[mrtg] monitoring iptables

Steve Shipway s.shipway at auckland.ac.nz
Tue Mar 25 22:18:58 CET 2014


IPtables keeps counters against rules, so you can use MRTG to graph this.
You would need to write a custom plugin for MRTG that parses the output of
'iptables -L -n -v'

 

If your iptables is not on the same host as your MRTG server, then you will
need to run the plugin remotely using some method.  Either ssh with keys,
NRPE with 'mrtg-nrpe', or something similar.  This sort of information is
not normally in SNMP, though you could write your plugin as a ucd-snmpd
extension to make it so, though this is getting into a bit advanced coding.
I don't think anyone else has done this previously, though there was an
ipchains extension for ucd-snmpd once.

 

Steve

 

Steve Shipway

s.shipway at auckland.ac.nz

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.oetiker.ch/pipermail/mrtg/attachments/20140325/7764f7fe/attachment.htm 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5909 bytes
Desc: not available
Url : http://lists.oetiker.ch/pipermail/mrtg/attachments/20140325/7764f7fe/attachment.bin 


More information about the mrtg mailing list