Date: Tue, 4 Apr 2006 06:01:12 -0600 From: "Bill Marquette" <bill.marquette@gmail.com> To: "N. Ersen SISECI" <siseci@gmail.com> Cc: freebsd-pf@freebsd.org Subject: Re: Log tag Message-ID: <55e8a96c0604040501y719b4241ue9d989263797c8dc@mail.gmail.com> In-Reply-To: <1144132192.47587.8.camel@siseci.gdg.gov.tr> References: <1144132192.47587.8.camel@siseci.gdg.gov.tr>
next in thread | previous in thread | raw e-mail | index | archive | help
On 4/4/06, N. Ersen SISECI <siseci@gmail.com> wrote: > > > Hi, > > Is it possible to label the log entries? > We can do it in IPF with set-tag (log=3D48). > Is there a similiar method in PF? > > > IPF Rule: > pass in log first quick on bge0 proto tcp from any to 10.1.2.3 port =3D 2= 2 > flags S/SA keep state keep frags set-tag (log=3D110) > > IPF Log entry: > 04/04/2006 09:26:00.982095 bge0 @0:3 p 10.1.2.3,57221 -> > 192.168.90.12,22 PR tcp len 20 64 -S K-S K-F OUT log-tag 110 The "label" keyword is what you want (and gives you a plain text description instead of number?!?!?! ouch). pass in log from foo to bar label "foo to bar rule" --Bill
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?55e8a96c0604040501y719b4241ue9d989263797c8dc>