Results 1 to 24 of 24
-
10-01-2013, 09:15 AM #1Web Hosting Guru
- Join Date
- May 2013
- Posts
- 294
How to receive email alert when firewall stops?
Any way to receive email alert if iptables , firewall stops?
Treat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months.Sancte Michael Archangele, defende nos in proelio, contra nequitiam et insidias diaboli esto praesidium. Imperet illi Deus, supplices deprecamur: tuque, Princeps militiae coelestis, Satanam aliosque spiritus malignos, qui ad perditionem animarum pervagantur in mundo, divina virtute, in infernum detrude. Amen
-
10-01-2013, 09:42 AM #2Newbie
- Join Date
- Jun 2013
- Posts
- 11
I'd be more worried about why your firewall "stops" in the first place Do you mean all policies are reset to ACCEPT?
-
10-01-2013, 10:02 AM #3Newbie
- Join Date
- Jun 2013
- Posts
- 11
...I noticed your other thread about iptables/crontab. Find the cronjob:
crontab -l
cat /etc/crontab
ls -laR /etc/cron*
grep . /var/spool/cron/*
It should be in there somewhere.
-
10-01-2013, 07:19 PM #4WHT Addict
- Join Date
- May 2009
- Location
- Italy - Rome
- Posts
- 152
It's depend if iptables is running as service named as "iptables", normaly it work on redhat/centos like.
This is a script you can use to check if iptables it's alive, put it on a cronjob of 1min
Code:if [ `service iptables status` = "Firewall is running." ] then echo "All is well, so do nothing" >/dev/null 2>&1 else echo "Firewall is down, or status is unknown" | mail -s "Firewall problem" me@mydomain.com fi
*/1 * * * * bash /root/scriptname.sh
-
10-01-2013, 09:44 PM #5Web Hosting Guru
- Join Date
- May 2013
- Posts
- 294
Thanks It did not send email any Idea?
The cron worksTreat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months.Sancte Michael Archangele, defende nos in proelio, contra nequitiam et insidias diaboli esto praesidium. Imperet illi Deus, supplices deprecamur: tuque, Princeps militiae coelestis, Satanam aliosque spiritus malignos, qui ad perditionem animarum pervagantur in mundo, divina virtute, in infernum detrude. Amen
-
10-01-2013, 09:55 PM #6WHT Addict
- Join Date
- May 2009
- Location
- Italy - Rome
- Posts
- 152
install sendmail, witch Linux you have?
it send mail only if find firewall it's stopped.
-
10-01-2013, 10:12 PM #7Web Hosting Guru
- Join Date
- May 2013
- Posts
- 294
CENTOS 5.9
Treat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months.Sancte Michael Archangele, defende nos in proelio, contra nequitiam et insidias diaboli esto praesidium. Imperet illi Deus, supplices deprecamur: tuque, Princeps militiae coelestis, Satanam aliosque spiritus malignos, qui ad perditionem animarum pervagantur in mundo, divina virtute, in infernum detrude. Amen
-
10-01-2013, 10:22 PM #8WHT Addict
- Join Date
- May 2009
- Location
- Italy - Rome
- Posts
- 152
yum install sendmail sendmail-cf
-
10-01-2013, 10:26 PM #9Aspiring Evangelist
- Join Date
- Dec 2011
- Location
- Montreal
- Posts
- 431
I think youre script is wrong, not the sendmail.
Use this script:
Code:#!/bin/bash DROP=$(service iptables status | grep "DROP" | wc -l) if [ ${DROP} -gt 0 ]; then echo "All is well, so do nothing" else echo "Firewall is down, or status is unknown" | mail -s "Firewall problem" root fi
-
10-01-2013, 10:34 PM #10Web Hosting Guru
- Join Date
- May 2013
- Posts
- 294
Isn't it a permission issue?
Treat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months.Sancte Michael Archangele, defende nos in proelio, contra nequitiam et insidias diaboli esto praesidium. Imperet illi Deus, supplices deprecamur: tuque, Princeps militiae coelestis, Satanam aliosque spiritus malignos, qui ad perditionem animarum pervagantur in mundo, divina virtute, in infernum detrude. Amen
-
10-01-2013, 10:42 PM #11Aspiring Evangelist
- Join Date
- Dec 2011
- Location
- Montreal
- Posts
- 431
1. Create a file "check_csf.sh", insert my script, save the file.
Code:#!/bin/bash DROP=$(service iptables status | grep "DROP" | wc -l) if [ ${DROP} -gt 0 ]; then echo "All is well, so do nothing" > /dev/null 2>&1 else echo "Firewall is down, or status is unknown" | mail -s "Firewall problem" root fi
3. Create a crontab: crontab -e
*/2 * * * * /location_of_yourfile/check_csf.sh
save crontab
That's it !!!
Regards
-
10-01-2013, 10:46 PM #12Web Hosting Guru
- Join Date
- May 2013
- Posts
- 294
/bin/bash^M: bad interpreter: No such file or directory
Treat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months.Sancte Michael Archangele, defende nos in proelio, contra nequitiam et insidias diaboli esto praesidium. Imperet illi Deus, supplices deprecamur: tuque, Princeps militiae coelestis, Satanam aliosque spiritus malignos, qui ad perditionem animarum pervagantur in mundo, divina virtute, in infernum detrude. Amen
-
10-01-2013, 10:48 PM #13Aspiring Evangelist
- Join Date
- Dec 2011
- Location
- Montreal
- Posts
- 431
Last edited by rowebca; 10-01-2013 at 10:52 PM.
-
10-01-2013, 10:51 PM #14Web Hosting Guru
- Join Date
- May 2013
- Posts
- 294
syntax error near unexpected token `fi'
Treat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months.Sancte Michael Archangele, defende nos in proelio, contra nequitiam et insidias diaboli esto praesidium. Imperet illi Deus, supplices deprecamur: tuque, Princeps militiae coelestis, Satanam aliosque spiritus malignos, qui ad perditionem animarum pervagantur in mundo, divina virtute, in infernum detrude. Amen
-
10-01-2013, 10:52 PM #15WHT Addict
- Join Date
- May 2009
- Location
- Italy - Rome
- Posts
- 152
too much simple maybe
Code:#!/bin/bash DROP=$(service iptables status | grep "DROP" | wc -l) ## Well this part grep DROP but if there are tables with not DROP but REJECT or only limit? will fail. if [ ${DROP} -gt 0 ]; then echo "All is well, so do nothing" ## will print on video, if run on cron will email the output each time will run the script (each minutes got one email say "All is well, so do nothing" else echo "Firewall is down, or status is unknown" | mail -s "Firewall problem" root ## will email root but must specify a .forward if want to read the email on a smtp server. fi
the best will be if the script check if a "chainname" it's present on iptables..
Code:#!/bin/bash # #Check if firewall is up CHECK=`iptables -L -n | grep -m 1 chainname' if [ -z "$CHECK" ] then echo "Firewall is down on `hostname`" | mail -s "Firewall Status" me@mydomain.com fi
-
10-01-2013, 10:58 PM #16Aspiring Evangelist
- Join Date
- Dec 2011
- Location
- Montreal
- Posts
- 431
-
10-01-2013, 10:58 PM #17Web Hosting Guru
- Join Date
- May 2013
- Posts
- 294
/bin/bash: /root/firewaldown.sh: /bin/bash^M: bad interpreter: No such file or directory
Treat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months.Sancte Michael Archangele, defende nos in proelio, contra nequitiam et insidias diaboli esto praesidium. Imperet illi Deus, supplices deprecamur: tuque, Princeps militiae coelestis, Satanam aliosque spiritus malignos, qui ad perditionem animarum pervagantur in mundo, divina virtute, in infernum detrude. Amen
-
10-01-2013, 11:08 PM #18WHT Addict
- Join Date
- May 2009
- Location
- Italy - Rome
- Posts
- 152
This error is because you run a file (where you write the code of the script) from windows and linux don't read well the code.
So must convert dos file to unix file!
Code:yum install dos2unix dos2unix /root/firewaldown.sh
Code:tr -d '\15\32' < winfile.txt > unixfile.txt
-
10-01-2013, 11:12 PM #19Web Hosting Guru
- Join Date
- May 2013
- Posts
- 294
I thought it was simple!
I have a linux server I want to simply get email when firewall is not running.
No problem just give up
Thanks any wayTreat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months.Sancte Michael Archangele, defende nos in proelio, contra nequitiam et insidias diaboli esto praesidium. Imperet illi Deus, supplices deprecamur: tuque, Princeps militiae coelestis, Satanam aliosque spiritus malignos, qui ad perditionem animarum pervagantur in mundo, divina virtute, in infernum detrude. Amen
-
10-01-2013, 11:16 PM #20Aspiring Evangelist
- Join Date
- Dec 2011
- Location
- Montreal
- Posts
- 431
-
10-01-2013, 11:17 PM #21WHT Addict
- Join Date
- May 2009
- Location
- Italy - Rome
- Posts
- 152
-
10-01-2013, 11:20 PM #22Aspiring Evangelist
- Join Date
- Dec 2011
- Location
- Montreal
- Posts
- 431
-
10-01-2013, 11:20 PM #23WHT Addict
- Join Date
- May 2009
- Location
- Italy - Rome
- Posts
- 152
-
10-01-2013, 11:23 PM #24Web Hosting Guru
- Join Date
- May 2013
- Posts
- 294
Make it easier please
Treat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months.Sancte Michael Archangele, defende nos in proelio, contra nequitiam et insidias diaboli esto praesidium. Imperet illi Deus, supplices deprecamur: tuque, Princeps militiae coelestis, Satanam aliosque spiritus malignos, qui ad perditionem animarum pervagantur in mundo, divina virtute, in infernum detrude. Amen
Similar Threads
-
iptables firewall on: can't receive emails
By amirak172 in forum Hosting Security and TechnologyReplies: 2Last Post: 06-10-2009, 02:11 AM -
APF firewall. Daily automated email showing firewall status
By Charles Sweeney in forum Hosting Security and Technology TutorialsReplies: 0Last Post: 06-24-2004, 04:18 PM -
RAQ550 - Add new site then all incoming email stops
By PCInformation in forum Dedicated ServerReplies: 0Last Post: 07-26-2003, 02:14 PM -
RAQ550 - Add new site then all incoming email stops
By PCInformation in forum Dedicated ServerReplies: 0Last Post: 07-26-2003, 02:12 PM -
Firewall stops Win2K email
By MattMans in forum Hosting Security and TechnologyReplies: 2Last Post: 12-06-2002, 04:53 PM