diff options
| author | jim-p <jim@pingle.org> | 2010-02-05 15:16:10 -0500 |
|---|---|---|
| committer | jim-p <jim@pingle.org> | 2010-02-05 15:17:01 -0500 |
| commit | 9d71da8163d81a55791784700b52913e1fa9be4d (patch) | |
| tree | 853d7e61496f10cd0b7b221213c6c49c30cff4fc /usr/local/www/diag_states_summary.php | |
| parent | fcd4a42519016d696abad314ecaa591b5be703b5 (diff) | |
| download | pfsense-9d71da8163d81a55791784700b52913e1fa9be4d.zip pfsense-9d71da8163d81a55791784700b52913e1fa9be4d.tar.gz | |
Add Diagnostics > States Summary, which produces a report summarizing pf states by IP and protocol.
Diffstat (limited to 'usr/local/www/diag_states_summary.php')
| -rw-r--r-- | usr/local/www/diag_states_summary.php | 81 |
1 files changed, 81 insertions, 0 deletions
diff --git a/usr/local/www/diag_states_summary.php b/usr/local/www/diag_states_summary.php new file mode 100644 index 0000000..242c06e --- /dev/null +++ b/usr/local/www/diag_states_summary.php @@ -0,0 +1,81 @@ +<?php + +exec("/sbin/pfctl -s state", $states); + +$srcipinfo = array(); + +$row = 0; +if(count($states) > 0) { + foreach($states as $line) { + $line_split = preg_split("/\s+/", $line); + $type = array_shift($line_split); + $proto = array_shift($line_split); + $state = array_pop($line_split); + $info = implode(" ", $line_split); + + /* break up info and extract $srcip and $dstip */ + $ends = preg_split("/\<?-\>?/", $info); + $parts = split(":", $ends[0]); + $srcip = trim($parts[0]); + $srcport = trim($parts[1]); + + $parts = split(":", $ends[count($ends) - 1]); + $dstip = trim($parts[0]); + $dstport = trim($parts[1]); + + $srcipinfo[$srcip]['seen']++; + $srcipinfo[$srcip]['protos'][$proto]['seen']++; + if (!empty($srcport)) { + $srcipinfo[$srcip]['protos'][$proto]['srcports'][$srcport]++; + } + if (!empty($dstport)) { + $srcipinfo[$srcip]['protos'][$proto]['dstports'][$dstport]++; + } + } +} + +function sort_by_ip($a, $b) { + return sprintf("%u", ip2long($a)) < sprintf("%u", ip2long($b)) ? -1 : 1; +} + +$pgtitle = "Diagnostics: State Table Summary"; +require_once("guiconfig.inc"); +include("head.inc"); +include("fbegin.inc"); +?> +<p class="pgtitle"><?=$pgtitle?></font></p> + +<table class="tabcont" width="100%" border="0" cellspacing="0" cellpadding="0"> + <tr> + <td class="listhdrr">IP</td> + <td class="listhdrr"># States</td> + <td class="listhdrr">Proto</td> + <td class="listhdrr"># States</td> + <td class="listhdrr">Src Ports</td> + <td class="listhdrr">Dst Ports</td> + </tr> +<?php uksort($srcipinfo, "sort_by_ip"); + foreach($srcipinfo as $ip => $ipinfo) { ?> + <tr> + <td class='vncell'><?php echo $ip; ?></td> + <td class='vncell'><?php echo $ipinfo['seen']; ?></td> + <td class='vncell'> </td> + <td class='vncell'> </td> + <td class='vncell'> </td> + <td class='vncell'> </td> + </tr> + <?php foreach($ipinfo['protos'] as $proto => $protoinfo) { ?> + <tr> + <td class='list'> </td> + <td class='list'> </td> + <td class='listlr'><?php echo $proto; ?></td> + <td class='listr' align="center"><?php echo $protoinfo['seen']; ?></td> + <td class='listr' align="center"><?php echo count($protoinfo['srcports']); ?></td> + <td class='listr' align="center"><?php echo count($protoinfo['dstports']); ?></td> + </tr> + <?php } ?> +<?php } ?> + +</table> + +<?php include("fend.inc"); ?> |
