From owner-freebsd-questions@FreeBSD.ORG Sat May 14 13:00:20 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6FFCA16A4CE for ; Sat, 14 May 2005 13:00:20 +0000 (GMT) Received: from mta11.adelphia.net (mta11.adelphia.net [68.168.78.205]) by mx1.FreeBSD.org (Postfix) with ESMTP id C09F543D69 for ; Sat, 14 May 2005 13:00:19 +0000 (GMT) (envelope-from fbsd_user@a1poweruser.com) Received: from barbish ([69.172.31.81]) by mta11.adelphia.net (InterMail vM.6.01.04.01 201-2131-118-101-20041129) with SMTP id <20050514130018.EPOW13270.mta11.adelphia.net@barbish>; Sat, 14 May 2005 09:00:18 -0400 From: "fbsd_user" To: "Per Berger" , "FreeBSD questions" Date: Sat, 14 May 2005 09:00:12 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: <4285EEDF.4070902@stortsett.se> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 Importance: Normal Subject: RE: ipfilter and logging... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: fbsd_user@a1poweruser.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 May 2005 13:00:20 -0000 add security.none to the line for /var/log/messages file to stop ipfilter from logging to that file. -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Per Berger Sent: Saturday, May 14, 2005 8:28 AM To: FreeBSD questions Subject: ipfilter and logging... Hi! So I've installed ipfilter and ipnat with help from the handbook. It works great so now my box is connected to my ADSL connection. But... (there is always a but...) I am confused regarding logging. The handbook says that I can add "security.*" in syslog.conf and specify a logfile to log the firewall. But there is already an entry in syslog.conf "security.*" from install ( I am running 5.4-RELEASE upgraded from 5.3 via cvsup (which worked great btw...)) pointing at /var/log/security. And all logging goes to /var/log/security. But at least some of it goes also to /var/log/messages; seems to be the "final" rules that goes there, i.e. such as "block in log first quick on fxp0 all". My syslog.conf looks like this: " ... *.notice;authpriv.none;kern.debug;lpr.info;mail.crit;news.err /var/log/messages security.* /var/log/security ... " (sorry for truncation, hope you get the picture...) Now for my question. I do really want a separate log file for ipfilter. How would a change syslog.conf to separate out the ipfilter logs from the rest without breaking any other logging? Or, at least, how do I change the line for /var/log/messages so that no ipfilter stuff goes there without breaking something else? Sorry if this is obvious stuff but I've searched for the answer but is only getting more confused the more I search... -- Per Berger _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \ _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"