[mrtg] monitoring iptables
Sandon Van Ness
sandon at van-ness.com
Tue Mar 25 22:35:17 CET 2014
I do something similar to just graph ipv6 table with ip6tables.
Basically using some grep/awk with iptables (with -x so its in bytes).
Only problem can be is if your tables are flushed often and the values
are reset.
On 03/25/2014 02:18 PM, Steve Shipway wrote:
>
> IPtables keeps counters against rules, so you can use MRTG to graph
> this. You would need to write a custom plugin for MRTG that parses the
> output of ‘iptables –L –n –v’
>
> If your iptables is not on the same host as your MRTG server, then you
> will need to run the plugin remotely using some method. Either ssh
> with keys, NRPE with ‘mrtg-nrpe’, or something similar. This sort of
> information is not normally in SNMP, though you could write your
> plugin as a ucd-snmpd extension to make it so, though this is getting
> into a bit advanced coding. I don’t think anyone else has done this
> previously, though there was an ipchains extension for ucd-snmpd once.
>
> Steve
>
> *Steve Shipway*
>
> s.shipway at auckland.ac.nz
>
>
> _______________________________________________
> mrtg mailing list
> mrtg at lists.oetiker.ch
> https://lists.oetiker.ch/cgi-bin/listinfo/mrtg
More information about the mrtg
mailing list