BackupPC-users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [BackupPC-users] [OT] Using iptables for traffic accounting

2009-05-26 10:18:38
Subject: Re: [BackupPC-users] [OT] Using iptables for traffic accounting
From: Les Mikesell <lesmikesell AT gmail DOT com>
To: "General list for user discussion, questions and support" <backuppc-users AT lists.sourceforge DOT net>
Date: Tue, 26 May 2009 09:14:31 -0500 
Boniforti Flavio wrote:
>>> Chain INPUT (policy ACCEPT 22M packets, 55G bytes)
>>>  pkts bytes target     prot opt in     out     source     
>>>       
>> destination
>>     
>>>     0     0            tcp  --  *      *       0.0.0.0/0  
>>>       
>> 127.0.0.1           tcp dpt:8876
>>
>> Your rule is incorrect. I'll quote myself:
>>     
>>> iptables -I INPUT -s client_addr -d backuppc_server_addr -p tcp 
>>> --sport 22
>>>       
>
> The source port *isn't* 22, because nothing is travelling through port
> TCP 22. As far as I can see while backups are running ("netstat -na |
> grep 8873"):
>
> storebox:~# netstat -na | grep 8873
> tcp        0      0 127.0.0.1:8873          0.0.0.0:*       
> tcp        0      0 127.0.0.1:8873          127.0.0.1:56713 
> tcp        0      0 127.0.0.1:56713         127.0.0.1:8873  
> tcp6       0      0 ::1:8873                :::*            
>
> And iptables shows the parts I already posted (showing data transfer
> happening on that 8873 TCP port).
>
>   
>> So, change --sport to --dport and vice-versa.
>>
>>     
>>> iptables -I INPUT -d localhost -p tcp --dport 8873
>>>       
>> should be
>>
>>     
>>> iptables -I INPUT -d localhost -p tcp --sport 8873
>>>       
>
> I'll be trying it for the next backup run (tonight)
>   

I thought you wanted to measure the compressed ssh packets that 
transport the tunnel, not the uncompressed data as it is seen locally 
going in and out of the tunnel..

-- 
  Les Mikesell
   lesmikesell AT gmail DOT com

------------------------------------------------------------------------------
Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT
is a gathering of tech-side developers & brand creativity professionals. Meet
the minds behind Google Creative Lab, Visual Complexity, Processing, & 
iPhoneDevCamp asthey present alongside digital heavyweights like Barbarian
Group, R/GA, & Big Spaceship. http://www.creativitycat.com 
_______________________________________________
BackupPC-users mailing list
BackupPC-users AT lists.sourceforge DOT net
List:    https://lists.sourceforge.net/lists/listinfo/backuppc-users
Wiki:    http://backuppc.wiki.sourceforge.net
Project: http://backuppc.sourceforge.net/
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [BackupPC-users] [OT] Using iptables for traffic accounting, Adam Goryachev
Next by Date:  Re: [BackupPC-users] [OT] Using iptables for traffic accounting, Boniforti Flavio
Previous by Thread:  Re: [BackupPC-users] [OT] Using iptables for traffic accounting, Boniforti Flavio
Next by Thread:  Re: [BackupPC-users] [OT] Using iptables for traffic accounting, Boniforti Flavio
Indexes:  [Date] [Thread] [Top] [All Lists]