From owner-freebsd-questions@FreeBSD.ORG Sat May 14 14:25:41 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 66B7A16A4CE for ; Sat, 14 May 2005 14:25:41 +0000 (GMT) Received: from pne-smtpout1-sn1.fre.skanova.net (pne-smtpout1-sn1.fre.skanova.net [81.228.11.98]) by mx1.FreeBSD.org (Postfix) with ESMTP id 15F4543D69 for ; Sat, 14 May 2005 14:25:41 +0000 (GMT) (envelope-from freebsd@stortsett.se) Received: from kalle.stortsett.local (81.230.166.174) by pne-smtpout1-sn1.fre.skanova.net (7.1.026.7) id 42650A3B00658565; Sat, 14 May 2005 16:20:10 +0200 Received: from kalle.stortsett.local (localhost [127.0.0.1]) by kalle.stortsett.local (Postfix) with ESMTP id 629D8627C; Sat, 14 May 2005 16:20:10 +0200 (CEST) Received: from kalle.stortsett.local (localhost [127.0.0.1]) by kalle.stortsett.local (Postfix) with ESMTP id 0E91261ED; Sat, 14 May 2005 16:20:10 +0200 (CEST) Received: from 192.168.214.1 (proxying for 192.168.214.62) (SquirrelMail authenticated user per) by kalle.stortsett.local with HTTP; Sat, 14 May 2005 16:20:10 +0200 (CEST) Message-ID: <62310.192.168.214.1.1116080410.squirrel@kalle.stortsett.local> In-Reply-To: References: <4285EEDF.4070902@stortsett.se> Date: Sat, 14 May 2005 16:20:10 +0200 (CEST) From: "Per Berger" To: fbsd_user@a1poweruser.com User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 X-Priority: 3 (Normal) Importance: Normal Content-Transfer-Encoding: quoted-printable X-Virus-Scanned: ClamAV using ClamSMTP cc: FreeBSD questions Subject: RE: ipfilter and logging... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 May 2005 14:25:41 -0000 On L=F6, 2005-05-14, 15:00, fbsd_user skrev: > > add security.none to the line for /var/log/messages file to stop > ipfilter from logging to that file. > > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Per Berger > Sent: Saturday, May 14, 2005 8:28 AM > To: FreeBSD questions > Subject: ipfilter and logging... > > > Hi! > > So I've installed ipfilter and ipnat with help from the handbook. It > works great so now my box is connected to my ADSL connection. > > But... (there is always a but...) > > I am confused regarding logging. The handbook says that I can add > "security.*" in syslog.conf and specify a logfile to log the > firewall. > But there is already an entry in syslog.conf "security.*" from > install ( > I am running 5.4-RELEASE upgraded from 5.3 via cvsup (which worked > great > btw...)) pointing at /var/log/security. And all logging goes to > /var/log/security. But at least some of it goes also to > /var/log/messages; seems to be the "final" rules that goes there, > i.e. > such as "block in log first quick on fxp0 all". > > My syslog.conf looks like this: > > " > ... > *.notice;authpriv.none;kern.debug;lpr.info;mail.crit;news.err > /var/log/messages > security.* /var/log/security > ... > " > > (sorry for truncation, hope you get the picture...) > > Now for my question. I do really want a separate log file for > ipfilter. > How would a change syslog.conf to separate out the ipfilter logs > from > the rest without breaking any other logging? Or, at least, how do I > change the line for /var/log/messages so that no ipfilter stuff goes > there without breaking something else? > > Sorry if this is obvious stuff but I've searched for the answer but > is > only getting more confused the more I search... > > > -- > Per Berger > > _ > ASCII ribbon campaign > ( ) > - against HTML, vCards and > X > - proprietary attachments in e-mail > / \ > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > Thanks! That did it! /Per --=20