Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 2 Nov 2003 07:11:54 +0100
From:      Zoran Kolic <kolicz@eunet.yu>
To:        freebsd-stable@freebsd.org
Subject:   ipfw2 logging
Message-ID:  <20031102061154.GA539@>

next in thread | raw e-mail | index | archive | help

Dear list!
I have a little problem, trying
to enable logging of deny rule.
I have enabled it via kernel:

options IPFIREWALL
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT=3

It is ipfw2. After that, my inten-
tion was to use syslogd and

!ipfw
*.*       /var/log/ipfw.log

and newsyslog with

/var/log/ipfw.log  600 3 100   *   J

In rc.conf I have

firewall_enable="YES"
firewall_logging="YES"

Well! Firewall works, I have data
with "ipfw show", but there is no
log. My intentioned rule is

add 65535 deny log all from any to any

It should work, but is does not.
What I am doing wrong?
With no syslogd and newsyslog, log
would be in "messages" file in
/var/log directory?

                   ZK




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031102061154.GA539>