Base on Nagios check check_iptables which does not much more than count the number of loaded rules.
Show example for RHEL-Breeds and how to enforce the check on a system.
I have it running on xen07, deploy it everywhere.
# cat /etc/check_mk/mrpe.cfg
IPTABLES /usr/local/bin/check_iptables_status.sh -T RH-Firewall-1-INPUT -r 5
Powered by Atlassian Confluence
and Zen Foundation