What happened to byte and packet counters in conntrack?

Question

Netfilter's conntrack docs show an example output of conntrack -L that contains bytes= and packets= counters, but when I run it I only see IP and port information.

I'm aware that the docs are really out of date, and specifically mention ip_conntrack, which has since been replaced with nf_conntrack, but I'm hoping there's some way to enable the counters again.

Is there a way to get that information, or have these counters been removed?

I'm using ubuntu 14.04, with kernel 3.13

The counters you guys mention are per interface, but I'm interested in counters per *connection*. — itsadok, May 08 '17 at 17:58

score 4 · Answer 1 · answered May 09 '17 at 13:22

4

Turns out I just needed to enable accounting by doing (as root):

/bin/echo "1" > /proc/sys/net/netfilter/nf_conntrack_acct

After this, byte and packet counts appear in the conntrack output.

answered May 09 '17 at 13:22

itsadok

1,839
5
21
33

I wonder why they are not enable per default... memory contraints? performance impacts? – PlasmaHH Jan 30 '18 at 15:54

What happened to byte and packet counters in conntrack?

1 Answers1