fwstat.cfg

# Main Configuration File for Simple Host Monitor

# Written by Chris Sawall (sawall {at} gmail {dot} com)

# Written: 02/03/04

# Last Updated: 02/03/05

#

#

#===========================================

# Turn on/off functionality to monitor 

# firewalls or vpns.  Turn on/off 

# function to email admins if a host is down

#===========================================

MONITORVPNS = on

MONITORFWS = on

NOTIFY = on

#===========================================

# Configure location of mail and nmap programs

#

# Use the complete path to the program directory.

# The PORT setting defines the port in which to

# scan and the PROTOCOL set either UDP or TCP.

# The default IKE port is UDP 500.  

#

# If MONITORVPNS is set to "off", then the 

# NMAP, PORT and PROTOCOL settings are irrelevant

#

# If NOTIFY is set to "off", then the MAILPROG

# and DOWNMSG settings are irrelevant

#===========================================

MAILPROG = /bin/mail

DOWNMSG = HOST IS DOWN.

NMAP = /usr/bin/nmap

PORT = -p 500

PROTOCOL = -sU

#===========================================

# Define file locations.  This should be the 

# full path to the files location.

#

# DOWNFILE -> file to store and track down hosts

# OUTFILE -> file to write output of findings

# FWINFOFILE -> file containing info on hosts to scan

# FWDELIMIT -> define how FWINFOFILE is delimited

#===========================================

DOWNFILE = /tmp/down.hosts

OUTFILE = /var/www/html/fwstat.html

FWINFOFILE = /root/firewall.hosts

FWDELIMIT = :

#===========================================

# Define users to email of hosts are down

# Define as many as needed by simply adding

# another line.  Blank lines are ignored.

#===========================================

EMAILADDR = fwadmin@yourdomain.com

EMAILADDR = 

#===========================================

# Ping Interval in minutes as set in your Crontab

# Example Crontab Line:

# */4 * * * * /root/fwstat.pl

#

#===========================================

PINGINTERVAL = 4

#===========================================

# Define maximum number of times a host can

# be found down before notifying somebody

#===========================================

MAXDOWNTIMES = 3

#===========================================

# Define hosts that should be ignored 

# This can be as many as needed, just add 

# another EXCLUDE statement. Blank lines

# are ignored.

#

# The main purpose for this setting is so that

# a host can be defined within the FWINFOINFO

# file, but be temporarily ignored.  Good for 

# times when a host is known to be down for

# maintenance, but you do not want to always 

# be notified.

#===========================================

EXCLUDE = FIREWALL03

EXCLUDE = 

#===========================================

# Show the exclude data with the result data

#

# Set SHOWEXCLUDES to on or off.

# Set the message to be displayed for these 

# excluded hosts

#===========================================

SHOWEXCLUDES = on

SHOWEXCMSG = The following hosts are NOT being monitored:

#===========================================

# Configure information about the website

#===========================================

# Default body and text colors

BDYBGND = black

BDYFGND = white

# Main Title and Heading

WEBTTL = Firewall and VPN Status

HEADING = Firewall and VPN Status

# Color to display hostname in if host is found 

# to be up or down

PINGDEVICEUPCOLOR = white

PINGDEVICEDOWNCOLOR = red

# Settings for info about firewalls

FWSHEADING = Cisco PIX Firewalls

FWSTATUSTTL = Status

FIREWALLNAME = PIX Name

FWLOCATIONTTL = Location

FWDESCRIPTTL = Description

# Settings for info about vpns

VPNSHEADING = VPN Devices

VPNSTATUSTTL = Status

VPNNAME = VPN Name

VPNLOCATIONTTL = Location

VPNDESCRIPTTL = Description

IPSECUPINFO = IPSEC is Listening

IPSECDOWNINFO = IPSEC is NOT Listening

IPSECUPCOLOR = yellow

IPSECDOWNCOLOR = red

### END ###