Upcoming Maintenance Alert:

The UBNT Community will be upgraded at 5pm MDT on April 25th. During this time the community forums will be set to read-only status.

Learn more

×
03/19/2017
Monitor firewall via SNMP
Description

snmp-iptables.jpg

 

I just made an article about how to monitor the firewall rules of the Edgerouter via SNMP. Any rule can be monitored over time. I hope you find it useful. 

 

Article: http://www.cron.dk/iptables-stats-from-edgerouter-via-snmp-part1/

 

Best regards,

   Alex.

Comments
by
on ‎03-19-2017 07:07 PM

Hey, that looks like a clean, and well written documentation. Thanks for sharing!

by
on ‎03-19-2017 07:31 PM

Yes, in reference to your blog any changes to /etc/snmp/snmpd.conf will be overwritten with each router reboot.

 

You can add a script to /config/scripts/post-config.d and it will be run on each reload.  Being under /config it will also be preserved across updates/upgrades.

 

That script could re-add the dpeendent lines to snmpd.conf (and restart snmpd).

 

I have been looking into options for doing similar (thanks!)

 

 

by
on ‎03-19-2017 11:45 PM

Hi waterside,

 

Thanks for reminding me... it just seems more like a workaround, not a real good solution.

But I added it to my blog-posting, because at the moment it seems to be the only possibility Man Frustrated

 

For christmas I wish that ubiquiti would implement a configuration command like this:

set service snmp config-command "extend iptables......."

 Best regards,

  Alex

by
on ‎03-22-2017 07:53 PM

Really useful post cron-dk - Thanks very much and well done!