Date: Thu, 4 Sep 1997 15:58:07 +0400 (MSD) From: ArkanoiD <ark@paranoid.convey.ru> To: pdongre@opentech.stpn.soft.net Cc: firewalls@greatcircle.com, freebsd-security@FreeBSD.ORG, freebsd-hackers@FreeBSD.ORG Subject: Re: log connection attempts? Message-ID: <199709041158.PAA00746@paranoid.convey.ru> In-Reply-To: <340EE174.C45D396F@opentech.stpn.soft.net> from "Prashant Dongre" at Sep 4, 97 11:27:33 am
next in thread | previous in thread | raw e-mail | index | archive | help
nuqneH,
>
> ArkanoiD wrote:
>
> > nuqneH,
> >
> > Did anyone try to patch the kernel to log connection attempts for ports
> > (tcp and maybe udp) where no program accepts connection? (2.1.7)
> >
> > I _know_ i can do nearly the same with IP filtering/logging but i
> > prefer another way..
> >
> > --
> > _ _ _ _ _ _ _
> > {::} {::} {::} CU in Hell _| o |_ | | _|| | / _||_| |_ |_ |_
> > (##) (##) (##) /Arkan#iD |_ o _||_| _||_| / _| | o |_||_||_|
> >
> > [||] [||] [||] Do i believe in Bible? Hell,man,i've seen one!
>
> Have you configured kernel for IPFW (IP Firewall) ?.
>
> IPFW does log connection attempts for the ports which are blocked for a network.
>
> Messages get into /var/log/messages and also displayed on the console.
>
> Prashant
>
No , (btw i use IPFilter,not ipfw), do not want to log blocked packets/
create additional filtering rules etc. As i said i do know how to do that.
I just do not want to. I want to log connection attempts without that.
--
_ _ _ _ _ _ _
{::} {::} {::} CU in Hell _| o |_ | | _|| | / _||_| |_ |_ |_
(##) (##) (##) /Arkan#iD |_ o _||_| _||_| / _| | o |_||_||_|
[||] [||] [||] Do i believe in Bible? Hell,man,i've seen one!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199709041158.PAA00746>