Date: Fri, 01 Mar 2002 13:36:10 +1100 From: Mark.Andrews@isc.org To: "Christian Gielstrup" <lists@gielstrup.dk> Cc: freebsd-security@freebsd.org Subject: Re: resolve ipaddr and ports in logs Message-ID: <200203010236.g212aA104411@drugs.dv.isc.org> In-Reply-To: Your message of "Fri, 01 Mar 2002 03:09:22 BST." <004b01c1c0c6$1b413380$7800000a@gielstrup.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
> Greetings from Denmark.. > > Is it possible to have the ipaddresses and ports resolved on the rules = > that are logged? > I mean simular to the output produced by ipfw -N s > > E.g every connection reaching to my last reachable rule (/sbin/ipfw a = > 999 deny l a f a t a). (Default 65535 rule is missing the log option) > It would be nice if ip's and ports could be resolved into names, via = > DNS, host file and the services file. > I realize the extra load this could give a fw under "attack", but who = > isn`t limiting the log amount. You want the kernel to perform DNS lookups for you? Just post process the logs if you want this information. Mark > > Best regards, > > Christian > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message -- Mark Andrews, Internet Software Consortium 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews@isc.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200203010236.g212aA104411>