[Swan] Accounting Data
Paul Wouters
paul at nohats.ca
Fri Mar 10 22:04:56 UTC 2017
On Thu, 9 Mar 2017, Dynastic Space wrote:
> We need to obtain an accounting record for each vpn connection.We've tried following the log file, specifically looking
> for the following line:
>
> "xauth-psk"[694] 14.100.134.56 #875: ESP traffic information: in=0B out=0B XAUTH user=someuser
>
> This line appears on connection disconnects, but we expected the in/out parameters to specify the number of bytes
> recorded, and they don't.
>
> 1. Is this a bug?
The feature only works with NETKEY/XFRM, not with KLIPS. I think KLIPS
does have the infor but we have no current API to pull it out of it.
Basically, the call get_sa_info() needs to be (re?)implemented for
KLIPS.
> 2. Is there a better way to obtain accounting information?
For IPsec traffic accounting with KLIPS, not that I know.
Paul
More information about the Swan
mailing list