Re: [bwm-tools-tech] error during #bwmd --foreground

[rajveer s. <raj...@re...>]

Dear Mr, Kobe,=0Ai checked it with bwm_monitor, there was not movement in t=
raffice. I'm 100% sure that bwmd deamen is already running as u can see the=
 following output: -=0Alinux:~ # ps -aux|grep bwmd=0AWarning: bad ps syntax=
, perhaps a bogus '-'? See http://procps.sf.net/faq.html=0Aroot      6842  =
0.0  0.3  12144  1632 ?        Ssl  10:24   0:00 bwmd=0Aroot      7196  0.0=
  0.1   1828   612 pts/1    S+   10:34   0:00 grep bwmd=0Alinux:~ #=0A=0AAn=
d this please this is the output of bwm_monitor=0A=0A BWM Monitor v0.2.2 - =
Copyright (c) 2003-2005 Linux Based Systems Design ├──&#9=
472;──────────&=
#9472;─────────&#9472=
;──────────&#94=
72;──────────&#=
9472;─┐│                                                 =
                                                                          &=
#9474;│ ┌───────&#947=
2;──────┐                        =
                                                                           =
       ││ │ main_line    │                         =
                                                                           =
      ││ │-flow_machine1│                          =
                                                                           =
     ││ │ flow_machine2│      ┌─┤=
 Traffic Flow: flow_machine1 ├─────&#94=
72;──────────&#=
9472;────┐                                   =
          ││ └──────&=
#9472;───────┘      │=
                                                     │               =
                              ││                       │ =
Limits:                                             │                =
                             ││                       │  =
                                                   │                 =
                            ││                       │  M=
ax Rate :       16000  Burst Rate:        32000   │                  =
                           ││                       │  Qu=
eue Len:          64  Queue Size:        16384   │                   =
                          ││                       │     =
                                                │                    =
                         ││                       │ Curre=
nt:                                            │                     =
                        ││                       │       =
                                              │                      =
                       ││                       │  Rate  =
   :           0  Rate Avg  :            0   │                       =
                      ││                       │  Pkt/s  =
  :           0  Pkt/s Avg :            0   │                        =
                     ││                       │  Queue Le=
n:       0.00%  Queue Size:        0.00%   │                         =
                    ││                       │  Bursts   =
:           0  Drops     :            0   │                          =
                   ││                       │            =
                                         │                           =
                  ││                       │             =
                                        │                            =
                 ││                       │              =
 Press any key to quit...              │                             =
                ││                       └──&=
#9472;─────────&#9472=
;──────────&#94=
72;──────────&#=
9472;──────────=
────────┘         =0A=
=0A=0Athis is a output of iptables -L -n -v=0Alinux:~ # iptables -L -v -n=
=0AChain INPUT (policy ACCEPT 185 packets, 49326 bytes)=0A pkts bytes targe=
t     prot opt in     out     source               destination=0A 8484 3253=
K bwmd       all  --  *      *       0.0.0.0/0            0.0.0.0/0=0A=0ACh=
ain FORWARD (policy ACCEPT 0 packets, 0 bytes)=0A pkts bytes target     pro=
t opt in     out     source               destination=0A    5   310 bwmd   =
    all  --  *      *       0.0.0.0/0            0.0.0.0/0=0A=0AChain OUTPU=
T (policy ACCEPT 8732 packets, 3148K bytes)=0A pkts bytes target     prot o=
pt in     out     source               destination=0A=0AChain bwmd (2 refer=
ences)=0A pkts bytes target     prot opt in     out     source             =
  destination=0A    5   310 QUEUE      all  --  *      *       0.0.0.0/0   =
         0.0.0.0/0           MARK match !0x0=0A 8483 3253K ACCEPT     all  =
--  *      *       0.0.0.0/0            0.0.0.0/0=0Alinux:~ #=0A=0Aand this=
 is a output of iptables -L -n -v -t mangle=0Alinux:~ # iptables -L -v -n -=
t mangle=0AChain PREROUTING (policy ACCEPT 10069 packets, 3604K bytes)=0A p=
kts bytes target     prot opt in     out     source               destinati=
on=0A=0AChain INPUT (policy ACCEPT 9160 packets, 3494K bytes)=0A pkts bytes=
 target     prot opt in     out     source               destination=0A=0AC=
hain FORWARD (policy ACCEPT 5 packets, 310 bytes)=0A pkts bytes target     =
prot opt in     out     source               destination=0A    0     0 MARK=
       tcp  --  *      *       192.168.0.1          0.0.0.0/0           MAR=
K set 0x3e9=0A    5   310 MARK       udp  --  *      *       192.168.0.1   =
       0.0.0.0/0           MARK set 0x3e9=0A    0     0 MARK       tcp  -- =
 *      *       192.168.0.2          0.0.0.0/0           MARK set 0x3ea=0A =
   0     0 MARK       udp  --  *      *       192.168.0.2          0.0.0.0/=
0           MARK set 0x3ea=0A=0AChain OUTPUT (policy ACCEPT 9253 packets, 3=
338K bytes)=0A pkts bytes target     prot opt in     out     source        =
       destination=0A=0AChain POSTROUTING (policy ACCEPT 9258 packets, 3338=
K bytes)=0A pkts bytes target     prot opt in     out     source           =
    destination=0A=0AChain bwmd (0 references)=0A pkts bytes target     pro=
t opt in     out     source               destination=0A    0     0 QUEUE  =
    all  --  *      *       0.0.0.0/0            0.0.0.0/0           MARK m=
atch !0x0=0A    0     0 ACCEPT     all  --  *      *       0.0.0.0/0       =
     0.0.0.0/0=0Alinux:~ #=0A=0AYou can see in mangle table's bwmd chain, t=
he counter is not going up where as the bwmd chain of filter chain is happe=
ning something. Please see and suggest me where i'm making mistakes=0A=0AWi=
th thanks & regards=0A=0ARajveer Singh=0A=0AOn Sun, 26 Feb 2006 Kobe Lenjou=
 wrote :=0A>Did you check the good working with 'bwm_monitor' and is the bw=
md deamon running?=0A>=0A>Also, try iptables -L -n -v to see any counters g=
oing up=0A>=0A>Greetz=0A>Kobe=0A>=0A>rajveer singh wrote:=0A>>=0A>>  Hi all=
,=0A>>=0A>>Thanks Mr. Kobe for providing steps it helps me a lot. but i goe=
s to monitor there nothing is happening.=0A>>my /etc/bwm_tools/firewall's c=
ontents are as below=0A>>=0A>>     # Global configuration and access classe=
s=0A>>=0A>>=0A>>=0A>>         <global>=0A>><modules>=0A>>         <load nam=
e=3D"ip_queue"/>=0A>></modules>=0A>>         <class name=3D"out_machine1">=
=0A>><address name=3D"out_machine1_tcp"  proto=3D"tcp" src=3D"192.168.0.1"/=
>=0A>><address name=3D"out_machine1_udp"  proto=3D"udp" src=3D"192.168.0.1"=
/>=0A>></class>=0A>>=0A>>         <class name=3D"out_machine2">=0A>><addres=
s name=3D"out_machine2_tcp"  proto=3D"tcp" src=3D"192.168.0.2"/>=0A>><addre=
ss name=3D"out_machine2_udp"  proto=3D"udp" src=3D"192.168.0.2"/>=0A>></cla=
ss>=0A>>=0A>></global>=0A>>=0A>>=0A>>         # Access control lists=0A>>  =
       # Network address translation=0A>>         # Traffic flows=0A>>=0A>>=
         <traffic>=0A>>=0A>>         # Rate can be specified in either IN, =
OUT or TOTAL (rate-total)=0A>>         # If rate-total =3D=3D 0, no rate li=
mits=0A>>=0A>>=0A>><flow name=3D"main_line" stats-len=3D"5" queue-size=3D"2=
62144" queue-len=3D"400" max-rate=3D"64000" burst-rate=3D"65000" report-tim=
eout=3D"60">=0A>>         <flow name=3D"flow_machine1" max-rate=3D"16000" b=
urst-rate=3D"32000" queue-size=3D"16384" report-timeout=3D"60">=0A>>       =
          <queue prio=3D"99" nfmark=3D"1001">=0A>>                         =
out_machine1;=0A>>                 </queue>=0A>>         </flow>=0A>>      =
   <flow name=3D"flow_machine2" max-rate=3D"16000" burst-rate=3D"32000" que=
ue-size=3D"16384" report-timeout=3D"60">=0A>>                 <queue prio=
=3D"99" nfmark=3D"1002">=0A>>                         out_machine2;=0A>>   =
              </queue>=0A>>         </flow>=0A>></flow>=0A>></traffic>=0A>>=
</firewall>=0A>>=0A>>and my contents of /etc/sysconfig/iptables are as belo=
w:=0A>>=0A>># Generated using BWM Firewall v0.2.2: Sat Feb 25 18:06:44 2006=
=0A>>=0A>>*mangle=0A>>:OUTPUT ACCEPT=0A>>:INPUT ACCEPT=0A>>:FORWARD ACCEPT=
=0A>>-A FORWARD --source 192.168.0.1 --protocol tcp  -j  MARK --set-mark 10=
01=0A>>-A FORWARD --source 192.168.0.1 --protocol udp  -j  MARK --set-mark =
1001=0A>>-A FORWARD --source 192.168.0.2 --protocol tcp  -j  MARK --set-mar=
k 1002=0A>>-A FORWARD --source 192.168.0.2 --protocol udp  -j  MARK --set-m=
ark 1002=0A>>COMMIT=0A>>*filter=0A>>:OUTPUT ACCEPT=0A>>:bwmd -=0A>>:INPUT A=
CCEPT=0A>>:FORWARD ACCEPT=0A>>-A bwmd -m mark ! --mark 0 -j QUEUE=0A>>COMMI=
T=0A>>=0A>>when i tried to create graph as per below=0A>>linux:~ # bwm_grap=
h --flow=3D"out_machine1 --start=3D"2006/02/25 18:28" --end=3D"2006/02/25 1=
8:30" output=3D/etc/file1=0A>> >=0A>> >=0A>> >=0A>> >=0A>> >=0A>> >=0A>>not=
hing happen=0A>>=0A>>I'm thinking it's some problem in my firewall setup. I=
 tried to recognise it. but unable to find it.=0A>>=0A>>=0A>>=0A