Date: Wed, 07 Feb 2001 13:22:50 -0500 From: Bill Moran <wmoran@mail.iowna.com> To: daniel <daniel@pacex.net> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: FreeBSD Logging to track connection problems Message-ID: <3A81927A.9D964FD1@mail.iowna.com> References: <020a01c0912a$2dedff80$f46fbdd1@pacex.net>
next in thread | previous in thread | raw e-mail | index | archive | help
daniel wrote: > I tryed 'Log_In_Vain' but it is obviously not logging everything because the > remote office server user is supposed to talk to does not even show in the > log (/var/log/messages). It's not supposed to log everything. It only logs attempts to connect to ports that the machine doesn't have open. It's mostly used to detect portscanning and other intrusion attempts. > I also tryed logging everything in > /etc/rc.firewall --> open and this does not show session either. > Is there a utility that can log EVERY packet with it's protocol and port > number? Are you saying that you've configured IPFW as an "open" firewall and then modified the open profile in rc.firewall to log ALL packets? And yet it's not logging? What does "ipfw show" report? -Bill To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A81927A.9D964FD1>