From: Adam G. <mai...@we...> - 2009-05-29 07:50:17
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > Here what I've done: > > iptables -A INPUT -p tcp --sport 8874 > iptables -A OUTPUT -p tcp --dport 8874 > iptables -A INPUT -s remotehost -p tcp --sport 22 > iptables -A OUTPUT -d remotehost -p tcp --dport 22 > > Here what it gives: > > storebox:~# iptables -L -nv --exact > Chain INPUT (policy ACCEPT 40220649 packets, 87803266224 bytes) > pkts bytes target prot opt in out source > destination > 0 0 tcp -- * * 84.55.237.6 > 127.0.0.1 tcp spt:22 > > Chain OUTPUT (policy ACCEPT 24635821 packets, 47029237338 bytes) > pkts bytes target prot opt in out source > destination > 68820 9164973 tcp -- * * 0.0.0.0/0 > 84.55.221.14 tcp dpt:22 > > I guess I can in this way be accounting for "generated traffic". The IP address is different in the above two sections, and you still have the 127.0.0.1 on the INPUT line, that is why you are not counting the received traffic as well. Regards, Adam - -- Adam Goryachev Website Managers www.websitemanagers.com.au -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkofk68ACgkQGyoxogrTyiVGcgCeLLJKB5pPd8nPClPfgLwvXbRq LOMAn1fXzCVFhToJutDjfE9bfCIadss8 =osxu -----END PGP SIGNATURE----- |