[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Graphing number of references to iptables chain

To: hobbit (at) hswn.dk
Subject: Graphing number of references to iptables chain
From: Allan <allan (at) zandahar.net>
Date: Wed, 05 Sep 2007 15:37:09 +1000
User-agent: Thunderbird 2.0.0.6 (Windows/20070728)

Hi all,

Just wondering if anyone has done or has seen a way of being able tograph the number of references to an iptables chain ?

We have a script on our mailserver that scans the logs for IP's inDNSBL's or that issue pregreeting commands and then adds them to thefirewall and drops the packets. We end up with a 'flt-smtp' chain thatlists all the IP addys it found, if they match it then calls anotherchain 'spammer' which logs the attempt and drops/rejects the packet.

This ends up with a few hundred to a few thousand ip's blocked everymonth with the # being the number of references to the spammer chain.'iptables -L spammer' returns currently for example


# iptables -L spammer
Chain spammer (2269 references)
target     prot opt source               destination

LOG all -- anywhere anywhere LOG leveldebug prefix `Spammer: '

DROP       all  --  anywhere             anywhere

Unfortunately I have zero skills when it comes to rrd and the like soI'm looking for something similar I can change to suit or for someone tobe really generous and help me out.

The script I'm using is over athttp://www.impsec.org/~jhardin/antispam/spammer-firewall


Cheers

Allan

Follow-Ups:
- Re: [hobbit] Graphing number of references to iptables chain
  - From: Henrik Stoerner

Prev by Date: [hobbit] BBcmd and external reports
Next by Date: Re: [hobbit] Graphing number of references to iptables chain
Previous by thread: [hobbit] BBcmd and external reports
Next by thread: Re: [hobbit] Graphing number of references to iptables chain
Index(es):
- Date
- Thread