Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 16 Oct 2002 11:48:03 +0200
From:      <Danny.Carroll@mail.ing.nl>
To:        <freebsd-questions@freebsd.org>
Subject:   FW: FW: monitor ALL connections to ALL ports
Message-ID:  <C6304883FB11E347AD4958D3F14EC00AE89358@ing.com>
index | next in thread | raw e-mail 

[-- Attachment #1 --]


-----Original Message-----
From: Peter Pentchev [mailto:roam@ringlet.net]
Sent: 16 October 2002 11:37
To: Carroll, D. (Danny)
Cc: maildrop@qwest.net; freebsd-security@freebsd.org
Subject: Re: FW: monitor ALL connections to ALL ports


On Wed, Oct 16, 2002 at 10:48:01AM +0200, Danny.Carroll@mail.ing.nl wrote:
> Something else you could do, if you want to put the effort into it is
> to write a program that accepts all packets from ipfw (via a divert
> rule) and then logs what you want before returning the untouched
> packed back to ipfw.
> 
> Much like what natd does, except without the natting.
> I am sure the natd sources would be very useful in this case.

I am a bit surprised that nobody has mentioned ports/net/clog yet.
It is simple yet effective; it does not log UDP packets, but this
functionality may not be too hard to add.

G'luck,
Peter

-- 
Peter Pentchev	roam@ringlet.net	roam@FreeBSD.org
PGP key:	http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint	FDBA FD79 C26F 3C51 C95E  DF9E ED18 B68D 1619 4553
This sentence every third, but it still comprehensible.
-----------------------------------------------------------------
ATTENTION:
The information in this electronic mail message is private and
confidential, and only intended for the addressee. Should you
receive this message by mistake, you are hereby notified that
any disclosure, reproduction, distribution or use of this
message is strictly prohibited. Please inform the sender by
reply transmission and delete the message without copying or
opening it.

Messages and attachments are scanned for all viruses known.
If this message contains password-protected attachments, the
files have NOT been scanned for viruses by the ING mail domain.
Always scan attachments before opening them.
-----------------------------------------------------------------

[-- Attachment #2 --]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.0 (FreeBSD)

iD8DBQE9rTNL7Ri2jRYZRVMRAranAJwMca/ePOz/60K9qnn7HAuSZKq3cACfXqB3
kH1yH22Ybj3Rpr0p0xbBQMs=
=45Kg
-----END PGP SIGNATURE-----
help

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?C6304883FB11E347AD4958D3F14EC00AE89358>