{"id":373,"date":"2019-04-26T16:15:21","date_gmt":"2019-04-26T15:15:21","guid":{"rendered":"http:\/\/pruszewicz.com\/wordpress\/?p=373"},"modified":"2019-04-26T12:45:22","modified_gmt":"2019-04-26T11:45:22","slug":"monitoring-udp-datagrams","status":"publish","type":"post","link":"http:\/\/pruszewicz.com\/wordpress\/monitoring-udp-datagrams\/","title":{"rendered":"Monitoring UDP datagrams"},"content":{"rendered":"<p>Run script udpstat.sh in console<\/p>\n<pre><code>#!\/bin\/sh\nwhile true\ndo\nHOUR=`date '+%H'`\necho $HOUR\nsar -n UDP 1 -1 &gt;\/var\/log\/stats\/udpstats$HOUR.txt\ndone<\/code><\/pre>\n<p>Add job to crontab<\/p>\n<pre><code>0 * * * * \/usr\/bin\/kill $(\/usr\/bin\/ps aux |\/usr\/bin\/grep '[s]ar -n UDP 1 -1' |\/usr\/bin\/awk '{print $2}')<\/code><\/pre>\n<p>Limit UDP packets<\/p>\n<pre><code>\/sbin\/iptables -A OUTPUT -p udp -m state --state NEW -j ACCEPT\n\/sbin\/iptables -A OUTPUT -p udp -m limit --limit 10000\/s -j ACCEPT\n\/sbin\/iptables -A OUTPUT -p udp -j DROP<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"<p>Run script udpstat.sh in console #!\/bin\/sh while true do HOUR=`date &#8216;+%H&#8217;` echo $HOUR sar -n UDP 1 -1 &gt;\/var\/log\/stats\/udpstats$HOUR.txt done Add job to crontab 0 * * * * \/usr\/bin\/kill $(\/usr\/bin\/ps aux |\/usr\/bin\/grep &#8216;[s]ar -n UDP 1 -1&#8217; |\/usr\/bin\/awk &#8216;{print &hellip; <a href=\"http:\/\/pruszewicz.com\/wordpress\/monitoring-udp-datagrams\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[55,54],"class_list":["post-373","post","type-post","status-publish","format-standard","hentry","category-linux","tag-sar","tag-udp"],"_links":{"self":[{"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/posts\/373","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/comments?post=373"}],"version-history":[{"count":10,"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/posts\/373\/revisions"}],"predecessor-version":[{"id":392,"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/posts\/373\/revisions\/392"}],"wp:attachment":[{"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/media?parent=373"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/categories?post=373"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/pruszewicz.com\/wordpress\/wp-json\/wp\/v2\/tags?post=373"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}