Viewing Statistics for Filtered Traffic

Purpose

You can obtain information about the packets filtered on a C-series controller by accessing statistics for the iptables Linux tool. You can also reset the counters for this tool.

Action

To view information about packet filtering on a C-series controller:

where

• nat—Displays information for the nat table for the iptables tool. The nat table provides rules for rewriting packet addresses.
• filter—Displays information for the filter table for the iptables tool. The filter table provides rules for defining packet filters.
• mangle—Displays information for the mangle table for the iptables tool. The mangle table provides rules for adjusting packet options, such as quality of service.

  For example:

  
  user@host> show iptables

  Chain INPUT (policy ACCEPT 25M packets, 9401M bytes)
   pkts bytes target     prot opt in     out     source               destination 
  Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
   pkts bytes target     prot opt in     out     source               destination 
          
  Chain OUTPUT (policy ACCEPT 24M packets, 4506M bytes)
   pkts bytes target     prot opt in     out     source               destinationreset-counters

To reset the values in the output for the show iptables command:

Related Topics

• Overview of Traffic Redirection
• Configuring the Redirect Server (SRC CLI)

Copyright © 2008, Juniper Networks, Inc. All Rights Reserved. Trademark Notice.