[f-nsp] TCS with spoof support not working

Dimitar Kostadinov kgb at bginfo.net
Mon Jun 15 04:18:12 EDT 2009


On Mon, 15 Jun 2009 12:59:43 +0545

type "enable-acl-counter" first

match only packet btw.

make fun Mitko




Samit <janasamit at wlink.com.np> wrote:

> Yes, it is using client IP but only just cannot see the packets match in
> the counter.....in another casee...I also don't see any packet match
> counter in "show access-list xxx" like in cisco.
> 
> I don't know why..!
> 
> Regards,
> Samit
> 
> Oliver Adam wrote:
> > Are you sure the cache server is going to use the client IP as source
> > address for its packets? The spoofing counters look for packets coming
> > from the cache servers MAC address using a non-cache IP address. The
> > counter are not going to increase in case there is no such traffic.
> > 
> > R, Oliver
> > 
> > At 15:44 07.06.2009, Samit wrote:
> >> >> Cache Server Name                Admin-status Hash-distribution
> >> >> bluecoat                         6            0
> >> >>
> >> >> HTTP Traffic  From <-> to  Web-Caches
> >> >>
> >> >> Name: bluecoat        IP: 192.168.40.142    State: 6   Groups =   1  3
> >> >>
> >> >>                                      Host->Web-cache
> >> >> Web-cache->Host
> >> >>            State   CurCon TotCon     Packets   Octets     Packets
> >> >> Octets
> >> >>                                      Spoof pkt Spoof oct  Spoof pkt
> >> >> Spoof oct
> >> >> Web-Server active  0      0          4515919   2068851043 0         0
> >> >>
> >> >>                                      0         0          0         0
> >> >>
> >> >> Client     active  5903   187341446  252270927 3288932869
> >> >> 16098549142944827043
> >> >> Total              5903   187341446  256786846 1062816616
> >> >> 16098549142944827043
> > 
> > 
> > 
> > 
> > 
> _______________________________________________
> foundry-nsp mailing list
> foundry-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/foundry-nsp
> 


-- 
 <kgb at bginfo.net>



More information about the foundry-nsp mailing list