I have the following in /etc/shorewall/accounting: #"Red" interface traffic red:COUNT - eth1 - red:COUNT - - eth1 DONE red
The goal is to be tallying all traffic that hits my "red" (i.e. external) interface, whether Shorewall ends up dropping, rejecting, or accepting it. However, this seems to only be counting traffic that is actually accepted (including traffic that is forwarded through the firewall, both directions, obviously). Is there some modification I can make to this set of rules to track all traffic that reaches the interface? Or, maybe more ideally, is there a way to write accounting rules that include only dropped or rejected traffic? Or am I just flat wrong and this actually IS doing what I want it to already? -- "The reader is entertained by the journey of another, but the writer is the changer of worlds." - D'ni Proverb 0100111001000101010100100100010000100001 ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA Learn about the latest advances in developing for the BlackBerry® mobile platform with sessions, labs & more. See new tools and technologies. Register for BlackBerry® DevCon today! http://p.sf.net/sfu/rim-devcon-copy1 _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
