#!/usr/bin/perl ############################################################################### # # # IPFire.org - A linux based firewall # # Copyright (C) 2007-2023 IPFire Team # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation, either version 3 of the License, or # # (at your option) any later version. # # # # This program is distributed in the hope that it will be useful, # # but WITHOUT ANY WARRANTY; without even the implied warranty of # # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # # GNU General Public License for more details. # # # # You should have received a copy of the GNU General Public License # # along with this program. If not, see . # # # ############################################################################### use strict; # enable only the following on debugging purpose #use warnings; #use CGI::Carp 'fatalsToBrowser'; require '/var/ipfire/general-functions.pl'; require "${General::swroot}/location-functions.pl"; require "${General::swroot}/lang.pl"; require "${General::swroot}/header.pl"; #workaround to suppress a warning when a variable is used only once my @dummy = ( ${Header::colouryellow} ); undef (@dummy); my @bandwidth_limits = ( 1000 * 1024, # 1 GBit/s 500 * 1024, 200 * 1024, 100 * 1024, # 100 MBit/s 64 * 1024, 50 * 1024, 25 * 1024, 20 * 1024, 16 * 1024, 10 * 1024, 8 * 1024, 4 * 1024, 2 * 1024, 1024 # 1 MBit/s ); my @accounting_periods = ('daily', 'weekly', 'monthly'); my $TOR_CONTROL_PORT = 9051; my $string=(); my $memory=(); my @memory=(); my @pid=(); my @tor=(); sub daemonstats { $memory = 0; # for pid and memory open(FILE, '/usr/local/bin/addonctrl tor status | '); @tor = ; close(FILE); $string = join("", @tor); $string =~ s/[a-z_]//gi; $string =~ s/\[[0-1]\;[0-9]+//gi; $string =~ s/[\.]//gi; $string =~ s/ //gi; $string =~ s///gi; @pid = split(/\s/,$string); if (open(FILE, "/proc/$pid[0]/statm")){ my $temp = ; @memory = split(/ /,$temp); close(FILE); } $memory+=$memory[0]; } daemonstats(); our %netsettings = (); &General::readhash("${General::swroot}/ethernet/settings", \%netsettings); our %color = (); our %mainsettings = (); &General::readhash("${General::swroot}/main/settings", \%mainsettings); &General::readhash("/srv/web/ipfire/html/themes/ipfire/include/colors.txt", \%color); our %settings = (); $settings{'TOR_ENABLED'} = 'off'; $settings{'TOR_SOCKS_PORT'} = 9050; $settings{'TOR_EXIT_COUNTRY'} = ''; $settings{'TOR_USE_EXIT_NODES'} = ''; $settings{'TOR_GUARD_COUNTRY'} = ''; $settings{'TOR_USE_GUARD_NODES'} = ''; $settings{'TOR_ALLOWED_SUBNETS'} = "$netsettings{'GREEN_NETADDRESS'}\/$netsettings{'GREEN_NETMASK'}"; if (&Header::blue_used()) { $settings{'TOR_ALLOWED_SUBNETS'} .= ",$netsettings{'BLUE_NETADDRESS'}\/$netsettings{'BLUE_NETMASK'}"; } $settings{'TOR_RELAY_ENABLED'} = 'off'; $settings{'TOR_RELAY_MODE'} = 'relay'; $settings{'TOR_RELAY_ADDRESS'} = ''; $settings{'TOR_RELAY_PORT'} = 9001; $settings{'TOR_RELAY_DIRPORT'} = 0; $settings{'TOR_RELAY_NICKNAME'} = ''; $settings{'TOR_RELAY_CONTACT_INFO'} = ''; $settings{'TOR_RELAY_BANDWIDTH_RATE'} = 0; $settings{'TOR_RELAY_BANDWIDTH_BURST'} = 0; $settings{'TOR_RELAY_ACCOUNTING_LIMIT'} = 0; $settings{'TOR_RELAY_ACCOUNTING_PERIOD'} = 'daily'; $settings{'ACTION'} = ''; my $errormessage = ''; my $warnmessage = ''; &Header::showhttpheaders(); # Get GUI values. &Header::getcgihash(\%settings); # Create tor command connection. our $torctrl = &TorConnect(); # Toggle enable/disable field. if ($settings{'ACTION'} eq $Lang::tr{'save'}) { if ($settings{'TOR_RELAY_NICKNAME'} ne '') { if ($settings{'TOR_RELAY_NICKNAME'} !~ /^[a-zA-Z0-9]+$/) { $errormessage = "$Lang::tr{'tor errmsg invalid relay name'}: $settings{'TOR_RELAY_NICKNAME'}"; } } if (!&General::validport($settings{'TOR_SOCKS_PORT'})) { $errormessage = "$Lang::tr{'tor errmsg invalid socks port'}: $settings{'TOR_SOCKS_PORT'}"; } if (!&General::validport($settings{'TOR_RELAY_PORT'})) { $errormessage = "$Lang::tr{'tor errmsg invalid relay port'}: $settings{'TOR_RELAY_PORT'}"; } if ($settings{'TOR_RELAY_DIRPORT'} ne '0') { if (!&General::validport($settings{'TOR_RELAY_DIRPORT'})) { $errormessage = "$Lang::tr{'tor errmsg invalid directory port'}: $settings{'TOR_RELAY_DIRPORT'}"; } } if ($settings{'TOR_RELAY_ADDRESS'} ne '') { if ((!&General::validfqdn($settings{'TOR_RELAY_ADDRESS'})) && (!&General::validip($settings{'TOR_RELAY_ADDRESS'}))) { $errormessage = "$Lang::tr{'tor errmsg invalid relay address'}: $settings{'TOR_RELAY_ADDRESS'}"; } } if ($settings{'TOR_RELAY_ACCOUNTING_LIMIT'} !~ /^\d+$/) { $errormessage = "$Lang::tr{'tor errmsg invalid accounting limit'}: $settings{'TOR_RELAY_ACCOUNTING_LIMIT'}"; } my @temp = split(/[\n,]/,$settings{'TOR_ALLOWED_SUBNETS'}); $settings{'TOR_ALLOWED_SUBNETS'} = ""; foreach (@temp) { s/^\s+//g; s/\s+$//g; if ($_) { unless (&General::validipandmask($_)) { $errormessage = "$Lang::tr{'tor errmsg invalid ip or mask'}: $_"; } $settings{'TOR_ALLOWED_SUBNETS'} .= $_.","; } } @temp = split(/[\n,]/,$settings{'TOR_USE_EXIT_NODES'}); $settings{'TOR_USE_EXIT_NODES'} = ""; foreach (@temp) { s/^\s+//g; s/\s+$//g; if ($_) { $settings{'TOR_USE_EXIT_NODES'} .= $_.","; } } @temp = split(/[\n,]/,$settings{'TOR_USE_GUARD_NODES'}); $settings{'TOR_USE_GUARD_NODES'} = ""; foreach (@temp) { s/^\s+//g; s/\s+$//g; if ($_) { $settings{'TOR_USE_GUARD_NODES'} .= $_.","; } } # Burst bandwidth must be less or equal to bandwidth rate. if ($settings{'TOR_RELAY_BANDWIDTH_RATE'} == 0) { $settings{'TOR_RELAY_BANDWIDTH_BURST'} = 0; } elsif ($settings{'TOR_RELAY_BANDWIDTH_BURST'} < $settings{'TOR_RELAY_BANDWIDTH_RATE'}) { $settings{'TOR_RELAY_BANDWIDTH_BURST'} = $settings{'TOR_RELAY_BANDWIDTH_RATE'}; } if ($errormessage eq '') { # Write configuration settings to file. &General::writehash("${General::swroot}/tor/settings", \%settings); # Update configuration files. &BuildConfiguration(); } } else { # Load settings from file. &General::readhash("${General::swroot}/tor/settings", \%settings); } &showMainBox(); # Close Tor control connection. &TorClose($torctrl); # Functions sub showMainBox() { my %checked = (); my %selected = (); $checked{'TOR_ENABLED'}{'on'} = ''; $checked{'TOR_ENABLED'}{'off'} = ''; $checked{'TOR_ENABLED'}{$settings{'TOR_ENABLED'}} = 'checked'; $checked{'TOR_RELAY_ENABLED'}{'on'} = ''; $checked{'TOR_RELAY_ENABLED'}{'off'} = ''; $checked{'TOR_RELAY_ENABLED'}{$settings{'TOR_RELAY_ENABLED'}} = 'checked'; &Header::openpage($Lang::tr{'tor configuration'}, 1, ''); &Header::openbigbox('100%', 'left', '', $errormessage); if ($errormessage) { &Header::openbox('100%', 'left', $Lang::tr{'error messages'}); print "$errormessage \n"; &Header::closebox(); } print "

\n"; &Header::openbox('100%', 'center', $Lang::tr{'tor'}); if ( ($memory != 0) && (@pid[0] ne "///") ){ print ""; print ""; print ""; print ""; print ""; print ""; print ""; print ""; print ""; print ""; print "

$Lang::tr{'tor service'}
$Lang::tr{'tor daemon'}	$Lang::tr{'running'}
	PID	$Lang::tr{'memory'}
	@pid[0]	$memory KB

"; } else { print ""; print ""; print ""; print ""; print "

$Lang::tr{'tor service'}
$Lang::tr{'tor daemon'}	$Lang::tr{'stopped'}

"; } &Header::closebox(); &Header::openbox('100%', 'center', $Lang::tr{'tor configuration'}); print < $Lang::tr{'tor common settings'} $Lang::tr{'tor enabled'}: $Lang::tr{'tor socks port'}:

$Lang::tr{'tor relay enabled'}: END my @temp = split(",", $settings{'TOR_ALLOWED_SUBNETS'}); $settings{'TOR_ALLOWED_SUBNETS'} = join("\n", @temp); @temp = split(",", $settings{'TOR_USE_EXIT_NODES'}); $settings{'TOR_USE_EXIT_NODES'} = join("\n", @temp); @temp = split(",", $settings{'TOR_USE_GUARD_NODES'}); $settings{'TOR_USE_GUARD_NODES'} = join("\n", @temp); print <

$Lang::tr{'tor acls'}
$Lang::tr{'tor allowed subnets'}:
$settings{'TOR_ALLOWED_SUBNETS'}

$Lang::tr{'tor guard nodes'}
		$Lang::tr{'tor use guard nodes'}:
		$settings{'TOR_USE_GUARD_NODES'}

$Lang::tr{'tor exit nodes'}
		$Lang::tr{'tor use exit nodes'}:
		$settings{'TOR_USE_EXIT_NODES'}

END &Header::closebox(); # Tor relay box $selected{'TOR_RELAY_MODE'}{'bridge'} = ''; $selected{'TOR_RELAY_MODE'}{'exit'} = ''; $selected{'TOR_RELAY_MODE'}{'private-bridge'} = ''; $selected{'TOR_RELAY_MODE'}{'relay'} = ''; $selected{'TOR_RELAY_MODE'}{$settings{'TOR_RELAY_MODE'}} = 'selected'; $selected{'TOR_RELAY_BANDWIDTH_RATE'}{'0'} = ''; foreach (@bandwidth_limits) { $selected{'TOR_RELAY_BANDWIDTH_RATE'}{$_} = ''; } $selected{'TOR_RELAY_BANDWIDTH_RATE'}{$settings{'TOR_RELAY_BANDWIDTH_RATE'}} = 'selected'; $selected{'TOR_RELAY_BANDWIDTH_BURST'}{'0'} = ''; foreach (@bandwidth_limits) { $selected{'TOR_RELAY_BANDWIDTH_BURST'}{$_} = ''; } $selected{'TOR_RELAY_BANDWIDTH_BURST'}{$settings{'TOR_RELAY_BANDWIDTH_BURST'}} = 'selected'; foreach (@accounting_periods) { $selected{'TOR_RELAY_ACCOUNTING_PERIOD'}{$_} = ''; } $selected{'TOR_RELAY_ACCOUNTING_PERIOD'}{$settings{'TOR_RELAY_ACCOUNTING_PERIOD'}} = 'selected'; &Header::openbox('100%', 'center', $Lang::tr{'tor relay configuration'}); print < $Lang::tr{'tor relay mode'}: $Lang::tr{'tor relay nickname'}: $Lang::tr{'tor relay address'}: $Lang::tr{'tor relay port'}:

$Lang::tr{'tor directory port'}:

$Lang::tr{'tor 0 = disabled'} $Lang::tr{'tor contact info'}:

$Lang::tr{'tor bandwidth settings'}
$Lang::tr{'tor bandwidth rate'}:		$Lang::tr{'tor accounting limit'}:
$Lang::tr{'tor bandwidth burst'}:		$Lang::tr{'tor accounting period'}:

END &Header::closebox(); print <

$Lang::tr{'required field'}

END # If we have a control connection, show the stats. if ($torctrl) { &Header::openbox('100%', 'center', $Lang::tr{'tor stats'}); my @traffic = &TorTrafficStats($torctrl); if (@traffic) { print < END if ($settings{'TOR_RELAY_ENABLED'} eq 'on') { my $fingerprint = &TorRelayFingerprint($torctrl); if ($fingerprint) { print < $Lang::tr{'tor relay fingerprint'}: $fingerprint END } } my $address = TorGetInfo($torctrl, "address"); if ($address) { print < $Lang::tr{'tor relay external address'}: $address END } print < $Lang::tr{'tor traffic read written'}: END print "" . &FormatBytes($traffic[0]) ."/". &FormatBytes($traffic[1]) . ""; print < END } my $accounting = &TorAccountingStats($torctrl); if ($accounting) { print < $Lang::tr{'tor accounting'} END if ($accounting->{'hibernating'} eq "hard") { print < $Lang::tr{'tor traffic limit hard'} END } elsif ($accounting->{'hibernating'} eq "soft") { print < $Lang::tr{'tor traffic limit soft'} END } print < $Lang::tr{'tor accounting interval'} $accounting->{'interval-start'} - $accounting->{'interval-end'} $Lang::tr{'tor accounting bytes'} END print &FormatBytes($accounting->{'bytes_read'}) . "/" . &FormatBytes($accounting->{'bytes_written'}); print " (" . &FormatBytes($accounting->{'bytes-left_read'}) . "/" . &FormatBytes($accounting->{'bytes-left_written'}); print " $Lang::tr{'tor accounting bytes left'})"; print < END } my @nodes = &TorORConnStatus($torctrl); if (@nodes) { my $nodes_length = scalar @nodes; print < $Lang::tr{'tor connected relays'} ($nodes_length) END foreach my $node (@nodes) { print < $node->{'name'} END if (exists($node->{'country_code'})) { # Get the flag icon of the country. my $flag_icon = &Location::Functions::get_flag_icon($node->{'country_code'}); # Check if a flag for the given country is available. if ($flag_icon) { print "

"; } else { print "

"; } } print <$node->{'address'}:$node->{'port'} ~$node->{'bandwidth_string'} END } print ""; } &Header::closebox(); } print "\n"; &Header::closebigbox(); &Header::closepage(); } sub BuildConfiguration() { my %settings = (); &General::readhash("${General::swroot}/tor/settings", \%settings); my $torrc = "${General::swroot}/tor/torrc"; open(FILE, ">$torrc"); # Global settings. print FILE "Sandbox 1\n"; print FILE "HardwareAccel 1\n"; print FILE "ClientUseIPv6 0\n"; print FILE "ControlPort $TOR_CONTROL_PORT\n"; if ($settings{'TOR_ENABLED'} eq 'on') { my $strict_nodes = 0; print FILE "SocksPort 0.0.0.0:$settings{'TOR_SOCKS_PORT'}\n"; my @subnets = split(",", $settings{'TOR_ALLOWED_SUBNETS'}); foreach (@subnets) { print FILE "SocksPolicy accept $_\n" if (&General::validipandmask($_)); } print FILE "SocksPolicy reject *\n" if (@subnets); if ($settings{'TOR_GUARD_COUNTRY'} ne '') { $strict_nodes = 1; my $countrylist; for my $singlecountry (split(/\|/, $settings{'TOR_GUARD_COUNTRY'})) { if ($countrylist eq '') { $countrylist = "{" . lc $singlecountry . "}"; } else { $countrylist = $countrylist . "," . "{" . lc $singlecountry . "}"; } } print FILE "EntryNodes $countrylist\n"; } if ($settings{'TOR_USE_GUARD_NODES'} ne '') { $strict_nodes = 1; my @nodes = split(",", $settings{'TOR_USE_GUARD_NODES'}); foreach (@nodes) { print FILE "EntryNode $_\n"; } } if ($settings{'TOR_EXIT_COUNTRY'} ne '') { $strict_nodes = 1; my $countrylist; for my $singlecountry (split(/\|/, $settings{'TOR_EXIT_COUNTRY'})) { if ($countrylist eq '') { $countrylist = "{" . lc $singlecountry . "}"; } else { $countrylist = $countrylist . "," . "{" . lc $singlecountry . "}"; } } print FILE "ExitNodes $countrylist\n"; } if ($settings{'TOR_USE_EXIT_NODES'} ne '') { $strict_nodes = 1; my @nodes = split(",", $settings{'TOR_USE_EXIT_NODES'}); foreach (@nodes) { print FILE "ExitNodes $_\n"; } } if ($strict_nodes > 0) { print FILE "StrictNodes 1\n"; } } else { print FILE "SocksPort 0\n"; } if ($settings{'TOR_RELAY_ENABLED'} eq 'on') { # Reject access to private networks. print FILE "ExitPolicyRejectPrivate 1\n"; print FILE "ORPort $settings{'TOR_RELAY_PORT'} IPv4Only\n"; if ($settings{'TOR_RELAY_DIRPORT'} ne '0') { print FILE "DirPort $settings{'TOR_RELAY_DIRPORT'} IPv4Only\n"; } if ($settings{'TOR_RELAY_ADDRESS'} ne '') { print FILE "Address $settings{'TOR_RELAY_ADDRESS'}\n"; } if ($settings{'TOR_RELAY_NICKNAME'} ne '') { print FILE "Nickname $settings{'TOR_RELAY_NICKNAME'}\n"; } if ($settings{'TOR_RELAY_CONTACT_INFO'} ne '') { print FILE "ContactInfo $settings{'TOR_RELAY_CONTACT_INFO'}\n"; } # Limit to bridge mode. my $is_bridge = 0; if ($settings{'TOR_RELAY_MODE'} eq 'bridge') { $is_bridge++; # Private bridge. } elsif ($settings{'TOR_RELAY_MODE'} eq 'private-bridge') { $is_bridge++; print FILE "PublishServerDescriptor 0\n"; # Exit node. } elsif ($settings{'TOR_RELAY_MODE'} eq 'exit') { print FILE "ExitPolicy accept *:*\n"; # Relay only. } elsif ($settings{'TOR_RELAY_MODE'} eq 'relay') { print FILE "ExitPolicy reject *:*\n"; } if ($is_bridge > 0) { print FILE "BridgeRelay 1\n"; print FILE "Exitpolicy reject *:*\n"; } if ($settings{'TOR_RELAY_BANDWIDTH_RATE'} > 0) { print FILE "RelayBandwidthRate "; print FILE $settings{'TOR_RELAY_BANDWIDTH_RATE'} / 8; print FILE " KB\n"; if ($settings{'TOR_RELAY_BANDWIDTH_BURST'} > 0) { print FILE "RelayBandwidthBurst "; print FILE $settings{'TOR_RELAY_BANDWIDTH_BURST'} / 8; print FILE " KB\n"; } } if ($settings{'TOR_RELAY_ACCOUNTING_LIMIT'} > 0) { print FILE "AccountingMax ".$settings{'TOR_RELAY_ACCOUNTING_LIMIT'}." MB\n"; if ($settings{'TOR_RELAY_ACCOUNTING_PERIOD'} eq 'daily') { print FILE "AccountingStart day 00:00\n"; } elsif ($settings{'TOR_RELAY_ACCOUNTING_PERIOD'} eq 'weekly') { print FILE "AccountingStart week 1 00:00\n"; } elsif ($settings{'TOR_RELAY_ACCOUNTING_PERIOD'} eq 'monthly') { print FILE "AccountingStart month 1 00:00\n"; } } } close(FILE); # Restart the service. if (($settings{'TOR_ENABLED'} eq 'on') || ($settings{'TOR_RELAY_ENABLED'} eq 'on')) { &General::system("/usr/local/bin/torctrl", "restart"); } else { &General::system("/usr/local/bin/torctrl", "stop"); } # Update pid and memory daemonstats(); } sub TorConnect() { my $socket = new IO::Socket::INET( Proto => 'tcp', PeerAddr => '127.0.0.1', PeerPort => $TOR_CONTROL_PORT, ) or return; $socket->autoflush(1); # Authenticate. &TorSendCommand($socket, "AUTHENTICATE"); return $socket; } sub TorSendCommand() { my ($socket, $cmd) = @_; # Replace line ending with \r\n. chomp $cmd; $cmd .= "\r\n"; $socket->send($cmd); my @output = (); while (my $line = <$socket>) { # Skip empty lines. if ($line =~ /^.\r\n$/) { next; } # Command has been successfully executed. if ($line =~ /250 OK/) { last; # Error. } elsif ($line =~ /^5\d+/) { last; } else { # Remove line endings. $line =~ s/\r\n$//; push(@output, $line); } } return @output; } sub TorSendCommandOneLine() { my ($tor, $cmd) = @_; my @output = &TorSendCommand($tor, $cmd); return $output[0]; } sub TorGetInfo() { my ($tor, $cmd) = @_; my $output = &TorSendCommandOneLine($tor, "GETINFO ".$cmd); my ($key, $value) = split("=", $output); return $value; } sub TorClose() { my $socket = shift; if ($socket) { $socket->shutdown(2); } } sub TorTrafficStats() { my $tor = shift; my $output_read = &TorGetInfo($tor, "traffic/read"); my $output_written = &TorGetInfo($tor, "traffic/written"); return ($output_read, $output_written); } sub TorRelayFingerprint() { my $tor = shift; return &TorGetInfo($tor, "fingerprint"); } sub TorORConnStatus() { my $tor = shift; my @nodes = (); my @output = &TorSendCommand($tor, "GETINFO orconn-status"); foreach (@output) { $_ =~ s/^250[\+-]orconn-status=//; next if ($_ eq ""); last if ($_ eq "."); next unless ($_ =~ /^\$/); my @line = split(" ", $_); my @node = split(/[=~]/, $line[0]); my $node = &TorNodeDescription($tor, $node[0]); if ($node) { push(@nodes, $node); } } # Sort by names. @nodes = sort { $a->{'name'} cmp $b->{'name'} } @nodes; return @nodes; } sub TorNodeDescription() { my ($tor, $fingerprint) = @_; $fingerprint =~ s/\$//; my $node = { fingerprint => $fingerprint, exit_node => 0, }; my @output = &TorSendCommand($tor, "GETINFO ns/id/$node->{'fingerprint'}"); foreach (@output) { # Router if ($_ =~ /^r (\w+) (.*) (\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}) (\d+)/) { $node->{'name'} = $1; $node->{'address'} = $3; $node->{'port'} = $4; my $country_code = &Location::Functions::lookup_country_code($node->{'address'}); $node->{'country_code'} = $country_code; # Flags } elsif ($_ =~ /^s (.*)$/) { $node->{'flags'} = split(" ", $1); foreach my $flag ($node->{'flags'}) { if ($flag eq "Exit") { $node->{'exit_node'}++; } } # Bandwidth } elsif ($_ =~ /^w Bandwidth=(\d+)/) { $node->{'bandwidth'} = $1 * 8; $node->{'bandwidth_string'} = &FormatBitsPerSecond($node->{'bandwidth'}); } } if (exists($node->{'name'})) { return $node; } } sub TorAccountingStats() { my $tor = shift; my $ret = {}; my $enabled = &TorGetInfo($tor, "accounting/enabled"); if ($enabled ne '1') { return; } my @cmds = ("hibernating", "interval-start", "interval-end"); foreach (@cmds) { $ret->{$_} = &TorGetInfo($tor, "accounting/$_"); } my @cmds = ("bytes", "bytes-left"); foreach (@cmds) { my $output = &TorGetInfo($tor, "accounting/$_"); my @bytes = split(" ", $output); $ret->{$_."_read"} = $bytes[0]; $ret->{$_."_written"} = $bytes[1]; } return $ret; } sub FormatBytes() { my $bytes = shift; my @units = ("B", "KB", "MB", "GB", "TB"); my $units_index = 0; while (($units_index <= $#units) && ($bytes >= 1024)) { $units_index++; $bytes /= 1024; } return sprintf("%.2f %s", $bytes, $units[$units_index]); } sub FormatBitsPerSecond() { my $bits = shift; my @units = ("bit/s", "kbit/s", "Mbit/s", "Gbit/s", "Tbit/s"); my $units_index = 0; while (($units_index <= $#units) && ($bits >= 1024)) { $units_index++; $bits /= 1024; } return sprintf("%.2f %s", $bits, $units[$units_index]); }