From owner-freebsd-questions  Fri Jan  7  7:36: 7 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from cc942873-a.ewndsr1.nj.home.com (cc942873-a.ewndsr1.nj.home.com [24.2.89.207])
	by hub.freebsd.org (Postfix) with ESMTP id D13C014F50
	for <freebsd-questions@FreeBSD.ORG>; Fri,  7 Jan 2000 07:36:04 -0800 (PST)
	(envelope-from cjc@cc942873-a.ewndsr1.nj.home.com)
Received: (from cjc@localhost)
	by cc942873-a.ewndsr1.nj.home.com (8.9.3/8.9.3) id KAA23276;
	Fri, 7 Jan 2000 10:40:34 -0500 (EST)
	(envelope-from cjc)
From: "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com>
Message-Id: <200001071540.KAA23276@cc942873-a.ewndsr1.nj.home.com>
Subject: Re: can't get syslogd to accept remote datagrams
In-Reply-To: <XFMail.20000107094648.julian.dunn@matrox.com> from "Julian C. Dunn" at "Jan 7, 2000 09:46:48 am"
To: julian.dunn@Matrox.COM (Julian C. Dunn)
Date: Fri, 7 Jan 2000 10:40:34 -0500 (EST)
Cc: freebsd-questions@FreeBSD.ORG
Reply-To: cjclark@home.com
X-Mailer: ELM [version 2.4ME+ PL54 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Julian C. Dunn wrote,
> I can't get syslogd to accept remote messages when I restrict authorized hosts
> with the "-a" switch. I really only have one host from which I need to log
> datagrams, which has an IP of 192.168.5.5. I tried the following:
> 
> syslogd -a 192.168.5.5/255.255.255.0
> syslogd -a 192.168.5.0/255.255.255.0
> syslogd -a 192.168.5.255/255.255.255.0
> 
> and I turned on UDP-log-in-vain using sysctl, so all I get is
> 
> Jan  6 21:53:53 aquarius /kernel: Connection attempt to UDP 192.168.5.6:514
> from 192.168.5.5:514
> Jan  6 21:53:53 aquarius last message repeated 6 times
> 
> and the like. Can anyone help? Am I mis-interpreting the mask? I already tried
> 0.0.0.255 as the mask, but then, while I don't get any log-in-vain messages, I
> get nothing in /var/log/messages when a datagram is sent from the remote
> machine.

% man syslogd
             .
             .
             .
             ipaddr/masklen[:service]    Accept datagrams from ipaddr (in the
                                         usual dotted quad notation) with
                                         masklen bits being taken into account
                                         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
                                         when doing the address comparision.
             .
             .
             .

To get the effect of masking to a class C, you would want,

# syslogd -a 192.168.5.0/24

However, if you simply did,

# syslogd -a 192.168.5.0

It should work since the manpage continues,


                                                                          A
                                         missing masklen will be substituted
                                         by the historic class A or class B
                                         netmasks if ipaddr belongs into the
                                         address range of class A or B, re-
                                         spectively, or by 24 otherwise.

And 192.168.5.0 is a historic class C.

...At least this is what the docs say; I've never used the syslogd
disk-filling utility over a network.
-- 
Crist J. Clark                           cjclark@home.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message