Blame contrib/ipfilter/ip-filter.readme
|
Packit |
667938 |
I've found the simple enclosed perl script useful to use mrtg to graph
|
|
Packit |
667938 |
traffic through our IP-Filter firewall. The script may need some
|
|
Packit |
667938 |
fiddling with the regular expressions to graph what you need at your
|
|
Packit |
667938 |
site; our if-filter configuration blocks everything on the WAN
|
|
Packit |
667938 |
interface by default and allows specific protocols in with `pass in
|
|
Packit |
667938 |
quick' and `block in quick' rules on groups from 100-190; hence the
|
|
Packit |
667938 |
simple regular expressions.
|
|
Packit |
667938 |
|
|
Packit |
667938 |
The usage in mrtg.cfg here is:
|
|
Packit |
667938 |
|
|
Packit |
667938 |
# firewall
|
|
Packit |
667938 |
|
|
Packit |
667938 |
Target[firewall]: `./fw.pl`
|
|
Packit |
667938 |
|
|
Packit |
667938 |
Options[firewall]: growright, noinfo, perhour
|
|
Packit |
667938 |
|
|
Packit |
667938 |
MaxBytes[firewall]: 50000
|
|
Packit |
667938 |
|
|
Packit |
667938 |
Title[firewall]: IP-Filter
|
|
Packit |
667938 |
|
|
Packit |
667938 |
PageTop[firewall]: <center>
|
|
Packit |
667938 |
<font color=red>Firewall Traffic Analysis</font>
|
|
Packit |
667938 |
Syn/Ack Packets Passed (Connections) on le1 (24.7.4.75)
|
|
Packit |
667938 |
</center>
|
|
Packit |
667938 |
|
|
Packit |
667938 |
YLegend[firewall]: Packets per Hour
|
|
Packit |
667938 |
ShortLegend[firewall]: pkts/hr
|
|
Packit |
667938 |
Legend1[firewall]: Inbound connections per hour
|
|
Packit |
667938 |
Legend2[firewall]: Outbound connections per hour
|
|
Packit |
667938 |
|
|
Packit |
667938 |
--
|
|
Packit |
667938 |
|
|
Packit |
667938 |
Ronald Florence http://members.home.net/18james
|
|
Packit |
667938 |
|