[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: checking the functioning of an ipchains module
- To: "mulix" <mulix(at-nospam)actcom.co.il>
- Subject: Re: checking the functioning of an ipchains module
- From: "Oded Arbel" <oded(at-nospam)geek.co.il>
- Date: Sat, 1 Dec 2001 12:56:19 +0200
- Cc: "Linux-IL Mailing List" <linux-il(at-nospam)linux.org.il>
- Delivered-To: linux.org.il-linux-il@linux.org.il
- References: <Pine.LNX.4.33.0112011215330.2837-100000@alhambra.merseine.nu>
- Sender: linux-il-bounce(at-nospam)cs.huji.ac.il
I don't have that file, but I have /proc/net/ip_conntrack which under
correct analyzis will yield the list of NATed connections.
(kernel 2.4.13, iptables)
Oded
--
Important: You must accept the License Agreement in order to read this
message.
If you do not accept the terms of the License Agreement,
you should promptly delete this message for a full refund.
----- Original Message -----
From: "mulix" <mulix@actcom.co.il>
To: "guy keren" <choo@actcom.co.il>
Cc: "Noam Meltzer" <tsnoam@zahav.net.il>; "Max Kovgan"
<smcmaugh@techst02.technion.ac.il>; "IGLU" <linux-il@linux.org.il>
Sent: Saturday, December 01, 2001 12:19 PM
Subject: Re: checking the functioning of an ipchains module
> On Sat, 1 Dec 2001, guy keren wrote:
>
> > On 30 Nov 2001, Noam Meltzer wrote:
> >
> > > I guess you didn't really understand what i wanted. I don't want to
see
> > > that the module is loaded. I want to see what is it doing while it's
> > > running.
> >
> > "what its doing" has different interpretations. if it is 'understanding
> > how it works' - use the source, luke. if its seeing which packets get
> > NATed - i _think_ there's an option to enable some kind of debug code in
> > netfilter's code which _could_ help. or its something else? you might
run
> > a sniffer before the NAT box and after the NAT box, look at the output,
and
> > begin analising it ;)
>
> be carefull... there be dragons here (in relation to the analysis part).
>
> there is *supposed* to a file in /proc, which tells you which
> connections are being nat'ed on your box, /proc/net/ip_masquerade. for
> some reason, it's not there on my linux router. any ideas where it's
> gone?
>
> also (2 questions for the price of one email), i'm looking to implement
> traffic limiting on the linux router for internal users (bofh? me?
> never. what was your user name again?). what tools am i looking for?
>
> kernel 2.4.16, approximately latest iptables.
> --
> mulix
>
> http://www.pointer.co.il/~mulix/
> http://syscalltrack.sf.net/
>
>
>
> =================================================================
> To unsubscribe, send mail to linux-il-request@linux.org.il with
> the word "unsubscribe" in the message body, e.g., run the command
> echo unsubscribe | mail linux-il-request@linux.org.il
>
>
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il