[collectd] IPTables Module

Florian Forster octo<span style="display: none;">.trailing-username</span>(a)<span style="display: none;">leading-domain.</span>verplant.org
Fri Mar 2 09:29:17 CET 2007


Hi Sjoerd,

On Thu, Mar 01, 2007 at 09:02:41AM +0100, Sjoerd van der Berg wrote:
> My first attempt at a module for this is an iptables modules

thanks very much for this, I'll look at it tonight or on the weekend.

> It will go through the rules looking for ones with "comment" matches
> and will use the comment as a base for the generated filename.

I've thought about an iptables plugin before, but my approach would have
differed, I think. I would have used the `ULOG' target to select the
packets I'm interested in and transfer them to userspace, then use
`libnfnetlink_log' or possibly `ulogd' with the pcap-interface to
receive the packets and analyze them somehow.

Are the files under `libiptc' really necessary? The Debian-packet
`iptables-dev' appears to provide those header-files and libraries..

> tar.gz has a diff, firewall script and the regular files

Okay, I'll put the firewall-script under contrib/ then..

Regards,
-octo
-- 
Florian octo Forster
Hacker in training
GnuPG: 0x91523C3D
http://verplant.org/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://mailman.verplant.org/pipermail/collectd/attachments/20070302/dfe93076/attachment.pgp


More information about the collectd mailing list