firewall

goal

monitor the firewall filtering activity (ipchains or iptables)

units

number of packets logged by minute

parameters

you can see (pass from one to other by "other graph type")

summary mode

I had the choice to display only logged packets for 2 reasons :

• there is a scale (and lisibility) problem if ACCEPT is much bigger than DROP
• I do not want to display some dropped packets, for example netbios traffic, but only security-relevant ones (selects by logging)

accept

accepted packets

reject

rejected packets

drop

dropped packets (no response)

detailed mode

in this mode, one parameter by rule

more info

• man iptables
• man ipchains

remark

author

Eric Gerbier eric.gerbier@tutanota.com
licence : GPL

---