to user space. I want to do > > > something very simple. I want to grab the destination ip address of > > > html packets and keep a log for the day of where the internal host was > > > going that can be browsed on a public local area network web page. > > > > You're making it too complicated. Your NAT router is running Linux, right? > > Just use tcpdump or tshark. Or just add an IPTables LOG rule. > > Well okay, but how do I say count the number of packets and decide who > should be delayed in the future to ensure fairness?
You didn't mention anything about fairness in your first post. Often it is best to first describe what you are trying to accomplish. Have you looked at the limit and hashlimit modules in iptables? If those don't work for your needs, then whatever you were planning on doing to ensure fairness in userspace can still be done using the LOG rule. Just process the logs with a script, etc. iptables also tracks number of packets matching a given rule, so statistics can be gathered directly from kernel counters, rather than having to count number of lines of a log file. tim _______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
