[collectd] iptables plugin

Steve Melnikov s.melnikov at foxsportspulse.com
Sun Nov 24 22:45:09 CET 2013 

Dear All,

I am installing collectd-5.4.0 on CentOS  5.9. It's all compiled and
generates rrd files for several default plugins (CPU, load, etc). I
compiled everything from source.

The only question is iptables plugin. I eventually compiled everything and
I think it's loaded successfully:

# lsof | grep iptables | grep opt

collectd  10338      root  mem       REG      253,0     21346    4948360
/opt/collectd/lib/collectd/iptables.so

This plugin does not seem to generate rrd files. I don't anymore have any
ideas how to make iptables plugin work. I hope someone can help.

My collectd config file is below:


Interval     10
LoadPlugin syslog
LoadPlugin logfile

<Plugin logfile>
        LogLevel info
        File steve_collectd.log
        Timestamp true
        PrintSeverity false
</Plugin>

<Plugin syslog>
        LogLevel debug
</Plugin>

LoadPlugin cpu
LoadPlugin csv
LoadPlugin interface
LoadPlugin iptables
LoadPlugin load
LoadPlugin memory
LoadPlugin rrdtool

<Plugin csv>
        DataDir "/opt/collectd/var/lib/collectd/csv"
        StoreRates false
</Plugin>

<Plugin iptables>
        Chain filter RH-Firewall-1-INPUT office
</Plugin>


My iptables rules look like this:


# iptables -t filter -L RH-Firewall-1-INPUT -n -v


Chain RH-Firewall-1-INPUT (2 references)
 pkts bytes target     prot opt in     out     source
destination
  201  958K ACCEPT     all  --  lo     *       0.0.0.0/0
0.0.0.0/0
61197 4086K ACCEPT     icmp --  *      *       0.0.0.0/0
0.0.0.0/0            icmptype 255 /* office */
    0     0 ACCEPT     esp  --  *      *       0.0.0.0/0
0.0.0.0/0
    0     0 ACCEPT     ah   --  *      *       0.0.0.0/0
0.0.0.0/0
 1494  264K ACCEPT     udp  --  *      *       0.0.0.0/0
224.0.0.251          udp dpt:5353
    0     0 ACCEPT     udp  --  *      *       0.0.0.0/0
0.0.0.0/0            udp dpt:631
    0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0
0.0.0.0/0            tcp dpt:631
  15M 1331M ACCEPT     all  --  *      *       0.0.0.0/0
0.0.0.0/0            state RELATED,ESTABLISHED
    5   340 ACCEPT     tcp  --  *      *       203.11.222.0/24
0.0.0.0/0            state NEW tcp dpt:22 /* office */
 5907  294K ACCEPT     tcp  --  *      *       0.0.0.0/0
0.0.0.0/0            state NEW tcp dpt:80
 108K 9630K ACCEPT     all  --  eth1   *       192.168.1.0/24
0.0.0.0/0
    2    96 ACCEPT     tcp  --  *      *       0.0.0.0/0
0.0.0.0/0            tcp dpt:5901
    0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0
0.0.0.0/0            tcp dpt:5902
    0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0
0.0.0.0/0            tcp dpt:5903
    0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0
0.0.0.0/0            tcp dpt:5904
1112K   75M LOG        all  --  *      *       0.0.0.0/0
0.0.0.0/0            LOG flags 0 level 4
1112K   75M REJECT     all  --  *      *       0.0.0.0/0
0.0.0.0/0            reject-with icmp-host-prohibited


Hope someone helps!

Kind regards,
Steve Melnikov
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.verplant.org/pipermail/collectd/attachments/20131125/c5d0a0e1/attachment.html>

More information about the collectd mailing list