From owner-freebsd-questions  Sat Jun  9 20:19:15 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from todd-server.doonga.net (h0000e85749b9.ne.mediaone.net [66.31.205.167])
	by hub.freebsd.org (Postfix) with ESMTP id 5709137B401
	for <questions@FreeBSD.ORG>; Sat,  9 Jun 2001 20:19:11 -0700 (PDT)
	(envelope-from todd@doonga.net)
Received: from toddpc (todd-pc.doonga.net [192.168.0.248])
	by todd-server.doonga.net (8.11.3/8.11.3) with SMTP id f5A3Ost01349;
	Sat, 9 Jun 2001 23:24:54 -0400 (EDT)
	(envelope-from todd@doonga.net)
From: "Todd Punderson" <todd@doonga.net>
To: <otterr@telocity.com>, <questions@FreeBSD.ORG>
Subject: RE: firewall (ipfw) logging help
Date: Sat, 9 Jun 2001 23:21:40 -0400
Message-ID: <KJEPKOABHFNPCHDCFDKGAEPHCPAA.todd@doonga.net>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0)
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2462.0000
Importance: Normal
In-Reply-To: <PCEGINJJIOIMLAAHJLIPCEBPCCAA.otterr@telocity.com>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

A quick dirty and sloppy way would be to make a rule for it and not put the
log command on it. Make sure it would hit that rule before the deny that it
is hitting now... :)
Todd


-----Original Message-----
From: owner-freebsd-questions@FreeBSD.ORG
[mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Otter
Sent: Saturday, June 09, 2001 9:53 PM
To: questions@FreeBSD.ORG
Subject: firewall (ipfw) logging help


I've recently changed a few things in the course of my source update
today and decided to make my logs more vocal. Setting the
firewall_quiet option in rc.conf to "NO" has made it so that every
time there is an attempt on a port with nothing listening, it gets
logged to /var/log/messages. How would one go about making exceptions
to the log? I'm getting UDP hits from my one of my ISP's nameservers
on port 53 (it's bind, but not running locally). Would this be done
with an ipfw rule or setup somehow in hosts.allow? Or is this even
possible? Also, can it be configured to be in its own log file (like
syslog)? TIA.
-Otter


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message