Date: Tue, 9 Jan 2001 00:22:51 -0800 From: "Crist J. Clark" <cjclark@reflexnet.net> To: blaz <blaz@satx.rr.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ipfw logging Message-ID: <20010109002251.Q95729@rfx-64-6-211-149.users.reflexco> In-Reply-To: <3A5A7C98.F01A8DF0@satx.rr.com>; from blaz@satx.rr.com on Mon, Jan 08, 2001 at 08:51:04PM -0600 References: <3A5A7C98.F01A8DF0@satx.rr.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jan 08, 2001 at 08:51:04PM -0600, blaz wrote:
> greetings, I
>
> i have the following in /etc/syslog.conf:
>
> !ipfw
> *.* /var/log/ipfwlog
>
> when i do some testing to see about logging, when I try
> to ftp from a paticular site to mine (its been blocked), I
> get the response I was looking for in the log file.
>
> When I try to connect to a server like icq, which I
> am blocking at this time, I don't get any ipfw info
> in my log.. same thing with pings which are being
> denied, but not logged.. not sure why this is..
>
> do I need a ipfw statement to log everything?
> if so what would that syntax be? much appreciated.
You need to have 'log' in the rules, like,
${fwcmd} add deny log udp from any to any in via ${oif}
^^^
--
Crist J. Clark cjclark@alum.mit.edu
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010109002251.Q95729>