This is the mail archive of the systemtap@sourceware.org mailing list for the systemtap project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: monitor changes to iptables

From: William Cohen <wcohen at redhat dot com>
To: Daniel Doron <danielmeirdoron at gmail dot com>, systemtap at sourceware dot org
Date: Tue, 10 Oct 2017 16:17:45 -0400
Subject: Re: monitor changes to iptables
Authentication-results: sourceware.org; auth=none
Authentication-results: ext-mx05.extmail.prod.ext.phx2.redhat.com; dmarc=none (p=none dis=none) header.from=redhat.com
Authentication-results: ext-mx05.extmail.prod.ext.phx2.redhat.com; spf=fail smtp.mailfrom=wcohen at redhat dot com
Dmarc-filter: OpenDMARC Filter v1.3.2 mx1.redhat.com 0116437EEA
References: <CAFwN=+w5JXcD7wT=fyvpM2L=Fc2wdVDBWMH0ef5Tm==oFb_fkw@mail.gmail.com>

On 10/10/2017 10:49 AM, Daniel Doron wrote:
> Hi,
> 
> I am trying to figure out a way to monitor and log changes to iptables
> (netfilter). Any ideas would be appreciated...
> 
> Thanks.
> Daniel.
> 

Hi Daniel,

Would you need to use systemtap for this or would using auditctl as mentioned in the following be sufficient?

https://unix.stackexchange.com/questions/206891/audit-on-changes-to-the-running-iptables-configuration


-Will

Follow-Ups:
- Re: monitor changes to iptables
  - From: Daniel Doron

References:
- monitor changes to iptables
  - From: Daniel Doron

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]