RE: ipfstat question

Darren,

Thank you for the descriptive text.

I have one additional question: what is a bucket?

Thanks,

Jim Lose
Time Warner Cable

-----Original Message-----
From: Darren Reed [mailto:darrenr@reed.wattle.id.au]
Sent: Tue 4/8/2008 5:51 AM
To: Lose, James
Cc: ipfilter@coombs.anu.edu.au
Subject: Re: ipfstat question

Lose, James wrote:
> I'm developing a Big Brother monitoring script that will collect and display the output from the 'ipfstat -s' command, and I'd like to include descriptive text for each of the statistics. Can anyone provide me with brief descriptions of the following statistics?
>
> IP state statistics:
> TCP
>
Running total number of TCP states added

> UDP
>
Running total number of UDP states added

> ICMP
>
Running total number of ICMP states added

> hits
>
Running total of the number of times a packet matched state in the table

> misses
>
Running total of the number of times a packet did not match state in the
table

> maximum
>
Running total of the number of times adding packet state has failed
because the state table is too full

> no memory
>
Running total of the number of times adding packet state has failed
because no memory has been available to put new state information in

> max bucket
>
Running total of the number of times adding packet state has failed
because the has chain is at its maximum size

> active
>
Current number of live state sessions

> expired
>
Running total of state sessions removed from the active table because
they "timed out" from their current state (all non-TCP plus TCP that
doesn't "close")

> closed
>
Running total of TCP state sessions that close gracefully, as per the RFC.

> State table bucket statistics:
> in use
>
Number of top level buckets in the hash table being used

> bucket usage
>
The above number as a percentage of the available slots

> minimal length
>
Shortest hash bucket chain

> maximal length
>
Longest hash bucket chain

> average length
>
Average length of the chains in the hash table


This E-mail and any of its attachments may contain Time Warner
Cable proprietary information, which is privileged, confidential,
or subject to copyright belonging to Time Warner Cable. This E-mail
is intended solely for the use of the individual or entity to which
it is addressed. If you are not the intended recipient of this
E-mail, you are hereby notified that any dissemination,
distribution, copying, or action taken in relation to the contents
of and attachments to this E-mail is strictly prohibited and may be
unlawful. If you have received this E-mail in error, please notify
the sender immediately and permanently delete the original and any
copy of this E-mail and any printout.