Ever wanted to keep an eye on how much traffic is passing through your firewall? Will, if you have a Linux box and a copy of MRTG, then you can. There's really nothing to it. Below is my configuration file for the Symantec firewall.
Options[firewall]: growright, bits, noarrow Xsize[firewall]: 600 Ysize[firewall]: 200 Target[firewall]: 1:firstname.lastname@example.org: SetEnv[firewall]: MRTG_INT_IP="a.b.c.d" MRTG_INT_DESCR="ISB-WAN1" Background[firewall]: #738AA6 MaxBytes1[firewall]: 193000 MaxBytes2[firewall]: 37500 YTics[firewall]: 10 Title[firewall]: Traffic Analysis for firewall PageTop[firewall]: <H1>Traffic Analysis for firewall</H1> <TABLE> <TR> <TD>System:</TD> <TD>Symantec Firewall/VPN 100</TD> </TR> <TR> <TD>Maintainer:</TD> <TD></TD> </TR> <TR> <TD>Description:</TD> <TD>WAN1</TD> </TR> <TR> <TD>ifType:</TD> <TD>ethernetCsmacd (6)</TD> </TR> <TR> <TD>ifName:</TD> <TD></TD> </TR> <TR> <TD>Ip:</TD> <TD>a.b.c.d (firewall.hansenonline.net)</TD> </TR> </TABLE>
Here's the explanation for some of this stuff.
Xsize and Ysize is set fairly large, I like large graphs, especially since I don't have to download them across a slow link. The Options[_] are pretty standard, but I don't like the red arrow in the graph, so I turned it off.
Target[firewall] simply states which interface to gather data for. This one is the correct for my SFV/100. It might be a little different on the /200 model, as it has two WAN interfaces. Skipping SetEnv and Background, I'm setting the max values for the bandwidth. Since I have a cable modem with 1544/300, I'm setting different values for in and out traffic. That's why there's a red line at 300kbps on the image below. The rest is all standard stuff that you'll get by using the cfgmaker. (I actually cheated to get the graph to fit in this window. The below graph is created with XSize = 550).