Date: Wed, 10 Sep 2003 00:13:52 +1000 From: John Birrell <jb@cimlogic.com.au> To: Wayne Pascoe <freebsd-questions@penguinpowered.org> Cc: John Birrell <jb@cimlogic.com.au> Subject: Re: Logging and IPFW Message-ID: <20030909141352.GE49415@freebsd1.cimlogic.com.au> In-Reply-To: <20030909122218.GA17321@marvin.penguinpowered.org> References: <20030909113447.GB17219@marvin.penguinpowered.org> <20030909114214.GC49415@freebsd1.cimlogic.com.au> <20030909122218.GA17321@marvin.penguinpowered.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Sep 09, 2003 at 01:22:18PM +0100, Wayne Pascoe wrote:
> I tried changing the rc.firewall script so that the last line in the
> CLIENT section read
> ${fwcmd} add 65535 deny ip from any to any log
> but ipfw list still just showd
> 65535 deny ip from any to any log
>
> where should that rule with the log go in the list ? Before the last
> line ?
>
> Should I add a rule before 65535 that logs things ?
The first rule that matches is executed, so if you want it to log you have
to add 'log' to that line (and every other line you want to log). You will
soon find that logging can create huge files and that it is best use sparingly.
--
John Birrell
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030909141352.GE49415>