Base on Nagios check check_iptables which does not much more than count the number of loaded rules.

Show example for RHEL-Breeds and how to enforce the check on a system.

I have it running on xen07, deploy it everywhere.

 

# cat /etc/check_mk/mrpe.cfg 
IPTABLES /usr/local/bin/check_iptables_status.sh -T RH-Firewall-1-INPUT -r 5