monitoring lan->wan
Kurt Buff
kurt.buff at gmail.com
Fri Oct 20 20:35:33 UTC 2006
On 10/20/06, Zbigniew Szalbot <zbyszek at szalbot.homedns.org> wrote:
> Hi all,
>
> On Fri, 20 Oct 2006, Kurt Buff wrote:
>
> > If you wish to characterize the traffic to and from the Internet by
> > protocol and/or user, then you'll have to do something more than
> > simply using SNMP to monitor throughput on the router. In that case,
> > you'll need to have your FreeBSD box actually parse the traffic, or
> > get a netflow from the router (assuming that it can do that.) and ntop
> > is a good start for the software you want, or perhaps etherape.
> > Assuming that netflow isn't available from the router (and I think
> > that's a fairly safe bet) the trick will be making sure that your
> > FreeBSD box will see the traffic, and for that you'll need something
> > like one of the following setups:
>
> All I can do with the router is to enable logging to a syslog, which means
> I can connect it to FBSD, can't I?
>
> But I understand now that things will be a little more difficult than I
> thought :). Anyway, thanks for all the pointers!
syslog <> SNMP.
Monitoring traffic by parsing syslog messages seems unlikely at best,
but you'll want to tak a look at some samplings of your syslog
messages to be sure. I'm not aware of any programs that do that, which
is not to say that they don't exist, just that I don't know about
them.
Kurt
More information about the freebsd-questions
mailing list