From owner-freebsd-bugs Thu Jul 27 8:23:56 2000 Delivered-To: freebsd-bugs@freebsd.org Received: from mail.rdc1.il.home.com (ha1.rdc1.il.home.com [24.2.1.66]) by hub.freebsd.org (Postfix) with ESMTP id 6EB6637BB43; Thu, 27 Jul 2000 08:23:32 -0700 (PDT) (envelope-from stephen@math.missouri.edu) Received: from math.missouri.edu ([24.12.197.197]) by mail.rdc1.il.home.com (InterMail vM.4.01.03.00 201-229-121) with ESMTP id <20000727152331.LZKN23923.mail.rdc1.il.home.com@math.missouri.edu>; Thu, 27 Jul 2000 08:23:31 -0700 Message-ID: <398053F2.DF9E3C5C@math.missouri.edu> Date: Thu, 27 Jul 2000 10:23:30 -0500 From: Stephen Montgomery-Smith X-Mailer: Mozilla 4.72 [en] (X11; I; Linux 2.2.14 i686) X-Accept-Language: en MIME-Version: 1.0 To: sheldonh@FreeBSD.org Cc: freebsd-bugs@FreeBSD.org Subject: Re: kern/20198: log setup of dynamic rules for ipfw References: <200007271132.EAA88124@freefall.freebsd.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org sheldonh@FreeBSD.org wrote: > > Synopsis: log setup of dynamic rules for ipfw > > Does ``logamount'' (see ipfw(8)) not suit your needs? > > http://www.freebsd.org/cgi/query-pr.cgi?pr=20198 Certainly not. Suppose I have a rule add pass log logamount 10 from any to any 22 keep-state So, there is a new connection xxx:1056 -> yyy:22 Now there is a bunch of traffic between xxx:1056 and yyy:22 which gets logged, which I don't care to log. I only get the first 10 of these. Later there is a new connection zzz:4502 -> www:22 This I would like to log. But because log amount is now filled up, it doesn't get logged. Maybe the counter is meant to be reset when a new dynamic rule is created, but that doesn't seem to be the effect. -- Stephen Montgomery-Smith Department of Mathematics, University of Missouri, Columbia, MO 65211 Phone 573-882-4540, fax 573-882-1869 http://www.math.missouri.edu/~stephen stephen@math.missouri.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message