snmp management of iptables

I suppose it doesn't exist but I am looking for an snmp agent that will
manage iptables. What I actually want to do only involves a small
subset of iptables capacity so I could code one myself, but if it
already exists I see no reason not to use it. Freshmeat is not showing
one and google search ends up being about iptables impact on snmp
traffic.

Anyone know if such a thing exists?

Noah Roberts wrote:
> I suppose it doesn't exist but I am looking for an snmp agent that will
> manage iptables. What I actually want to do only involves a small
> subset of iptables capacity so I could code one myself, but if it
> already exists I see no reason not to use it. Freshmeat is not showing
> one and google search ends up being about iptables impact on snmp
> traffic.
>
> Anyone know if such a thing exists?
>
directly for iptables i don't have found nothing , but ipcop firewall(or
iptables GUI) have a module SNMP to manage iptables..

bye
peppe

Noah Roberts wrote:
> I suppose it doesn't exist but I am looking for an snmp agent that will
> manage iptables. What I actually want to do only involves a small
> subset of iptables capacity so I could code one myself, but if it
> already exists I see no reason not to use it. Freshmeat is not showing
> one and google search ends up being about iptables impact on snmp
> traffic.
>
> Anyone know if such a thing exists?

You can configure the SNMP Linux agent to read the counters of the
rules in iptables. It's a little complicate to implement but can
be done.


--

Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
(E-Mail Removed)
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA

The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
-- Jack Kerouac, "On the Road"