I have Voxel firmware V1.0.2.80.5SF flashed to my R7800 with Entware installed. Stock configuration.
I'm trying to configure iptables for traffic accounting for one of the devices on my LAN.
# iptables -A FORWARD -s 192.168.1.3
# iptables -A FORWARD -d 192.168.1.3
I downloaded roughly 50 MB worth of files to 192.168.1.3 and check the byte counters:
# iptables -L FORWARD -vxn
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
669 51866 all -- * * 0.0.0.0/0 192.168.1.13
4302 912761 all -- * * 192.168.1.13 0.0.0.0/0
14678 8275711 brwan_fwd all -- brwan * 0.0.0.0/0 0.0.0.0/0
38646 6723761 br0_fwd all -- br0 * 0.0.0.0/0 0.0.0.0/0
0 0 br0_fwd all -- tun0 * 0.0.0.0/0 0.0.0.0/0
0 0 common all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
The numbers always seem to be under-reported. I can't figure out how to get iptables (or ebtables) to show accurate byte counts.
The brwan and br0 interfaces show accurate TX and RX totals when using ifconfig.
Is there something that needs to be enabled or configured at boot, or is this the wrong approach?
thanks.
I'm trying to configure iptables for traffic accounting for one of the devices on my LAN.
# iptables -A FORWARD -s 192.168.1.3
# iptables -A FORWARD -d 192.168.1.3
I downloaded roughly 50 MB worth of files to 192.168.1.3 and check the byte counters:
# iptables -L FORWARD -vxn
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
669 51866 all -- * * 0.0.0.0/0 192.168.1.13
4302 912761 all -- * * 192.168.1.13 0.0.0.0/0
14678 8275711 brwan_fwd all -- brwan * 0.0.0.0/0 0.0.0.0/0
38646 6723761 br0_fwd all -- br0 * 0.0.0.0/0 0.0.0.0/0
0 0 br0_fwd all -- tun0 * 0.0.0.0/0 0.0.0.0/0
0 0 common all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0
The numbers always seem to be under-reported. I can't figure out how to get iptables (or ebtables) to show accurate byte counts.
The brwan and br0 interfaces show accurate TX and RX totals when using ifconfig.
Is there something that needs to be enabled or configured at boot, or is this the wrong approach?
thanks.