Does anyone know of any methods/tools to monitor an IPTABLES/NetFilter
firewall ?
Specifically I'm looking for:
- Ways of finding bottleneck(s) within the firewall
- Ways of finding stats (active connections, Nat Translations ...).
either text based or Visual (similiar to Cisco PIX).
And of course , all this without adding a lot of overhead to the firewall :-)
Also any links to some good docs on Firewall Tuning (rules, hardware, OS)
Thanks !
David
