Date: Mon, 2 Aug 2004 10:55:55 +0400 From: dawnshade <h-k@mail.ru> To: Gregory Bond <gnb@itga.com.au> Cc: freebsd-ipfw@freebsd.org Subject: Re[2]: strange behaivor ipfw2 counters Message-ID: <139945796863.20040802105555@mail.ru> In-Reply-To: <200408012317.JAA27513@lightning.itga.com.au> References: Your message of Fri, 30 Jul 2004 11:41:17 %2B0400. <200408012317.JAA27513@lightning.itga.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello Gregory, Monday, August 2, 2004, 3:17:48 AM, you wrote: GB> h-k@mail.ru said: >> >> >>00001 5900 1623729 count ip from any to any in recv cp1 >>00002 130 9768 count ip from any to any out xmit cp1 >> >>cp1 - external interface, no nat, route real IP adresses. >>When i download via http from this router counter 2 increasing, but when >>download from client behind this router via ftp counter 2 increasing, but >>_very_ small. GB> In rule 2, you are counting bytes back out to the internet. For an FTP GB> download, this will only be the ACK packets - a very tiny amount. GB> Perhaps you GB> meant "out fxp1" instead? _in_ fxp?? Next rules: 00001 3565222 1636826036 count ip from any to any in recv cp1 00002 384898 314601856 count ip from any to any out xmit cp1 00003 473872 352073912 count ip from any to any in via fxp* 00004 3584143 1645055815 count ip from any to any out via fxp* As you see - counters similar (a little diif, cause i have some services on fxp's). All counters launch at the same time. >> P.S. Sorry for terrible English. GB> Your English is far better than our Russian! :) I think that some bug, when code ipfw2 was MFC'ed to 4.X. ---------- Best regards, dawnshade mailto:h-k@mail.ru
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?139945796863.20040802105555>