From d6dd88f5fe5213e6d5bdf944791e331edf283426 Mon Sep 17 00:00:00 2001
From: Mark Wooding <mdw@distorted.org.uk>
Date: Tue, 13 Jan 2009 18:11:39 +0000
Subject: [PATCH 1/1] vampire: Add accounting rules for Tor on the OUTPUT
 chain.

This will tell me what I actually wanted to know.
---
 vampire.m4 | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/vampire.m4 b/vampire.m4
index 450bdff..13e37bd 100644
--- a/vampire.m4
+++ b/vampire.m4
@@ -72,6 +72,10 @@ run iptables -A inbound -j ACCEPT \
 	-s 172.29.198.0/24 \
 	-p tcp --destination-port $port_squid
 
+## Watch outgoing Tor usage.
+run iptables -A OUTPUT -m multiport \
+	-p tcp --source-ports $port_tor_public,$port_tor_directory
+
 ## Other interesting things.
 dnsresolver inbound
 ntpclient inbound 158.152.1.76 158.152.1.204 194.159.253.2
-- 
2.11.0