TNPI - monitor pf firewall

	The Network People Solutions for Hosting Providers

monitoring mysql

home : internet : manage : rrdutil : rrdutil faq : monitor pf firewall

monitor a switch

How do I monitor my PF based firewall?

Currently only PF is supported with a patched ucd-snmp (http://www.packetmischief.ca/openbsd/snmp/). If you want support for your firewall find out if it is supported by SNMP or make a couple of scripts which gets the following information (each in one script):

- passed packets
- blocked packets
- ipv4 bytes in
- ipv4 bytes out
- ipv6 bytes in (if ipv6 is used)
- ipv6 bytes out (if ipv6 is used)
- state entries (if available)
- state searches (if available)
- state searches (if available)
- state removals (if available)

Here you find a sample script for ipfilter which could be changed to output the right output: (http://members.cox.net/18james/code/ipf.pl)

This scripts should be added to snmpd.conf and enter the correct OID in rrdutil.conf

What do the firewall graphs show?

For additional help use the forum.

Last modified on 5/20/05.

Email suggestions or updates.
If you are a spammer, please blacklist yourself.