From owner-freebsd-ipfw Sat Jan 13 23:20:34 2001 Delivered-To: freebsd-ipfw@freebsd.org Received: from spammie.svbug.com (unknown [198.79.110.2]) by hub.freebsd.org (Postfix) with ESMTP id D417537B401 for ; Sat, 13 Jan 2001 23:20:15 -0800 (PST) Received: from spammie.svbug.com (localhost.mozie.org [127.0.0.1]) by spammie.svbug.com (8.9.3/8.9.3) with ESMTP id XAA00629; Sat, 13 Jan 2001 23:20:10 -0800 (PST) (envelope-from jessem@spammie.svbug.com) Message-Id: <200101140720.XAA00629@spammie.svbug.com> Date: Sat, 13 Jan 2001 23:20:06 -0800 (PST) From: opentrax@email.com Reply-To: opentrax@email.com Subject: Re: logging To: Noah@oopz.com Cc: freebsd-ipfw@FreeBSD.ORG In-Reply-To: MIME-Version: 1.0 Content-Type: TEXT/plain; charset=us-ascii Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On 10 Jan, Noah Davidson wrote: > I am trying to upgrade from FreeBSD 3.4 to FreeBSD 4-2. Basically all I > have going here is a single rule. > > /sbin/ipfw add 500 allow log all from any to any > > This should log every packet as it goes through the box. but in only > logs certain packets. When I kill syslogd it seams to log every packet > as I would expect, but since syslogd is no longer running in just logs > to the console and no where else. When I manually start syslogd the > logging stops again. How can I get ipfw to work and log packets. > Let's go through the steps: 1) does /var/log/ipfw.log exist 2) did you add enter to /etc/syslog.conf 3) did you place compile your kernel with the following: options IPFIREWALL_VERBOSE #print information about # dropped packets options IPFIREWALL_FORWARD #enable transparent proxy support options "IPFIREWALL_VERBOSE_LIMIT=100" #limit verbosity options IPFIREWALL_DEFAULT_TO_ACCEPT #allow everything by default 4) specifically did you set IPFIREWALL_VERBOSE_LIMIT Jessem. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message