Manualshelf

HP-UX IPFilter Version A.03.05.14 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPFilter Software
101102103104105106107108109110
HP-UX IPFilter Utilities
The ipmon Utility
Chapter 596
You can use ipmon -r to print the summary records to the log file for all
existing limit entries that are active. For example, you have the following
rule configured:
pass in log limit quick proto tcp from IP1 to Server keep
limit 10
If IP1 creates 70 connections, then 10 connections are let through and
remaining 60 are blocked, which is the block count. When ipmon -r is
called, a summary record is logged to the summary log records and the
block count is set to 0. This is useful in a case where IP1 created many
connections and has a large block count, but subsequently has
connections that are within the connection limit.
ipmon -r works only on active limit entries. If there are no limit entries,
ipmon -r does not log any Summary Log records. Summary logs are
printed only for those limit entries which have a non-zero connection
exceeded counter. For cumulative limits, this option is the only way to
obtain summary logs.