Can someone recommend a program/script in FreeBSD's Ports that will analyze /var/log/pflog on a daily basis and provide me with a functional report? I don't care whether the report is plain text or html, so long as I get the info I need.
I'm primarily interested in the following details: Allowed traffic - to include SRC/DST IP and SRC/DST port, and protocol. (My PF ruleset supports gathering this information with the log directive.)
A quick bit of searching, and I've found:
Please note that the periodic script 520.pfdenied is not sufficient for my needs. (I want to see allowed packets as described above.) I'd also prefer to not re-invent the wheel by writing something from scratch.
Any ideas?
I'm primarily interested in the following details: Allowed traffic - to include SRC/DST IP and SRC/DST port, and protocol. (My PF ruleset supports gathering this information with the log directive.)
A quick bit of searching, and I've found:
- hatchet : Not in Ports
- fwanalog : Doesn't seem actively maintained
- A mishmash of other unmaintained suggestions and expired URLs
Please note that the periodic script 520.pfdenied is not sufficient for my needs. (I want to see allowed packets as described above.) I'd also prefer to not re-invent the wheel by writing something from scratch.
Any ideas?
