From owner-freebsd-questions Mon Feb 19 5:25:12 2001 Delivered-To: freebsd-questions@freebsd.org Received: from clientmail.realtime.co.uk (simian.realtime.co.uk [194.205.134.131]) by hub.freebsd.org (Postfix) with ESMTP id C46F937B491 for ; Mon, 19 Feb 2001 05:25:08 -0800 (PST) Received: from zaphod.realtime.co.uk ([194.205.134.208]) by clientmail.realtime.co.uk with esmtp (Exim 3.20 #1) id 14UqJP-0008SB-01 for freebsd-questions@freebsd.org; Mon, 19 Feb 2001 13:25:07 +0000 Received: from waynep by zaphod.realtime.co.uk with local (Exim 3.16 #1) id 14UqIr-0005f2-00 for freebsd-questions@freebsd.org; Mon, 19 Feb 2001 13:24:33 +0000 From: Wayne Pascoe To: freebsd-questions@freebsd.org Subject: ipfw not logging Reply-To: wayne.pascoe@realtime.co.uk Date: 19 Feb 2001 13:24:33 +0000 Message-ID: Lines: 49 User-Agent: Gnus/5.0808 (Gnus v5.8.8) XEmacs/21.1 (Channel Islands) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi again all, I have ipfw setup on my system now. At the moment, I have a fairly simple script that sets up some very simple rules for testing. The script is as follows: #!/bin/bash FW_CMD=/sbin/ipfw $FW_CMD -f flush $FW_CMD add reject log tcp from any to 192.168.2.253 23 $FW_CMD add allow ip from any to any After executing this script, the output of ipfw l looks like 00100 unreach host log logamount 30 tcp from any to 192.168.2.253 23 00200 allow ip from any to any 65535 deny ip from any to any telnetting to the host is immediately rejected, but nothing is logged. I added the following lines to my kernel config and rebuilt it. # Firewalling Options options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=30 I was not getting any log messages on my console, so I added the following section to /etc/syslog.conf # IPFW logging !ipfw *.* /var/log/ipfw.log I touched the logfile and restarted syslog, but nothing is being logged to that file. With ipf you have to run ipmon to log stuff. Is there any similar utility for ipfw that I am missing? Any help would be appreciated! Thanks, -- - Wayne Pascoe E-mail: wayne.pascoe@realtime.co.uk Phone : +44 (0) 20 7544 4668 Mobile: +44 (0) 788 431 1675 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message