$Id: README,v 1.1.2.1 2004/05/16 16:35:21 timo Exp $
Iptables statistics theme, reads the /var/log/syslog and /var/log/syslog.0 for iptables log messages and
show top hostst and ports trying to attack the computer. If you have iptables log in elsewhere, you have to modify the shell scripts. Shows also graph for hit count per every five minutes after starting the theme.

Made for screen resolution 1280x1024 and Debian Sarge. Not tested with other resolutions, so may break with them.

Installation: just unpack and extract. Note: there is a directory called 'data', where a user must have a write access.

Files:

gethost - If started with parameter 'init' reads the /var/log/syslog and /var/log/syslog.0 files and
writes the top hosts to 'data/iptables_hosts' file and prints the file to stdout. Without init-parameter just checks that the file 'data/iptables_hosts' exist and prints the file to stdout.

getports - If started with parameter 'init' reads the /var/log/syslog and /var/log/syslog.0 files and
writes the top ports to 'data/iptables_ports' file and prints the file to stdout. Without init-parameter just checks that  the file 'data/iptables_ports' exist and prints the file to stdout.

getlastcount - Reads the file /var/log/syslog and counts the iptables log entries after last invocation of this script, adds the count and date to the 'data/iptables_last_period'. Saves the length of the /var/log/syslog to 'data/iptables_slfs', so only the lines added to the /var/log/syslog after last invocation are read.

iptables.theme - theme for iptables, note that there should  be only one call for gethost and getports with 'init' parameter.

iptables.py - only templates



