Date: Wed, 30 Jan 2002 12:30:05 +1100 From: Edwin Groothuis <edwin@mavetju.org> To: Mauro Dias <mribeiro@techlinux.com.br> Cc: questions@freebsd.org Subject: Re: ipfw + natd Message-ID: <20020130123005.X823@k7.mavetju.org> In-Reply-To: <001f01c1a906$b5cb9300$0200a8c0@mdrjr.net>; from mribeiro@techlinux.com.br on Tue, Jan 29, 2002 at 06:36:46PM -0200 References: <001f01c1a906$b5cb9300$0200a8c0@mdrjr.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Jan 29, 2002 at 06:36:46PM -0200, Mauro Dias wrote: > I'm using natd and ipfw to allow my intranet (192.168.0.0/24) to access > internet. > internet interface: rl2 > intranet interface rl1 > not using interface: rl0 (hehe) > > I'm using FreeBSD-4.5RC > > can someone tell how do i see what users in 192.168.0.0/24 are doing ? > something like netstat -M ? If you add keep-state to your ipfw-rules you will get a line in the ipfw -a l output for every tcp connection. Or try trafshow (don't run it as root, it's leaking descriptors). See http://www.mavetju.org/unix/tcpdumpmortals.php how to configure your system so normal users can run things like trafshow without needing root-access. Edwin -- Edwin Groothuis | Personal website: http://www.MavEtJu.org edwin@mavetju.org | Interested in MUDs? Visit Fatal Dimensions: ------------------+ http://www.FatalDimensions.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020130123005.X823>