You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi.
I want to use uacctd to log in to postgres.
This is my iptables :
iptables -I FORWARD ! -i eth0 -m state --state NEW -p tcp -j NFLOG --nflog-prefix 5
It seams to works :
iptables -L FORWARD -nv
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
40 2400 NFLOG 6 -- !eth0 * 0.0.0.0/0 0.0.0.0/0 state NEW nflog-prefix 5
Hi @pzelektron , in the log output above QN: 0/0 means that the plugin is trying to write zero tuples to the database -- so it is expected the DB to be empty because uacctd is not writing any tuples into it. We should make sure that uacctd is actually receiving traffic: what do you see if you run a tcpdump -s 0 -n -i nflog:5 ? Paolo
Thanks for help this : tcpdump -s 0 -n -i nflog:5
was very helpful.
It shows my mistake in iptables. I used: iptables -I FORWARD ! -i eth0 -m state --state NEW -p tcp -j NFLOG --nflog-prefix 5
but it should be : iptables -I FORWARD ! -i eth0 -m state --state NEW -p tcp -j NFLOG --nflog-group 5
Now everything works great.
Thanks again.
I work for ISP we must to log traffic from our customers.
I tried to use pmacct but i/o was very high on postgres server. 8 cores CPU and load over 80%.
After switching on nfacctd load drop to 1%
Hi.
I want to use uacctd to log in to postgres.
This is my iptables :
iptables -I FORWARD ! -i eth0 -m state --state NEW -p tcp -j NFLOG --nflog-prefix 5
It seams to works :
This is my uacctd.conf
This is debug log :
Looks ok to but database is empty :
uacctd -V:
Why nothing is store into database ? Where to find errors ?
PS. This is nfacctd.conf :
Its log to this same server but different database and works like a charm. So sql mus be ok.
The text was updated successfully, but these errors were encountered: