monitor firewall
Monitors firewall activity.
Monitoring applies to all rules for the specified firewall.
- firewall-name
- Specifies the firewall by name.
- rule-number
- Restricts monitoring to a rule in the firewall.
Operational mode
Use this command to monitor activity for a specified firewall. Include a firewall rule to limit monitoring to that rule.
The following example shows how to monitor activity for firewall fw1.
vyatta@vyatta:~$ monitor firewall name fw1
FIREWALL: fw rule fw1:10000 block tcp(6) src=dp0s10/9e:b0:fb:23:3:8c/10.0.1.1(1000) dst=/52:54:0:13:af:c9/10.0.2.1(80) len=40 ttl=64 window=512 res=0x00 SYN urgp=0
FIREWALL: fw rule fw1:10000 block tcp(6) src=dp0s10/9e:b0:fb:23:3:8c/10.0.1.1(1001) dst=/52:54:0:13:af:c9/10.0.2.1(80) len=40 ttl=64 window=512 res=0x00 SYN urgp=0
FIREWALL: fw rule fw1:10000 block tcp(6) src=dp0s10/9e:b0:fb:23:3:8c/10.0.1.1(1002) dst=/52:54:0:13:af:c9/10.0.2.1(80) len=40 ttl=64 window=512 res=0x00 SYN urgp=0
FIREWALL: fw rule fw1:10000 block tcp(6) src=dp0s10/9e:b0:fb:23:3:8c/10.0.1.1(1003) dst=/52:54:0:13:af:c9/10.0.2.1(80) len=40 ttl=64 window=512 res=0x00 SYN urgp=0
FIREWALL: fw rule fw1:10000 block tcp(6) src=dp0s10/9e:b0:fb:23:3:8c/10.0.1.1(1004) dst=/52:54:0:13:af:c9/10.0.2.1(80) len=40 ttl=64 window=512 res=0x00 SYN urgp=0
...
^C
vyatta@vyatta:~$