http://freebsd.munk.me.uk/ FreeBSD System Administration en Serendipity 1.5.2 - http://www.s9y.org/ http://freebsd.munk.me.uk/templates/default/img/s9y_banner_small.png http://freebsd.munk.me.uk/ 100 21 http://freebsd.munk.me.uk/archives/13-IPFWstats-SourceForge-Project.html IPFW http://freebsd.munk.me.uk/archives/13-IPFWstats-SourceForge-Project.html#comments http://freebsd.munk.me.uk/wfwcomment.php?cid=13 0 http://freebsd.munk.me.uk/rss.php?version=2.0&type=comments&cid=13 nospam@example.com (munk) I've just uploaded a tarball containing the IPFWstats files to the sourceforge server and created a minimal homepage for it over there.<br /> <br /> The project homepage is:<br /> <br /> <a href="https://sourceforge.net/projects/ipfwstats/">https://sourceforge.net/projects/ipfwstats/</a><br /> <br /> and the project website is:<br /> <br /> <a href="http://ipfwstats.sourceforge.net/">http://ipfwstats.sourceforge.net/</a><br /> <br /> - not too glamourous as yet, will add some HTML to it soon. Fri, 12 Dec 2003 20:50:22 +0000 http://freebsd.munk.me.uk/archives/13-guid.html http://creativecommons.org/licenses/by/2.5/ http://freebsd.munk.me.uk/archives/7-IP-Accounting-on-FreeBSD-using-ipfw.html IPFW http://freebsd.munk.me.uk/archives/7-IP-Accounting-on-FreeBSD-using-ipfw.html#comments http://freebsd.munk.me.uk/wfwcomment.php?cid=7 0 http://freebsd.munk.me.uk/rss.php?version=2.0&type=comments&cid=7 nospam@example.com (munk) <b>Note:</b><br /> More info about this project can be found here:<br /> <a href="http://jez.hancock-family.com/archives/13_IPFWstats_SourceForge_Project.html">http://jez.hancock-family.com/archives/13_IPFWstats_SourceForge_Project.html</a><br /> <br /> <h4>Overview</h4><br /> IPFWstats is a suite of shell, perl and PHP scripts to count traffic on a per-user basis to/from a server. The statistics are imported into a MySQL database on a daily basis and can then be viewed using a PHP script in a web browser. A demo of the IPFWstats frontend can be viewed <a href="http://ipfwstats.munk.me.uk/">here</a> - note the frontend was never really 'polished', it just did what I needed it to do at the time!<br /> <br /> IPFWstats consists of the following:<br /> <ul><li/>a Bourne shell script to initialize the per-user IPFW counters<br /> <li/>a Perl script, ipfw2mysql.pl, to import the IPFWstats into a MySQL database on a daily basis via a cronjob<br /> <li/>a set of PHP scripts to display the statistics gathered by IPFWstats in a web browser</ul><br /> <b>Note:</b><br /> IPFWstats can only count traffic that is transferred directly by processes with the UIDs that it is tracking. This means IPFWstats cannot by default count network on a per-user basis for requests made to daemons such as httpd, ftpd and smtpd which usually run as a single user - ie www, ftp or smtp users.<br /> <br /> <br /> <h4>Installation and Configuration of IPFWstats</h4><br /> <ul><li/>Load the IPFWstats rulesets on system boot using <a href="#ipfwstats_rc">the IPFWstats rc shell script</a><br /> I do this by naming it /usr/local/etc/rc.d/.000.ipfw.sh - this way it loads before anything else in that directory<br /> <br /> Be sure to edit the script to use your IP address and to exclude any users you DON'T want to do accounting for - see the 'sed' line in the script<br /> <br /> <li/>Create a MySQL db with the following tables:<br /> #<br /> # Table structure for table 'all_traffic'<br /> #<br /> <br /> CREATE TABLE all_traffic (<br /> packets_in int(10) unsigned default NULL,<br /> packets_out int(10) unsigned default NULL,<br /> packets_total int(10) unsigned default NULL,<br /> bytes_in int(10) unsigned default '0',<br /> bytes_out int(10) unsigned default '0',<br /> bytes_total int(10) unsigned default NULL,<br /> date date default '0000-00-00'<br /> ) TYPE=MyISAM;<br /> <br /> <br /> <br /> #<br /> # Table structure for table 'user_traffic'<br /> #<br /> <br /> CREATE TABLE user_traffic (<br /> user varchar(15) default '0',<br /> packets_in int(10) unsigned default NULL,<br /> packets_out int(10) unsigned default NULL,<br /> packets_total int(10) unsigned default NULL,<br /> bytes_in int(10) unsigned default '0',<br /> bytes_out int(10) unsigned default '0',<br /> bytes_total int(10) unsigned default NULL,<br /> date date default '0000-00-00'<br /> ) TYPE=MyISAM;<br /> </code><br /> <br /> <li/>copy <a href="#ipfw2mysql">the ipfw2mysql.pl perl script</a> into a suitable location such as /usr/local/sbin/ipfw2mysql.pl<br /> <br /> <li/>modify <a href="#ipfw2mysql_vbls">the ipfw2mysql.pl %db hash to use your mysql db/username/password</a>:<br /> <code> my %db=( 'host'=>'localhost', 'user'=>'CHANGE_ME', 'pass'=>'CHANGE_ME', 'name'=>'CHANGE_ME' ); </code><br /> <b>Note:</b><br /> To view more advanced options for debugging and testing, execute ipfw2mysql.pl with the '-h' switch.<br /> <br /> <li/>Create a cronjob to run the <a href="#ipfw2mysql">ipfw2mysql.pl</a> perl script daily - the following should be sufficient in /etc/crontab:<br /> <code> 55 23 * * * root /home/munk/bin/perl/ipfw_stats/ipfw2mysql.pl -q </code><br /> <br /> <li/>reboot system or just run /usr/local/etc/rc.d/.000.ipfw.sh start</ul><br /> <br /> If all went well you should be able to run 'ipfw show' and view a list of all the counter rules created by <a href="#ipfwstats_rc">the IPFWstats rc shell script</a>:<br /> <br /> <code> [12:34:49] root@users /web/ipfwstats.munk.me.uk# ipfw show 00001 317 26671 count ip from any to 1.2.3.4 uid munk 00001 0 0 count ip from any to 1.2.3.4 uid otheruser ... </code><br /> <br /> Your system is now setup to count traffic on a per-user basis using IPFWstats.<br /> <br /> To view the statistics in a web browser, use the IPFWstats PHP frontend - if you require the PHP scripts let me know and I'll tarball them up.<br /> <br /> <br /> <br /> <br /><a href="http://freebsd.munk.me.uk/archives/7-IP-Accounting-on-FreeBSD-using-ipfw.html#extended">Continue reading "IP Accounting on FreeBSD using ipfw"</a> Tue, 09 Dec 2003 14:17:44 +0000 http://freebsd.munk.me.uk/archives/7-guid.html http://creativecommons.org/licenses/by/2.5/