--- On Fri, 5/6/11, Tom Eastep <[email protected]> wrote:
> From: Tom Eastep <[email protected]> > Subject: Re: [Shorewall-users] shorewall show connections with bytes and > packets > To: "Shorewall Users" <[email protected]> > Date: Friday, May 6, 2011, 5:29 PM > > On May 6, 2011, at 7:12 AM, Vieri Di Paola wrote: > > > Hi, > > > > I used a custom script to count packets and bytes from > "shorewall show connections". I noticed that on another more > recent server, this script fails because > /proc/net/nf_conntrack does not contain either bytes or > packets. > > > > Example while opening www.google.com: > > > > ipv4 2 tcp > 6 431999 ESTABLISHED src=10.215.144.48 dst=209.85.147.104 > sport=52531 dport=80 src=209.85.147.104 dst=10.215.144.48 > sport=80 dport=52531 [ASSURED] mark=0 secmark=0 use=2 > > > > ipv4 2 tcp > 6 431999 ESTABLISHED src=10.215.144.48 dst=209.85.147.104 > sport=52533 dport=80 src=209.85.147.104 dst=10.215.144.48 > sport=80 dport=52533 [ASSURED] mark=0 secmark=0 use=2 > > > > ipv4 2 tcp > 6 431999 ESTABLISHED src=10.215.144.48 dst=209.85.147.104 > sport=52530 dport=80 src=209.85.147.104 dst=10.215.144.48 > sport=80 dport=52530 [ASSURED] mark=0 secmark=0 use=2 > > > > ipv4 2 tcp > 6 431998 ESTABLISHED src=10.215.144.48 dst=209.85.147.104 > sport=52532 dport=80 src=209.85.147.104 dst=10.215.144.48 > sport=80 dport=52532 [ASSURED] mark=0 secmark=0 use=2 > > > > kernel is 2.6.36. > > > > Am I missing something? > > > Have you tried running 'contract -L'? That's what > 'shorewall show connections' does if conntrack is > installed. I'm supposing you meant "conntrack -L". I didn't have it installed so I grabbed the package. Still, conntrack -L gives the same output without "bytes", "packets". I don't know if I need to reboot the kernel but I won't be able to do it before Monday morning. Or maybe my kernel/netfilter installation is wrong. Thanks for the tip. Vieri ------------------------------------------------------------------------------ WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
