Those are not links into the firewall stats, as mush as they are links into
the O/S stats. As such, unless you are running an application gateway
based firewall, these stats are not all that useful. For instance, on a
Checkpoint firewall, the netstat -p output will show connections to the
firewall itself, not connections through the firewall. You need to use the
'fw tab' command to get that information out of the firewall kernel module.
-p
"Those who would give up essential liberty for temporary safety deserve
neither liberty nor safety" - Benjamin Franklin, 1759
"Ng, Kenneth \(US\)" <[EMAIL PROTECTED]>@Lists.GNAC.NET on 12/08/2000 10:16:37
AM
Sent by: [EMAIL PROTECTED]
To: "'Ron Morita'" <[EMAIL PROTECTED]>
cc: "'Don Ely'" <[EMAIL PROTECTED]>, "'ragu nandan'"
<[EMAIL PROTECTED]>, [EMAIL PROTECTED]
Subject: RE: Off the topic:How to measure on Internet (link) speed
The hooks are not rocket science.� To an extent I made them up as I was
looking for potential problems.� The following are from memory, they may
need to be tweaked for your configuration:
Total connections: netstat -P tcp -n | wc -l
Establish connections: netstat -P tcp -n | grep ESTAB | wc -l
Load average: uptime | sed 's/^.*average//' | tr -d ',' | gawk '{print $2
* 100}'
Cpu over 5 minutes: sar 300 | tail -1 | awk '{print $2 + $3 + $4}'� --
Note: on this one, you need to run it as a background task and send the
output to a temp file, and then mv it to the real file.� Otherwise when
another task reads it, it will almost always be empty.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
