1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

What kind of iptables rules are these?

Discussion in 'Tomato Firmware' started by Bird333, Dec 23, 2012.

  1. Bird333

    Bird333 Network Guru Member

    Does anyone know what kind of iptables rules these are?
    Chain FORWARD (policy DROP 0 packets, 0 bytes)
    pkts bytes target    prot opt in    out    source              destination
    863K  772M            all  --  *      *            account: network/netmask: name: lan
    409K  321M            all  --  *      *            account: network/netmask: name: lan1
    How would you manually enter these?
  2. koitsu

    koitsu Network Guru Member

    My guess is that they're some kind of traffic accounting rules.

    Do the contents of /etc/iptables help? Possibly the rules are in there. I have some guesses at iptables syntax for these, but there's 2 or 3 modules, as well as an accounting patch, which are all separate things.

    Might try using lsmod to figure out what modules are loaded (although this may be a feature or patch statically included in the kernel like I said). Things I tend to try are stuff like iptables -A FORWARD -m account --help, which at the bottom normally would show you help syntaxes that come from both iptables *and* that module. It might also be called ipt_account or maybe ipt_traffic or something similar.

    It'd probably help if you stated exactly what firmware you were using (filename and firmware author) too. :)
  3. Bird333

    Bird333 Network Guru Member

    Sorry I am running Shibby tomato-E3000USB-NVRAM60K-1.28.RT-MIPSR2-102-Big-VPN
  4. Bird333

    Bird333 Network Guru Member

    This is what is in the file
    -A FORWARD -m account --aaddr --aname lan
  5. RMerlin

    RMerlin Network Guru Member

    These are added by IPTraffic, the per-IP traffic monitoring system. They use the ipt_account Netfilter module.
    koitsu likes this.

Share This Page