From owner-freebsd-questions@FreeBSD.ORG Tue Sep 12 21:21:03 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DA73016A4A0 for ; Tue, 12 Sep 2006 21:21:03 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: from pearl.ibctech.ca (pearl.ibctech.ca [209.167.58.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id EF06A43D6B for ; Tue, 12 Sep 2006 21:20:57 +0000 (GMT) (envelope-from iaccounts@ibctech.ca) Received: (qmail 76595 invoked by uid 1002); 12 Sep 2006 21:20:55 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (spamassassin: 2.64. Clear:RC:1(209.167.16.15):. Processed in 6.609534 secs); 12 Sep 2006 21:20:55 -0000 Received: from unknown (HELO xzibit) (steve@ibctech.ca@209.167.16.15) by pearl.ibctech.ca with (RC4-MD5 encrypted) SMTP; 12 Sep 2006 21:20:48 -0000 From: "Steve Bertrand" To: "'Bart Silverstrim'" Date: Tue, 12 Sep 2006 17:20:22 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.5510 Thread-Index: AcbWrR68+EQ+DBLRRiOiZGYysQTs5wAA6zVg X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2962 In-Reply-To: <7869C6E1-55F9-4028-AE9B-C0ED8044BA48@chrononomicon.com> X-Qmail-Scanner-Message-ID: <115809604867576589@pearl.ibctech.ca> Message-Id: <20060912212057.EF06A43D6B@mx1.FreeBSD.org> Cc: freebsd-questions@freebsd.org Subject: RE: forwarding as a gateway, logging certain traffic X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 12 Sep 2006 21:21:03 -0000 > > There's a kernel option you need to enable for IPFW to do > logging. > > If you're kldload'ing the ipfw module, it probably wasn't compiled > > with IPFW_LOGGING or whatever the exact name is. > > I had set the verbosity (I think that was the parameter) from > googling around earlier, but that doesn't seem to help. I'm > probably missing an option somewhere else. Rebuild your kernel with the following options: options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE=1000 Will have it log up to 1000 entries on a rule that specifies the log option. Alternatively, you can do something like: # ipfw add 100 allow log logamount 50000 .... to override the kernel config log amount. Steve