Like every other website on the planet, SmallNetBuilder uses cookies. Our cookies track login status, but we only allow admins to log in anyway, so those don't apply to you. Any other cookies you pick up during your visit come from advertisers, which we don't control.
If you continue to use the site, you agree to tolerate our use of cookies. Thank you!
Privacy Policy

Router Charts

Click for Router Charts

Mesh Charts

Click for Mesh Charts

Security How To

Tags:
{multithumb}

In Part One of this series, we established a working definition of our target, i.e. what has to be done, and in what order, to Cerberus the lowly IDS firewall to make it a UTM Appliance. In Part Two, we started the conversion by installing and configuring multi-WAN support, Squid, IDS and anti-virus features. In Part 3, we added and configured Content Filtering, Traffic Control, Load Balancing and Failover.

In this last part, we'll wrap things up with Monitoring and Logging configuration, performance testing, final grading and reflection on the whole process.

Monitoring and Logging

There are numerous packages for logging and interfaces to external monitoring packages, summarized in Table 1.

Capability Explanation Features
Built-in Logging Protocols for logging system events SNMP, Syslogd, WebGui
RRD Graphs System Resources Graphic Monitoring Tool CPU Load, Traffic Throughput, Quality Handling, and Shaping Queues
Snort Alert Tracking and Status Barnyard2 package interface, Dashboard Widget
Squid Web and Cache statistic LightSquid
System Status Hardware and Package Status Dashboard, PHPsysinfo, WebGui, BandwidthD
External Interfaces Monitoring and Management Agents Zabbix, Radius, ntop
Table 1: Logging and monitoring packages

Several of these are built in, RRD Graphs are available is available from the Status menu, SyslogD can be configured there too, under Status->System Logs->Settings. SNMP is a built-in, find it under Services->SNMP.

Installing the others is straightforward, and can be found in the packages menu, these include LightSquid, BandwidthDPHPsysinfo, and the Dashboard, including several dashboard widgets (Snort, Havp status).  The interface to Barnyard2 is included with Snort.

The only issue with a couple of these packages, LightSquid, ntop and BandwidthD, is that they are not fully integrated into the pfSense webGui -  the pfSense banner and menus disappear, but backing out of the reports will lead you back to the web GUI.

Here are some screenshots of some of the logging and reporting options:

RRD Graphs

Figure 1: RRD Graphs

BandwidthD add-on Package

Figure 2: BandwidthD add-on Package

Dashboard

Figure 3: Dashboard

Light Squid

Figure 4: Light Squid

Support Us!

If you like what we do and want to thank us, just buy something on Amazon. We'll get a small commission on anything you buy. Thanks!

Most Read This Week

Over In The Forums

OpenVPN Server Fails to Start on 386.1_2 on RT-AX88U
RT-AC86U Wi-Fi range
Extremely slow VPN Server transfer speeds even on AES-NI supported RT-AC86U. Out of ideas, please help.
UpnP off AX86U problem?
[Beta 2] Vnstat on Merlin - UI, CLI and email - data use monitoring - with full install and menu

Don't Miss These

  • 1
  • 2