From owner-freebsd-security Wed Dec 6 21:28:35 2000 From owner-freebsd-security@FreeBSD.ORG Wed Dec 6 21:28:33 2000 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from shrubbery.satx.bikeworld.net (shrubbery.satx.bikeworld.net [209.142.99.220]) by hub.freebsd.org (Postfix) with ESMTP id 8E0E937B401 for ; Wed, 6 Dec 2000 21:28:33 -0800 (PST) Received: from roscoe ([10.0.0.2] helo=roscoe.ah.bikeworld.net ident=mailserv) by shrubbery.satx.bikeworld.net with esmtp (Exim 3.16 #1) id 143tbL-0001hd-00; Wed, 06 Dec 2000 23:28:15 -0600 Received: from roscoe.ah.bikeworld.net ([10.0.0.2] ident=root) by roscoe.ah.bikeworld.net with esmtp (Exim 3.16 #1) id 143tbK-0000M2-00; Wed, 06 Dec 2000 23:28:14 -0600 Date: Wed, 6 Dec 2000 23:28:14 -0600 (CST) From: Chris Snell X-Sender: chris@roscoe.ah.bikeworld.net To: Brad Mace Cc: freebsd-security@freebsd.org Subject: Re: mrtg through firewall In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 6 Dec 2000, Brad Mace wrote: > I've been trying to setup my firewall rules to allow mrtg to run. It > seems to use different udp ports each time. Is there a way i can allow it > without allowing all udp packets? Another alternative is to move from MRTG to Bronc (http://bronc.blueaspen.com) and then use Colt (see the Bronc homepage for more info on Colt) to pass the SNMP data through the firewall (by direct HTTP or HTTP through a proxy) to your network monitoring box. I plan on releasing a version of the Bronc collector (badger.pl) that has Colt support built-in. Chris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message