From owner-freebsd-questions@FreeBSD.ORG Tue Apr 5 21:45:03 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B16A116A4CE for ; Tue, 5 Apr 2005 21:45:03 +0000 (GMT) Received: from mta11.adelphia.net (mta11.adelphia.net [68.168.78.205]) by mx1.FreeBSD.org (Postfix) with ESMTP id D20F743D4C for ; Tue, 5 Apr 2005 21:45:00 +0000 (GMT) (envelope-from bob@a1poweruser.com) Received: from barbish ([69.172.31.81]) by mta11.adelphia.net (InterMail vM.6.01.04.01 201-2131-118-101-20041129) with SMTP id <20050405214500.RNFM5402.mta11.adelphia.net@barbish>; Tue, 5 Apr 2005 17:45:00 -0400 From: To: "Francis Whittington" Date: Tue, 5 Apr 2005 17:45:00 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: <000801c53a24$4a828ab0$030a000a@CTU> X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 Importance: Normal cc: freebsd-questions@freebsd.org Subject: RE: ipfilter.log X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: bob@a1poweruser.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Apr 2005 21:45:03 -0000 I wrote the official handbook firewall section based on 4.10 release before ipfilter was incorporated into the base of 5.3. You are incorrect to think that what you read in the official handbook is for 5.3 only. I have submitted a change to the handbook to correct it saying that 5.3 uses security.* ipfw also uses security.* that way there are no changes necessary to syslog.conf no mater which firewall you use. -----Original Message----- From: Francis Whittington [mailto:fewjr@adelphia.net] Sent: Tuesday, April 05, 2005 5:13 PM To: bob@a1poweruser.com Cc: freebsd-questions@freebsd.org Subject: Re: ipfilter.log Hi again Bob, I read the ipfilter section of the Official manual for 5.3. Where it talks about adding that line to syslog.conf, (local0.* /var/log/ipfilter.log), well it says to put local0.*. It doesn't mention putting security.*, although it did work for me. I looked through the errata section online and didn't see anything about it there either. At the same time I see that in my syslog.conf file there is already a line that uses security.* /var/log/security. Am I using two logs for the same thing? fewjr/Buddy ----- Original Message ----- From: To: "Francis Whittington" ; Sent: Sunday, April 03, 2005 11:29 PM Subject: RE: ipfilter.log > The answer is very simple. The integration of the open source > ipfilter firewall into FreeBSD has changed between the 4.x releases > and the 5.3 release just made available. If you change the > syslog.conf: > > Local0.* /var/log/ipfilter.log which is how 4.10 > & 4.11 work > > To > > security.* /var/log/ipfilter.log for 5.3 then every > thing will work as documented. > > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Francis > Whittington > Sent: Sunday, April 03, 2005 9:29 PM > To: freebsd-questions@freebsd.org > Subject: ipfilter.log > > Hi guys, > I've been following this guide: > http://www.unixguide.net/freebsd/fbsd_installguide/index.php > So far I have gotten the firewall/router to work. Everything seems > to be okay, except I do not see anything being logged in > ipfilter.log. > I am using ipf.rules and ipnat.rules. I created ipfilter.log in > /var/log/ and I added this line to syslog.conf: > Local0.* /var/log/ipfilter.log > and I added the following line to newsyslog.conf for rotating the > log. > /var/log/ipfilter.log 600 5 100 $M1D0 J > I was wondering if anyone could tell me why I do not get anything in > my ipfilter.log. > > Thanks > fewjr/Buddy > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" >