Ipset Monitoring
Powerful performance with an easy integration, powered by Telegraf, the open source data connector built by InfluxData.
5B+
Telegraf downloads
#1
Time series database
Source: DB Engines
1B+
Downloads of InfluxDB
2,800+
Contributors
Table of Contents
Powerful Performance, Limitless Scale
Collect, organize, and act on massive volumes of high-velocity data. Any data is more valuable when you think of it as time series data. with InfluxDB, the #1 time series platform built to scale with Telegraf.
See Ways to Get Started
ipset is a companion application for the iptables Linux firewall that allows you to set up rules to block a set of IP addresses by tracking the byte count per IP.
Why use the Ipset Telegraf Plugin?
The Ipset Telegraf Plugin will allow gathering packet and byte counters that you can track over time to see patterns and determine if rules to block are warranted. You can also use this with other Telegraf plugins like the Fail2ban Telegraf Plugin to get a more comprehensive view of your traffic.
How to monitor packets and bytes using the Ipset Telegraf plugin
The Ipset Telegraf plugin gathers packets and bytes counters from Linux ipset. It uses the output of the command "ipset save". Ipsets created without the "counters" option are ignored.
The results are tagged with:
- ipset name
- ipset entry
In addition, there are 3 ways to grant Telegraf the right to run ipset:
- Run as root (strongly discouraged).
- Use sudo.
- Configure systemd to run telegraf with
CAP_NET_ADMINandCAP_NET_RAWcapabilities.
Key Ipset metrics to use for monitoring
Some of the important Ipset metrics that you should proactively monitor include:
- Total bytes
- Total packets
Powerful Performance, Limitless Scale
Collect, organize, and act on massive volumes of high-velocity data. Any data is more valuable when you think of it as time series data. with InfluxDB, the #1 time series platform built to scale with Telegraf.
See Ways to Get Started
