Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 07 Feb 2001 13:22:50 -0500
From:      Bill Moran <wmoran@mail.iowna.com>
To:        daniel <daniel@pacex.net>
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: FreeBSD Logging to track connection problems
Message-ID:  <3A81927A.9D964FD1@mail.iowna.com>
References:  <020a01c0912a$2dedff80$f46fbdd1@pacex.net>

next in thread | previous in thread | raw e-mail | index | archive | help
daniel wrote:

> I tryed 'Log_In_Vain' but it is obviously not logging everything because the
> remote office server user is supposed to talk to does not even show in the
> log (/var/log/messages).

It's not supposed to log everything. It only logs attempts to connect to
ports that the machine doesn't have open. It's mostly used to detect
portscanning and other intrusion attempts.

> I also tryed logging everything in
> /etc/rc.firewall --> open and this does not show session either.
> Is there a utility that can log EVERY packet with it's protocol and port
> number?

Are you saying that you've configured IPFW as an "open" firewall and
then modified the open profile in rc.firewall to log ALL packets? And
yet it's not logging?

What does "ipfw show" report?

-Bill


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A81927A.9D964FD1>