Saving pf state for accounting
DA Forsyth
d.forsyth at ru.ac.za
Thu Jan 29 23:03:18 PST 2009
On 29 Jan 2009 , freebsd-questions-request at freebsd.org entreated
about
"freebsd-questions Digest, Vol 246, Issue 69":
> Date: Thu, 29 Jan 2009 14:47:51 +0200
> Subject: Saving pf state for accounting
>
> Hi guys,
>
> My server uses up tons of bandwidth every month and I'd like to start
> recording what traffic volumes my different services chew up on a
> monthly basis. My firewall utility of choice is pf and I've recently
> come across its neat "label" facility so that I can do a simple "pfctl
> -sl" to get the latest readings.
>
> That's all fair and well but I lose all that lovely accounting
> information upon reboot so how do I go about saving this? I've googled
> quite a bit to look for a solution but have found nothing useful so far,
> just unanswered posts in the past.
>
> From what I can tell so far I'd have to write a custom rc script which
> redirects "pfctl -sl" into some sort of logfile which then may be
> retrieved at a later stage (and added to current counter output). Is
> there an easier way perhaps?
I'd use MRTG to store the numbers continuously, viewable as graphs.
--
DA Fo rsyth Network Supervisor
Principal Technical Officer -- Institute for Water Research
http://www.ru.ac.za/institutes/iwr/
More information about the freebsd-questions
mailing list