Date: Fri, 29 Sep 2000 09:08:30 -0500 From: "Charlie Schloemer" <charlie@infoworks.net> To: freebsd-questions@FreeBSD.ORG, Trevor Nichols <data@sb101.org> Subject: Was (none), Now: Re: ipfw accounting script Message-ID: <200009291408.JAA01704@smtp.intop.net> In-Reply-To: <Pine.BSF.4.21.0009291906380.78511-100000@ocdi.sb101.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> Hi, > > I've written an accounting script, and what it does is create various ipfw > rules, gets the bytes in the rule, zero's it after adding the sum to a > file. > > The only problem is this: > > Sep 29 19:06:02 ocdi /kernel: ipfw: Entry 40010 cleared. > Sep 29 19:06:02 ocdi /kernel: ipfw: Entry 40011 cleared. > > Every time I run the update script, it has that. Is there any way to stop > the kernel from logging these? I'd still like to be able to log other > ipfw commands, explicitly with the -l but this is just ipfw 40010 zero, no > -l at all. > > Any ideas? Erm... if security is important enough to you that you've setup some intricate rules, it makes sense you'd also want to know if someone's zeroing your counters for you. This is a feature that could be a security weakness if you disabled it. Why does it cause problems on your system to log this information? -Charlie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200009291408.JAA01704>