From owner-freebsd-questions Tue Sep 5 22:47:21 2000 Delivered-To: freebsd-questions@freebsd.org Received: from goose.prod.itd.earthlink.net (goose.prod.itd.earthlink.net [207.217.120.18]) by hub.freebsd.org (Postfix) with ESMTP id 1734B37B43E for ; Tue, 5 Sep 2000 22:47:20 -0700 (PDT) Received: from nukemhigh (hybrid-024-221-117-152.phoenix.speedchoice.com [24.221.117.152]) by goose.prod.itd.earthlink.net (8.9.3-EL_1_3/8.9.3) with SMTP id WAA09578 for ; Tue, 5 Sep 2000 22:47:18 -0700 (PDT) Message-Id: <200009060547.WAA09578@goose.prod.itd.earthlink.net> X-Sender: egravel@mail.earthlink.net X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Tue, 05 Sep 2000 22:53:12 -0700 To: freebsd-questions@FreeBSD.ORG From: Emmanuel Gravel Subject: Re: Firewall not logging In-Reply-To: <20000906054118.BC69A44@baddog.yi.org> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Ah! The entry in syslog.conf was what I was missing! Thanks! At 01:41 AM 9/6/00 -0400, Mike Johnson wrote: > >this is just an example >ipfw add 00307 deny log tcp from any to any 111 in recv dc0 >do you have 'log' in the line? and do you have >security.* /var/log/security >in /etc/syslog.conf ? > > >On Tue, 05 Sep 2000, Emmanuel Gravel wrote: >> Date: Tue, 05 Sep 2000 22:40:36 -0700 >> To: freebsd-questions@FreeBSD.ORG >> From: Emmanuel Gravel >> Subject: Firewall not logging >> >> My kernel is compiled with IPFIREWALL_VERBOSE, >> and I have some deny rules which should log. However >> when I check /var/log/messages the file remains untouched >> even when packets arrive that get blocked by the rules. >> >> What am I missing here? I checked the man page for ipfw >> and all seems fine, but it still won't log either to the console >> or to the system logger. >> >> Thanks! >> >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message