Traffic Monitor
Artyom Viklenko
artem at mipk.kharkiv.edu
Thu Apr 22 08:39:31 PDT 2004
If you interesting in monitoring uplink connection,
you can run some tolls (such as ipaudit, ipcount or something else)
directly on the firewall machine. And you didn't need the hub.
You can bind such monitoring tool to any NIC on the firewall,
but preferably to external. You need bpf in the kernel.
Spidey Knepscheld wrote:
> Hi
>
> I am an ISP running FreeBSD as a firewall and as a Mail Server. My problem
> is that I am not able to monitor the amount of traffic that user are using
> on my network. in south Africa bandwidth is extremely expensive and I need
> to take my bandwidth to the edge.
>
> My network looks like this: My Link comes in on a Cisco 805 from the router
> it goes to the first NIC on the Firewall from the second NIC it runs into a
> 10base HUB where there are only 3 ports used one as I said for the Firewall
> the other for a FreeBSD box (I want to use this box for traffic monitoring)
> and then one port for the rest of the network which connects to a 100base
> switch. The reason I used the 10base HUB is because it broadcasts all the
> data to all the ports. So for all data to and from the firewall will be
> caught by the Monitoring BSD box. I hope this makes sense.
>
--
Sincerely yours,
Artyom V. Viklenko.
======================================================
System Administrator artem at mipk.kharkiv.edu
------------------------------------------------------
IIAT NTU "KhPI" 21, Frunze Str., Kharkov Ukraine 61002
Phone: +38 (0572) 400026 Fax: +38 (057) 7062749
======================================================
More information about the freebsd-isp
mailing list