Shorewall users - Dec 2002 - MRTG and Shorewall

Hello.

Is there any command in the shorewall script that prints how many or the 
hits the last 5 min?

/Rickard Eriksson

--On Sunday, December 29, 2002 08:42:39 PM +0100 Rickard Eriksson 
<riceri@home.se> wrote:
>
> Is there any command in the shorewall script that prints how many or the
> hits the last 5 min?
>
No.

-Tom
--
Tom Eastep   \ Shorewall - iptables made easy
Shoreline,    \ http://shorewall.sf.net
Washington USA \ teastep@shorewall.net

cheers();
> Is there any command in the shorewall script that prints how many or the 
> hits the last 5 min?
What you mean by ''hit''? Dropped or rejected packets?

What about a little perl script, processing /var/log/messages?

.karsten


-- 
Hi, I''m a signature virus. Copy me into your ~/.signature to help me
spread!

--On Monday, December 30, 2002 06:32:09 PM +0100 kb <kb@bluehash.de>
wrote:
> cheers();
>
>> Is there any command in the shorewall script that prints how many or
the
>> hits the last 5 min?
>
> What you mean by ''hit''? Dropped or rejected packets?
>
> What about a little perl script, processing /var/log/messages?
>
I''d be happy to publish such a script on the Shorewall web site. I
won''t
release any Perl scripts as part of Shorewall since those scripts
wouldn''t
be useable on LEAF/Bering but I''m certainly willing to publish them as 
unsupported (by me anyway) Shorewall extensions .

-Tom
--
Tom Eastep   \ Shorewall - iptables made easy
Shoreline,    \ http://shorewall.sf.net
Washington USA \ teastep@shorewall.net

> -----Original Message-----
> From: Tom Eastep 
> Sent: Monday, December 30, 2002 11:40 AM
> Subject: Re: [Shorewall-users] MRTG and Shorewall
> 
> --On Monday, December 30, 2002 06:32:09 PM +0100 kb 
> <kb@bluehash.de> wrote:
> 
> > cheers();
> >
> >> Is there any command in the shorewall script that prints 
> >> how many or the hits the last 5 min?
> >
> > What you mean by ''hit''? Dropped or rejected packets?
> >
> > What about a little perl script, processing /var/log/messages?
> >
> 
> I''d be happy to publish such a script on the Shorewall web 
> site. I won''t release any Perl scripts as part of Shorewall
> since those scripts wouldn''t be useable on LEAF/Bering but
I''m
> certainly willing to publish them as unsupported (by me anyway)
> Shorewall extensions .
Thought I would add my two bits to this thread...

Since MRTG is nativly based on snmp, one could write a shell script that ran
shorewall hits on the firewall, which would then format the output of
shorewall hits in a form compatible with storing the returned values in a
specific linux MIB/OID. Furthermore, snmpd has a feature where by a script
can be assigned to be run against a specific OID when queried by snmpget
(mrtg). This way you do not have to assign a service to be run at your
firewall or specify a shell script (rather than an OID) to be run in an MRTG
target.

FWIW: I''ve done this thing in the past, but to monitor
sendmail''s
"mailstats" command to track my MTA statistics. i.e. number of e-mails
per 5
minutes, hour, etc... I''m currently thinking about writing a script to
track
the amount of fricken spam that passes through my MTA and graph this using
mrtg utilizing the same feature mentioned above.

Steve Cowles