From owner-freebsd-isp@FreeBSD.ORG Sat May 6 07:30:53 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4B8A816A402 for ; Sat, 6 May 2006 07:30:53 +0000 (UTC) (envelope-from shulik_freebsd@matrixhome.net) Received: from mail.donec.net (ns.donec.net [193.108.38.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id DABBA43D46 for ; Sat, 6 May 2006 07:30:52 +0000 (GMT) (envelope-from shulik_freebsd@matrixhome.net) Received: from [193.108.38.5] (unknown [193.108.38.5]) by mail.donec.net (Postfix) with ESMTP id E1540187571 for ; Sat, 6 May 2006 10:30:50 +0300 (EEST) Message-ID: <445C50A0.2070709@matrixhome.net> Date: Sat, 06 May 2006 10:30:40 +0300 From: Alexander User-Agent: Thunderbird 1.5.0.2 (X11/20060426) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: 7bit Subject: IPFW and syslog X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 06 May 2006 07:30:53 -0000 Hi2all! I have small question about ipfw. I have installed freebsd-6.1-RC2 and configured ipfw on it. Variable net.inet.ip.fw.one_pass set to 0. In firewall rules is present: count, divert and allow/deny. Default rule is deny. Some packets is registered under default rule, but I can't find documentation - how log to syslog packets, that denied in default rules. PS: How can I use one_pass = 1 and use count/divert and filter rules - after using count and divert packet must matching with other rules, but after filter it must be accepted or denied. How I can to it? PPS: Sorry for my english :)