Date: Sat, 30 May 1998 01:32:31 -0400 (EDT) From: Dima Dorfman <dima@zwb.net> To: wwoods@cybcon.com (William Woods) Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Firewall question.... Message-ID: <199805300532.BAA09236@nwalme.pair.com> In-Reply-To: <356F829A.682A32B2@cybcon.com> from William Woods at "May 29, 98 08:52:58 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
I don't know about /var/log/messages, but it could log to the console (/dev/console). This is done on a per-rule basis. For example, if you have a rule such as: ipfw add 1 deny udp from any to any replace it with iprw add 1 deny log udp from any to any Since thousands of packets pass throught your system (maybe), it will build it quickly. You need to add the following line to your kernel config file: IPFIREWALL_VERBOSE_LIMIT=nnn (replacing nnn with a maximum number of logs before it stops), and rebuild your kernel. Hope this helps :-) > OK, got my firewall up and doing what I want, question though, I would > like to SEE what is blocked and where it is comming from. I have a tail > -f /var/log/messages running in a consol at all times, so is there > anyway to get the firewaill to log all denys on /var/log/messages/? > > -- > William - wwoods@cybcon.com > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > -- Dima Dorfman (dima@zwb.net) "640k ought to be enough for anybody." - Bill Gates, 1981 Micro$oft Sucks! FreeBSD Rules! http://www.freebsd.org/ Finger dima@zwb.net for more information. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199805300532.BAA09236>