LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 12-13-2009, 06:33 PM   #1
SaintDanBert
Senior Member
 
Registered: Jan 2009
Location: Austin, TX
Distribution: Mint-15 with Cinnamon & KDE
Posts: 1,324
Blog Entries: 3

Rep: Reputation: 86
HOWTO watch firewall as it works


Now that I have configured my firewall, how do I watch it run?

Is there some sort of tool(s) or log(s) that will show arriving and departing packets movement through the various queues. It would be nice to watch in real-time, but run-log-view batches are good too.

Thanks,
~~~ 0;-Dan
 
Old 12-13-2009, 07:41 PM   #2
Web31337
Member
 
Registered: Sep 2009
Location: Russia
Distribution: Gentoo, LFS
Posts: 399
Blog Entries: 71

Rep: Reputation: 65
depending on configuration...
you may watch it working trying to access restricted ports =)
 
Old 12-14-2009, 02:29 AM   #3
okcomputer44
Member
 
Registered: Jun 2008
Location: /home/laz
Distribution: CentOS/Debian
Posts: 241

Rep: Reputation: 51
Quote:
Originally Posted by SaintDanBert View Post
Now that I have configured my firewall, how do I watch it run?

Is there some sort of tool(s) or log(s) that will show arriving and departing packets movement through the various queues. It would be nice to watch in real-time, but run-log-view batches are good too.

Thanks,
~~~ 0;-Dan
iptraf is your friend.

Try it, you can filter for card(s) port(s) and whatever you want.

And it is real time too.
 
1 members found this post helpful.
Old 12-14-2009, 03:21 AM   #4
salasi
Senior Member
 
Registered: Jul 2007
Location: Directly above centre of the earth, UK
Distribution: SuSE, plus some hopping
Posts: 3,887

Rep: Reputation: 774Reputation: 774Reputation: 774Reputation: 774Reputation: 774Reputation: 774Reputation: 774
Quote:
Originally Posted by SaintDanBert View Post
...but run-log-view batches are good too.
For that, you can use packet counters, and no tool is necessary. Bit primitive though, depending on how your firewall ruleset is structured, and okcomputer44's suggestion is probably better, unless you intend to leave monitoring in place, long term. Then, the low overhead of packet counting might be valuable
 
  


Reply

Tags
firewall, iptables, log


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Uh Oh. Another Smooth Move from Microsoft: Watch out, Ruby. Watch out OSI. LXer Syndicated Linux News 0 07-30-2007 11:46 PM
internet works only when firewall is set to "no firewall" mymoon Linux - Security 1 05-07-2006 01:29 PM
firewall, howto ? schatoor Linux - Networking 7 11-06-2002 12:05 AM


All times are GMT -5. The time now is 08:12 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration