*BSD News Article 98104


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!munnari.OZ.AU!news.ecn.uoknor.edu!news.wildstar.net!news.ececs.uc.edu!news.kei.com!nntprelay.mathworks.com!howland.erols.net!newsfeed.internetmci.com!gryphon.phoenix.net!not-for-mail
From: "Greg" <gking@this.aint.my.address.com>
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: ipfw use as a traffic analyzer
Date: Fri, 20 Jun 1997 04:46:45 -0600
Organization: Balls.Org
Lines: 41
Message-ID: <5odn7m$cns$1@gryphon.phoenix.net>
Reply-To: "Greg" <gking@neither.is.this.com>
NNTP-Posting-Host: gking.balls.org
X-Newsreader: Microsoft Outlook Express 4.71.0544.0
X-MimeOLE: Produced By Microsoft MimeOLE Engine V4.71.0544.0
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:43205


I have been playing with IP Firewall and was wondering if anyone had more
info if I used it in the following manner :

Basically, i installed ipfw on a webserver (running apache). The server 
uses ip aliasing for each virtual web. The firewall will be setup
to count the packets/bytes per web using commands like this :

ipfw add count tcp from any to 204.120.228.197 80
..
..
and so forth

Now I can give a very accurate count of bytes transfered to each virtual
host (even already wrote a quick perl job to email me the results once a
day).

Now , this machine may have between 100 and 120 virtual webs on it. What
kind of slowdowns can I expect with the IPFW enabled?

Thanks

--
Greg

The student asked the master 'Is the Tao of DNS in all things?'
'It is' he replied.
'So Pine contains the TAO?' she asked.
'The Tao flows thru Pine like the life-blood in our veins' he said
"That means the TAO must also flow through UNIX, correct?" she stated
nervously
'You have achieved your first step towards enlightenment in the Way Of The
Tao' said the sensei.
"And if it runs thru UNIX then it must also run through Microsoft!" she
cried out with joy.
Sighing, the sensei spoke 'I need a vacation. The lessons are over.'