Date: Sat, 20 Sep 2003 11:53:44 -0400 From: Chuck Swiger <cswiger@mac.com> To: freebsd-ipfw@FreeBSD.ORG Subject: Re: ssh/scp filtering, iplen problem Message-ID: <3F6C7808.8070408@mac.com> In-Reply-To: <200309201510.h8KFAOxL062601@lurza.secnetix.de> References: <200309201510.h8KFAOxL062601@lurza.secnetix.de>
next in thread | previous in thread | raw e-mail | index | archive | help
Oliver Fromme wrote: [ ... ] > If not -- is there any other way to accomplish nwhat I > want to achieve? The other poster's suggestion about using port 22 for interactive and some other port for scp copying is probably the easist. The next thought I had would be to instrument ssh and log a line indicating the amount of traffic consumed, perhaps via syslog to a central machine, if you wanted to monitor traffic for lots of machines rather than just one test server. A quick look at "ssh -v" suggests that ssh keeps a byte counter, and doing filecopy invokes ssh on the remote side with a command of "scp -t ..." (so that you could distinguish between interactive and copying modes within ssh). -- -Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3F6C7808.8070408>