Monitor firewall via SNMP


  • C
    Custom Avatar

    snmp-iptables.jpg

    I just made an article about how to monitor the firewall rules of the Edgerouter via SNMP. Any rule can be monitored over time. I hope you find it useful.

    Article: http://www.cron.dk/iptables-stats-from-edgerouter-via-snmp-part1/

    Best regards,

    Alex.


  • Beta - EdgeRouter

    Hey, that looks like a clean, and well written documentation. Thanks for sharing!


  • W
    Beta Testers

    Yes, in reference to your blog any changes to /etc/snmp/snmpd.conf will be overwritten with each router reboot.

    You can add a script to /config/scripts/post-config.d and it will be run on each reload.  Being under /config it will also be preserved across updates/upgrades.

    That script could re-add the dpeendent lines to snmpd.conf (and restart snmpd).

    I have been looking into options for doing similar (thanks!)


  • C
    Custom Avatar

    Hi waterside,

    Thanks for reminding me… it just seems more like a workaround, not a real good solution.

    But I added it to my blog-posting, because at the moment it seems to be the only possibility :S

    For christmas I wish that ubiquiti would implement a configuration command like this:

    set service snmp config-command "extend iptables......."
    

    Best regards,

    Alex


  • D
    Beta Testers

    Really useful post cron-dk - Thanks very much and well done!


Posts 5Views 14
Log in to reply

Looks like your connection to Ubiquiti Networks Community was lost, please wait while we try to reconnect.