Date: Sun, 7 Mar 2004 05:14:11 -0800 From: Luigi Rizzo <rizzo@icir.org> To: Uwe Kolsch <ukolsch@gmx.net> Cc: freebsd-ipfw@freebsd.org Subject: Re: logging and dynamic rules Message-ID: <20040307051411.B74559@xorpc.icir.org> In-Reply-To: <00e701c40444$63d3ab00$cc06a8c0@wax.local>; from ukolsch@gmx.net on Sun, Mar 07, 2004 at 01:02:04PM -0000 References: <00e701c40444$63d3ab00$cc06a8c0@wax.local>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Mar 07, 2004 at 01:02:04PM -0000, Uwe Kolsch wrote: > Hi, > > I've set up ipfw2 on 5.2.1 like follows. > > add 1000 check-state > #allow ssh traffic from any to any > add 2022 allow log tcp from any to any 22 in setup keep-state > > This results in every packet of any ssh connection getting logged, not > really what I want. I would like to get only the initiation of a ssh > connection into the logfile. Without dynamic rules I would just deal i guess your best option is to do this: add 2022 count log tcp from any to any 22 in setup add 2022 allow tcp from any to any 22 in setup keep-state cheers luigi > with packages of an established connection without logging, but log any > request to port 22. Is there any way to achieve this with dynamic rules > too. > > Thanks, > > Hans Hunger > _______________________________________________ > freebsd-ipfw@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw > To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040307051411.B74559>