From owner-freebsd-questions Tue Oct 16 2: 9:50 2001 Delivered-To: freebsd-questions@freebsd.org Received: from scaup.mail.pas.earthlink.net (scaup.mail.pas.earthlink.net [207.217.121.49]) by hub.freebsd.org (Postfix) with ESMTP id 1BAEC37B401 for ; Tue, 16 Oct 2001 02:09:43 -0700 (PDT) Received: from blossom.cjclark.org (dialup-209.244.104.182.Dial1.SanJose1.Level3.net [209.244.104.182]) by scaup.mail.pas.earthlink.net (EL-8_9_3_3/8.9.3) with ESMTP id CAA25443; Tue, 16 Oct 2001 02:09:40 -0700 (PDT) Received: (from cjc@localhost) by blossom.cjclark.org (8.11.6/8.11.3) id f9G97Xx02975; Tue, 16 Oct 2001 02:07:33 -0700 (PDT) (envelope-from cjc) Date: Tue, 16 Oct 2001 02:07:33 -0700 From: "Crist J. Clark" To: Bjarne Wichmann Petersen Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Firewall not logging Message-ID: <20011016020733.F293@blossom.cjclark.org> Reply-To: cjclark@alum.mit.edu References: <20011016085031.ZUFR22989.fepB.post.tele.dk@there> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20011016085031.ZUFR22989.fepB.post.tele.dk@there>; from mekanix@privat.dk on Tue, Oct 16, 2001 at 10:53:14AM +0200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Tue, Oct 16, 2001 at 10:53:14AM +0200, Bjarne Wichmann Petersen wrote: > My firewall is not logging, /var/log/security is uttlerly empty and have been > for over a month. And I don't get it. AFAIK everything is set up ok, so > anyone got a clue to what I'm missing? [snip] > My firewall: > # Define the firewall command (as in /etc/rc.firewall) for easy > # reference. Helps to make it easier to read. > fwcmd="/sbin/ipfw" > > # Flush > $fwcmd -f flush > > # Allow all data from my network card and localhost. Make sure you > # change your network card (mine was fxp0) before you reboot. :) > $fwcmd add allow ip from any to any via lo0 > $fwcmd add allow ip from any to any via xl0 All traffic is being passed by these two rules. Neither of these rules log. None of the log rules that are below this are ever reached. -- Crist J. Clark | cjclark@alum.mit.edu | cjclark@jhu.edu http://people.freebsd.org/~cjc/ | cjc@freebsd.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message