<div dir="ltr"><div><div><div><div><div>Dear All,<br><br></div>I am installing collectd-5.4.0 on CentOS 5.9. It's all compiled and generates rrd files for several default plugins (CPU, load, etc). I compiled everything from source.<br>
<br></div>The only question is iptables plugin. I eventually compiled everything and I think it's loaded successfully: <br><span style="font-family:courier new,monospace"><br># lsof | grep iptables | grep opt<br><br>collectd 10338 root mem REG 253,0 21346 4948360 /opt/collectd/lib/collectd/iptables.so</span><br>
<br></div>This plugin does not seem to generate rrd files. I don't anymore have any ideas how to make iptables plugin work. I hope someone can help.<br><br></div>My collectd config file is below:<br><br><br><span style="font-family:courier new,monospace">Interval 10<br>
LoadPlugin syslog<br>LoadPlugin logfile<br><br><Plugin logfile><br> LogLevel info<br> File steve_collectd.log<br> Timestamp true<br> PrintSeverity false<br></Plugin><br><br><Plugin syslog><br>
LogLevel debug<br></Plugin><br><br>LoadPlugin cpu<br>LoadPlugin csv<br>LoadPlugin interface<br>LoadPlugin iptables<br>LoadPlugin load<br>LoadPlugin memory<br>LoadPlugin rrdtool<br><br><Plugin csv><br> DataDir "/opt/collectd/var/lib/collectd/csv"<br>
StoreRates false<br></Plugin><br><br><Plugin iptables><br> Chain filter RH-Firewall-1-INPUT office<br></Plugin></span><br><br><br></div>My iptables rules look like this:<br><div><br><br><span style="font-family:courier new,monospace"># iptables -t filter -L RH-Firewall-1-INPUT -n -v<br>
<br><br>Chain RH-Firewall-1-INPUT (2 references)<br> pkts bytes target prot opt in out source destination<br> 201 958K ACCEPT all -- lo * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a><br>
61197 4086K ACCEPT icmp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> icmptype 255 /* office */<br> 0 0 ACCEPT esp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a><br>
0 0 ACCEPT ah -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a><br> 1494 264K ACCEPT udp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> 224.0.0.251 udp dpt:5353<br>
0 0 ACCEPT udp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> udp dpt:631<br> 0 0 ACCEPT tcp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> tcp dpt:631<br>
15M 1331M ACCEPT all -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> state RELATED,ESTABLISHED<br> 5 340 ACCEPT tcp -- * * <a href="http://203.11.222.0/24">203.11.222.0/24</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> state NEW tcp dpt:22 /* office */<br>
5907 294K ACCEPT tcp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> state NEW tcp dpt:80<br> 108K 9630K ACCEPT all -- eth1 * <a href="http://192.168.1.0/24">192.168.1.0/24</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a><br>
2 96 ACCEPT tcp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> tcp dpt:5901<br> 0 0 ACCEPT tcp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> tcp dpt:5902<br>
0 0 ACCEPT tcp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> tcp dpt:5903<br> 0 0 ACCEPT tcp -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> tcp dpt:5904<br>
1112K 75M LOG all -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> LOG flags 0 level 4<br>1112K 75M REJECT all -- * * <a href="http://0.0.0.0/0">0.0.0.0/0</a> <a href="http://0.0.0.0/0">0.0.0.0/0</a> reject-with icmp-host-prohibited<br>
</span><br><br></div><div>Hope someone helps!<br><br>Kind regards,<br>Steve Melnikov<br></div><div><br></div></div>