From owner-freebsd-questions  Tue Jun 16 03:02:16 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id DAA07641
          for freebsd-questions-outgoing; Tue, 16 Jun 1998 03:02:16 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from ns.cityip.co.za (ns.cityip.co.za [196.25.223.140])
          by hub.freebsd.org (8.8.8/8.8.8) with SMTP id DAA07506
          for <questions@freebsd.org>; Tue, 16 Jun 1998 03:02:02 -0700 (PDT)
          (envelope-from wjv@cityip.co.za)
Received: from wjv by ns.cityip.co.za with local (Exim 1.82 #2)
	id 0ylsYU-0006xH-00; Tue, 16 Jun 1998 12:01:30 +0200
Message-ID: <19980616120130.G26576@cityip.co.za>
Date: Tue, 16 Jun 1998 12:01:30 +0200
From: Johann Visagie <wjv@cityip.co.za>
To: Angel Behar Rodriguez <abehar@mail.pacificnet.com.mx>,
        questions@FreeBSD.ORG
Subject: Re: Log Files...
Mail-Followup-To: Angel Behar Rodriguez <abehar@mail.pacificnet.com.mx>,
	questions@FreeBSD.ORG
References: <Pine.BSF.3.95.980615173444.26614A-100000@mail.pacificnet.com.mx>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.91.1i
In-Reply-To: <Pine.BSF.3.95.980615173444.26614A-100000@mail.pacificnet.com.mx>; from Angel Behar Rodriguez on Mon, Jun 15, 1998 at 05:39:33PM -0600
X-PGP: ftp://ftp.cityip.co.za/users/wjv/pubkey.asc
X-URL: http://www.cityip.co.za/~wjv/
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Mon, 15 Jun 1998 at 17:39 SAT, Angel Behar Rodriguez wrote:
> 
> I have a 2.1.7.1 box and I want to know if I can record every single
> connection to my server.
> 
> I m looking in /var/log directory but I only find for example in messages
> the failed connections but i want to see even the good connections.
> 
> I mean ftp, telnet etc.

There's always more than one way to do it.  I would suggest the following
steps:

- Read syslog.conf(5) in detail, until you understand exactly how to
  configure syslogd.  If the facilities and levels seem confusing in the man
  page, then read up about it in any good book on Unix system administration.

- Read the man pages of the individual daemons (ftpd, etc.) that you wish to
  log to see what they can and cannot tell you (via syslogd).

- If a particular daemon will not provide enough information for your liking,
  then install the tcp_wrappers package and "wrap" the required services
  behind tcpd.  Then read hosts_access(5) to find out how you can get tcpd to
  log just about anything.  You _might_ want to enable the more flexible
  extensions mentioned in hosts_access(5) by compiling tcpd with
  -DPROCESS_OPTIONS.

-- V

Johann Visagie | Email: wjv@CityIP.co.za | Tel: +27 21 419-7878

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message