Add ipfwcount 0.2.1, summarise ipfw logs by counting and sorting the

fields. PR: ports/92454 Submitted by: Robert Archer <freebsd@deathbeforedecaf.net> Approved by: tobez
svn path=/head/; revision=162245
2024-12-27 05:10:36 +00:00 · 2006-05-13 16:33:50 +00:00 · 2006-05-13 16:33:50 +00:00 · f339ced151 · 2021-03-31 03:12:20 +00:00
commit f339ced151
parent 68f8d155c2
5 changed files with 80 additions and 0 deletions
--- a/security/Makefile
+++ b/security/Makefile
@ -181,6 +181,7 @@
    SUBDIR += ipfilter2dshield
    SUBDIR += ipfmeta
    SUBDIR += ipfw2dshield
+    SUBDIR += ipfwcount
    SUBDIR += ipguard
    SUBDIR += ipsec-tools
    SUBDIR += isakmpd
--- a/security/ipfwcount/Makefile
+++ b/security/ipfwcount/Makefile
@ -0,0 +1,55 @@
+# New ports collection makefile for:	ipfwcount
+# Date created:				22 February 2006
+# Whom:					Robert Archer <freebsd@deathbeforedecaf.net>
+#
+# $FreeBSD$
+#
+
+PORTNAME=	ipfwcount
+PORTVERSION=	0.2.1
+PORTREVISION=	1
+CATEGORIES=	security
+MASTER_SITES=	http://deathbeforedecaf.net/misc/ports/ \
+		http://users.netleader.com.au/~rob/
+
+MAINTAINER=	freebsd@deathbeforedecaf.net
+COMMENT=	Summarise ipfw logs by counting and sorting the fields
+
+PLIST_FILES=	bin/ipfwcount
+MAN1=		ipfwcount.1
+
+USE_PERL5=	yes
+USE_REINPLACE=	yes
+
+.if !defined(NOPORTDOCS)
+PLIST_DIRS=	%%EXAMPLESDIR%%
+PLIST_FILES+=	%%EXAMPLESDIR%%/100.ipfwcount
+SUB_FILES=	pkg-message
+.endif
+
+.include <bsd.port.pre.mk>
+
+.if ${PERL_LEVEL} < 500600
+IGNORE=		requires perl 5.6 or higher - see the lang/perl5.8 port
+.endif
+
+post-patch:
+	${REINPLACE_CMD} -e '1s,^#![^ ]*,#!${PERL},' ${WRKSRC}/ipfwcount
+
+do-build:
+	cd ${WRKSRC} && pod2man ipfwcount > ipfwcount.1
+
+do-install:
+	${INSTALL_SCRIPT} ${WRKSRC}/ipfwcount ${PREFIX}/bin
+	${INSTALL_MAN} ${WRKSRC}/ipfwcount.1 ${PREFIX}/man/man1/ipfwcount.1
+.if !defined(NOPORTDOCS)
+	${MKDIR} ${EXAMPLESDIR}
+	${INSTALL_SCRIPT} ${WRKSRC}/100.ipfwcount ${EXAMPLESDIR}
+.endif
+
+post-install:
+.if !defined(NOPORTDOCS)
+	@${CAT} ${PKGMESSAGE}
+.endif
+
+.include <bsd.port.post.mk>
--- a/security/ipfwcount/distinfo
+++ b/security/ipfwcount/distinfo
@ -0,0 +1,2 @@
+MD5 (ipfwcount-0.2.1.tar.gz) = 57107133453a8defd628bfa9295de5c0
+SIZE (ipfwcount-0.2.1.tar.gz) = 3863
--- a/security/ipfwcount/files/pkg-message.in
+++ b/security/ipfwcount/files/pkg-message.in
@ -0,0 +1,12 @@
+
+  To summarise ipfw(8) logs in your daily security check:
+
+  * Copy %%EXAMPLESDIR%%/100.ipfwcount to
+    %%PREFIX%%/etc/periodic/security
+
+  * Add the line
+
+      daily_status_security_ipfwcount_enable="YES"
+
+    to /etc/periodic.conf
+
--- a/security/ipfwcount/pkg-descr
+++ b/security/ipfwcount/pkg-descr
@ -0,0 +1,10 @@
+ipfwcount reads ipfw(8) logs and extracts the following fields:
+
+  rule action proto type shost sport dhost dport dir iface
+
+You can then print lists like 'top <n> blocked ports', 'top <n> blocked hosts',
+or 'incoming connections sorted by interface and protocol'.
+
+For more sophisticated lists, you can filter the entries using Perl expressions.
+
+WWW: http://deathbeforedecaf.net/misc/ports