Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.mel.connect.com.au!munnari.OZ.AU!news.Hawaii.Edu!news.caldera.com!enews.sgi.com!nntprelay.mathworks.com!howland.erols.net!infeed1.internetmci.com!newsfeed.internetmci.com!newsfeed.sovam.com!sovam!Gamma.RU!srcc!news1.relcom.ru!news.spb.su!rise.dux.ru!work.solaris.ru!not-for-mail From: "Dennis V. Kreminsky" <Dennis.Kreminsky@itcnet.ru> Newsgroups: comp.unix.bsd.freebsd.misc Subject: Re: ipfw use as a traffic analyzer Date: Tue, 15 Jul 1997 06:51:35 +0000 Organization: Internet Division, ITC, MSTU, Murmansk, Russia Lines: 32 Message-ID: <33CB1DF7.167EB0E7@itcnet.ru> References: <5odn7m$cns$1@gryphon.phoenix.net> <33C5B83A.7BDB@www.play-hookey.com> NNTP-Posting-Host: 194.220.136.182 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2.2-RELEASE i386) Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:44480 Ken Bigelow wrote: > > Greg wrote: > > > > I have been playing with IP Firewall and was wondering if anyone had more > > info if I used it in the following manner : > > > > Basically, i installed ipfw on a webserver (running apache). The server > > uses ip aliasing for each virtual web. The firewall will be setup > > to count the packets/bytes per web using commands like this : > > > > ipfw add count tcp from any to 204.120.228.197 80 > > .. Well, if you have a FreeBSD box, there's a firewall built in the kernel, so it probably runs as fast as at all possible. (BTW, I've heard there's one for Linux too.) I don't think this kind of firewall will seriously slow your system down. If I got it right, kernel simply looks at each packet that arrives onto your network interface and then compares it to the firewall table to decide what to do with it. I tell you this - kernel must look at every packet it receives no matter if there is a firewall or not. Every packet still has source and destination IPs and port numbers that all have to be looked through. Good luck! ------------------------------------------------------------ Dennis V. Kreminsky hostmaster Information Technologies Center voice: (8152) 23-0574 Murmansk State Technical University fax: (8152) 23-2233 Murmansk, Russia