From owner-freebsd-stable@FreeBSD.ORG Sun Jul 4 12:05:00 2004 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0276316A4CE; Sun, 4 Jul 2004 12:05:00 +0000 (GMT) Received: from gw.pelleg.org (gw.pelleg.org [205.201.13.235]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3C51D43D31; Sun, 4 Jul 2004 12:04:59 +0000 (GMT) (envelope-from daniel+bsd@pelleg.org) Received: from lank.here (lank.wburn [192.168.3.41]) by gw.pelleg.org (Postfix) with ESMTP id C0A045A53; Sun, 4 Jul 2004 08:04:56 -0400 (EDT) Received: by lank.here (Postfix, from userid 7675) id E6AE5509; Sun, 4 Jul 2004 08:04:53 -0400 (EDT) To: Barbish3@adelphia.net References: From: Dan Pelleg Date: Sun, 04 Jul 2004 08:04:53 -0400 In-Reply-To: (JJB's message of "Sun, 4 Jul 2004 07:50:25 -0400") Message-ID: User-Agent: Gnus/5.1002 (Gnus v5.10.2) XEmacs/21.1 (Cuyahoga Valley, berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: freebsd-stable@freebsd.org cc: Rob cc: freebsd-ipfw@freebsd.org Subject: Re: IPFIREWALL_VERBOSE_LIMIT ignored by recent kernel/world? X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 04 Jul 2004 12:05:00 -0000 I have a patch for that in kern/46080. Note I haven't tested it in a while http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/46080 -- Dan Pelleg "JJB" writes: > Verbose limit is a sysctl knob now, you can display it to see > current setting or change it without a reboot. Check your > newsyslog.conf file to very the rotate trigger is the same as you > were using before. > > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Rob > Sent: Sunday, July 04, 2004 12:37 AM > To: freebsd-stable@freebsd.org; freebsd-questions@freebsd.org > Subject: IPFIREWALL_VERBOSE_LIMIT ignored by recent kernel/world? > > > Hello, > > I have one PC with updated kernel/world from June 25th, and another > from June 10th, > all with sources for STABLE. > > Both PCs have a firewall. Neither of the two seems to obey the > verbose limit of 100, > that I put in the kernel configuration file. > > In the past, /var/log/secure used to rotate once a week or so, but > now it does in > less than 30 minutes due to the overwhelming amount of firewall > logs. > > The kernel configuration has following lines, related to the > firewall: > > options IPDIVERT > options IPFW2 # version 2 IPFW > options IPFIREWALL # firewall > options IPFIREWALL_VERBOSE # enable logging to > syslogd(8) > options IPFIREWALL_VERBOSE_LIMIT=100 # limit verbosity > options IPFIREWALL_DEFAULT_TO_ACCEPT # allow everything by > default > > and I have in /etc/make.conf: > > IPFW2=TRUE > > > Any idea what is going wrong here? > > Thanks, > Rob. > >