From owner-freebsd-questions@FreeBSD.ORG Wed Sep 22 01:01:52 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B1CD316A4CE for ; Wed, 22 Sep 2004 01:01:52 +0000 (GMT) Received: from smtp15.wxs.nl (smtp15.wxs.nl [195.121.6.54]) by mx1.FreeBSD.org (Postfix) with ESMTP id C351843D1F for ; Wed, 22 Sep 2004 01:01:51 +0000 (GMT) (envelope-from freebsd@akruijff.dds.nl) Received: from kruij557.speed.planet.nl (ipd50a97ba.speed.planet.nl [213.10.151.186]) by smtp15.wxs.nl (iPlanet Messaging Server 5.2 HotFix 1.25 (built Mar 3 2004)) with ESMTP id <0I4F001G24724K@smtp15.wxs.nl> for freebsd-questions@freebsd.org; Wed, 22 Sep 2004 03:01:50 +0200 (CEST) Received: from alex.lan (localhost [127.0.0.1]) by kruij557.speed.planet.nl (8.12.10/8.12.10) with ESMTP id i8M11m2w070930; Wed, 22 Sep 2004 03:01:48 +0200 Received: (from akruijff@localhost) by alex.lan (8.12.10/8.12.10/Submit) id i8M11ksx070929; Wed, 22 Sep 2004 03:01:46 +0200 Content-return: prohibited Date: Wed, 22 Sep 2004 03:01:46 +0200 From: Alex de Kruijff In-reply-to: <20040920222503.E23065@grog.secure-computing.net> To: Eric F Crist Message-id: <20040922010146.GB990@alex.lan> MIME-version: 1.0 Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Content-disposition: inline User-Agent: Mutt/1.4.2.1i References: <20040920222503.E23065@grog.secure-computing.net> X-Authentication-warning: alex.lan: akruijff set sender to freebsd@akruijff.dds.nl using -f cc: freebsd-questions@freebsd.org Subject: Re: IPFW logging... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 22 Sep 2004 01:01:52 -0000 On Mon, Sep 20, 2004 at 10:27:22PM -0500, Eric F Crist wrote: > Hello all, > > I may no longer be subscribed, as I've had some mail server problems (I > moved), so please reply to me, as well. > > IPFW used to log all entries with the 'log' included in the rule, but > randomely, to me, anyways, stopped doing so. I can't seem to get it to > continue logging. > > Does anyone have any insight? I'm running FreeBSD 4.10 from about 2 > months ago. I'm going to cvsup tonight to see if it helps. what log > files can I check to verify things are working? Thanks. It's an feuture not a bug. I'm three years with FreeBSD and back then you could only have a firewall if you compiled it in. I never had a reason to change this. So i limit my explination tho that. You can control this behavure by changing you kernel configuation file. You proberbly have these lines in you config. You are looking for the last. You may be able to let it continu by changing 100 to 0, but i can't tell. If you do, then make sure you also edit /etc/newsyslog.conf so you don't endup with a large log file. options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=100 -- Alex Articles based on solutions that I use: http://www.kruijff.org/alex/FreeBSD/