From owner-freebsd-security Sun Sep 12 7:10:31 1999 Delivered-To: freebsd-security@freebsd.org Received: from saturn.psn.net (saturn.psn.net [207.211.58.15]) by hub.freebsd.org (Postfix) with ESMTP id E5F3D14F77 for ; Sun, 12 Sep 1999 07:10:29 -0700 (PDT) (envelope-from will@blackdawn.com) Received: from shadow.blackdawn.com (5042-243.008.popsite.net [209.224.140.243]) by saturn.psn.net (8.9.3/8.9.3) with ESMTP id HAA22281; Sun, 12 Sep 1999 07:16:18 -0700 (MST) Received: (from will@localhost) by shadow.blackdawn.com (8.9.3/8.9.3) id KAA94412; Sun, 12 Sep 1999 10:10:25 -0400 (EDT) (envelope-from will) Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <199909120407.VAA30134@gndrsh.dnsmgr.net> Date: Sun, 12 Sep 1999 10:10:25 -0400 (EDT) Reply-To: Will Andrews From: Will Andrews To: (Anil Jangity) Subject: Re: ipfw question Cc: freebsd-security@FreeBSD.ORG Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 12-Sep-99 Rodney W. Grimes wrote: >> I am using FreeBSD2.2.8 Stable with IPFW enalbed with logging. FreeBSD 3.3-RC (current -STABLE) has updated ipfw somewhat. >> Also does anyone know if IP Filters (or ipfw) let you limit logging >> depending on the rate at which the rule is applied? See /sys/i386/conf/LINT regarding options IPFIREWALL_VERBOSE options "IPFIREWALL_VERBOSITY_LIMIT=10" or something similar. The drawback to these features is that the limit doesn't behave the way I think it should (although as a result, I don't use VERBOSITY_LIMIT) - instead of just counting repeating packets, it kills the rule the packets are matched against after the rule reaches the limit specified. -- Will Andrews GCS/E/S @d- s+:+>+:- a--->+++ C++ UB++++ P+ L- E--- W+++ !N !o ?K w--- ?O M+ V-- PS+ PE++ Y+ PGP+>+++ t++ 5 X++ R+ tv+ b++>++++ DI+++ D+ G++>+++ e->++++ h! r-->+++ y? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message