IPv6 traffic metering
Iljitsch van Beijnum
iljitsch at muada.com
Thu Jun 9 17:47:22 CEST 2005
On 9-jun-2005, at 16:06, Kurt Jaeger wrote:
>> A simpler way is to use the firewall statistics in (for instance)
>> ip6fw: just make specific "allow" rules for everything you want to
>> measure and then issue "ip6fw show".
> Two questions arise:
> - Does it scale if one has to count approx. 2-3K objects ?
Not sure. The trouble with ip6fw is that apparently, it evaluates
every rule until there is a match, which isn't cool when you match
the last rule. But many years ago we did something like this for IPv4
(not nearly 2 to 3 k, though) and it worked better than I expected.
> - This only counts.
> For v4, we have some sort of hourly traffic matrices (which is
> useful in case of backtracking problems). We'd like to use
> flow data to be able to have this kind of backtracking
> also for v6.
Not sure what you mean, but obviously you store the counters in a
file or database periodically.
Iljitsch
More information about the ipv6-ops
mailing list