Bandwidth Monitoring with IPFW & Cacti

From Secure Computing Wiki
Revision as of 17:36, 26 November 2010 by Ecrist (Talk | contribs) (Reverted edits by Ijakigyzi (talk) to last revision by Ecrist)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

IPFW Rule Associations

All rules start with the last octect of the IP address. So, 209.240.66.149 will be rules 14900 through 14999. The last two digits of each rule number will be used as an indicator as to what type of traffic we're monitoring.

Last Two
Digits
Protocol(s) Description
00/01 SSH SSH Traffic
04/05 SMTP Inbound
98/99 ALL All traffic for this IP address
30/31 Teamspeak All teamspeak traffic, web traffic & all.
20/21 POP3/s All POP3 traffic, secure or not.
22/23 IMAP/s All IMAP traffic, secure or not.
02/03 HTTP/s All HTTP traffic, secure or not.
65500/65501 ALL All network traffic in and out, period.