Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 6 Mar 2007 19:50:23 -0000
From:      "Greg Hennessy" <Greg.Hennessy@nviz.net>
To:        <rance@frontiernet.net>, <freebsd-pf@freebsd.org>
Subject:   RE: home router with internal services available question [SOLVED]	- followup
Message-ID:  <001801c76028$add9f810$098de830$@Hennessy@nviz.net>
In-Reply-To: <20070306154119.f54neym2pom8kgo4@webmail.frontiernet.net>
References:  <20070305043922.qgd8g96zo6jo0g0k@webmail.frontiernet.net>	<45EC1DCA.3080001@vwsoft.com> <20070306154119.f54neym2pom8kgo4@webmail.frontiernet.net>

next in thread | previous in thread | raw e-mail | index | archive | help
> Greg suggested that I do a tcpdump -s 96 -nleti pflog0 to see what was
> going on.

Do you have pflog_enable="YES" 

Set in /etc/rc.conf ? Is pflog0 visible as up and running in the output of
ifconfig -a ?

> 
> I tried that and got no data captured, not a single entry.
> 
> one of my /etc/rc.conf variables is a pflog_path="/var/log/pflog"
> 
> and that file has data in it, but it is hex data I'm assuming as ascii
> tools didn't work to read the file.

That's in raw tcpdump packet capture format, you can view the contents using
tcpdump with the '-r' rather than the '-I' option. 

> And I honestly don't know enough here to ask a good question, tcpdump
> found the pflog0 interface and warned that no ip address was
> configured, something that makes some sense so didn't really concern
> me.
> 
> Once again, can you point me in the right direction please.

Easily done :-)

http://www.openbsd.org/faq/pf/logging.html


greg





Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001801c76028$add9f810$098de830$>