17 May
2017
17 May
'17
8:39 a.m.
On Wed, May 17, 2017 at 05:11:47AM -0700, Brian Kantor wrote:
I've looked at the raw statistics and the
differences are there; this
is not a graphing error.
The current numbers from the firewall statistics are
packets bytes rule
- --------- ------------ ---------------------------------------
1 99130972 7130419875 divert 4444 ip from any to table(1) in
2 106320071 13106233508 allow ipencap from me to table(2)
3 37236164 39784403971 allow ipencap from table(2) to me
4 36966397 39023037420 allow ip from table(1) to any
Rule 1 is the inbound raw (unencapsulated) packets sent to the
encapsulator.
Rule 2 is the outbound encapsulated packets coming out of the
encapsulator.
Note the small increase in the number of packets between input
and output, and the nearly doubling of the byte size. The
graphs show this.
Rule 3 is the inbound encapsulated packets.
Rule 4 is the outbound raw (de-encapsulated) packets.
Note that the count and size of the output of rule 4 is
slightly smaller than the input from rule 3. This is
accounted for by the packets that are dropped in the
router for errors in the packets. The graphs show this.
- Brian