Hello Neal,
On Monday, 24. August 2009 21:43:45 Neal Murphy wrote:
> In the netfilter-devel list a few months back, you suggested conntrack
> accounting might now be a better solution than ipt_ACCOUNT. Harald
> Welte's paper from 2005 gave a nice overview of the 'status quo' and how
> conntrack could be enhanced to provide 'rich' accounting with little
> or,at worst, reasonable, overhead.
Correct.
> Are there any newer writings that provide a look at the current
> (2.6.2x-ish) state of conntrack accounting?
>
> ipt_ACCOUNT is probably the best solution for what it does. But if there
> are newer methods available that allow richer accounting and very low
> overhead, they ought to be explored, at least.
I haven't given it much attention yet. Guess the best person to ask
is Pablo Neira Ayuso on the netfilter-devel mailinglist,
as he maintains the "ulogd" daemon:
http://www.netfilter.org/projects/ulogd/index.html
Cheers,
Thomas
--
ipt_ACCOUNT - see http://www.intra2net.com/en/developer/ipt_ACCOUNT for details.
To unsubscribe send a mail to ipt_ACCOUNT+unsubscribe@xxxxxxxxxxxxxxxxxxxxxxx
|
