On Wed, Mar 04, 2009 at 02:17:30PM +0100, Falk Brockerhoff - smartTERRA GmbH
wrote:
> Am 04.03.2009 um 14:10 schrieb Jason Dixon:
>
>
>> Here's how you can use net-snmp's extend functionality:
>>
>> $ cat /usr/local/sbin/countPFstates.sh
>> #!/bin/sh
>> pfctl -si | grep entries | awk '{print $3}'
>
> Ok, this is a way we can go. Is there any possibility to use the extend
> feature with openbsd builtin snmpd?
Not currently.
> Does anybody monitor pf values this (or another) way and may share which
> information from pf should be monitored?
I just did. :)
Other people use the PF-MIB patch to net-snmp. We don't need that
functionality. We like to monitor the following for our PF firewalls in
Cacti:
CPU
Interrupts
Load
Memory Usage
PF States (see above)
Traffic
Unicast Packets
Non-Unicast Packets
Errors
I haven't come across any other vectors that would have been useful to
us, although I can see where the "Source track" and "Filter rule label"
counters in the PF-MIB patch might be useful to others.
--
Jason Dixon
DixonGroup Consulting
http://www.dixongroup.net/
