Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Luis_Miguel_Mig
Advisor

showtable.sh - it shows statistics of the connections, fxw_cache and sam_blocked_ips tables

This scripts allows to get statistics of the connections, fwx_cache, fwx_alloc and sam_blocked_ips tables.

This is the syntax: showtable.sh (TABLE:connections|fwx_cache|fwx_alloc|sam_blocked_ips|all) (CPU:global|core) (OPERATION:summary|list,<nr>,sdcfplm,<pattern>)

TABLE: connections, fwx_cache, fwx_alloc, sam_blocked_ips or all tables"
    *CPU: global or core, data globally or per core"
    *OPERATION: summary or list/detailed information; <nr> number of lines; FLAGS: s(source), d(destination), c(conversations), f(flow), p(protocol), l(local with the latest fetched data),m(filter pattern), r(rules) ; <pattern to filter>"

Some examples:

SUMMARY

./showtable.sh all global summary: all tables, all cpu cores, summary

./showtable.sh all core summary: all tables, per cpu core, summary

./showtable.sh connections core summary: connections table, per cpu core, summary

DETAILS:

./showtable.sh all global  list: all tables, all cpu cores, detailed. It gathers all the table entries and presents flows, conversations, sources, destination ips, rules, protocols, etc

FILTERING:

./showtable.sh all global  list:30:lmsdcfpr,icmp: analyzes the latest fetched data (l) and presents the top 30 results sorted by source, destionation, ip, conversations, flows, protocols, rules and filtered against the <icmp> pattern

0 Replies

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events