Date: Fri, 1 Apr 2005 22:32:38 +0200 From: Danny Pansters <danny@ricin.com> To: freebsd-questions@freebsd.org Subject: Re: ipmon logging Message-ID: <200504012232.38210.danny@ricin.com> In-Reply-To: <040120051850.5087.424D97F3000D1BDB000013DF2205889116CFCFCECC0D9CCD9C0E@comcast.net> References: <040120051850.5087.424D97F3000D1BDB000013DF2205889116CFCFCECC0D9CCD9C0E@comcast.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Friday 01 April 2005 20:50, as2sb3100@comcast.net wrote: > According to every website I've read so far ipmon uses local0 as the > facility name. However, on my FreeBSD 5.3-RELEASE-p5 box, it logs to the > security facility. The man page (in both 5.2.1 and 5.3) for ipmon, with = =2Ds > for logging to syslog says, "The default facility when compiled and > installed is security". Can anyone explain this? I'd like ipmon to log = to > a separate file so it doesn't fill up the security log. I've tried having > ipmon log directly to a file, and not using syslog, but it stops logging > when newsyslog rotates the file. Does anyone have any suggestions on what > I could or should do? =46rom /etc/defaults/rc.conf: ipmon_flags=3D"-Ds" # typically "-Ds" or "-D /var/log/ipflog" So use ipmon_flags=3D"-D /var/log/ipmon" or so in your /etc/rc.conf. It's=20 sensible to have a seperate ipf logfile. HTH, Dan
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200504012232.38210.danny>