Date: Sat, 06 May 2006 10:46:47 -0300 From: "Tiago N. Sampaio" <tiago@codigobinario.com.br> To: Alexander <shulik_freebsd@matrixhome.net> Cc: freebsd-isp@freebsd.org Subject: Re: IPFW and syslog Message-ID: <445CA8C7.7080507@codigobinario.com.br> In-Reply-To: <445CA23C.3010306@matrixhome.net> References: <445C50A0.2070709@matrixhome.net> <20060506073907.O54242@maildrop.int.zabbadoz.net> <445C6ACB.6020502@matrixhome.net> <20060506103551.S54242@maildrop.int.zabbadoz.net> <445CA23C.3010306@matrixhome.net>
next in thread | previous in thread | raw e-mail | index | archive | help
did you try add deny log ip from any to any? ipfw add 65000 deny log ip from any to any Hugs Tiago N. Sampaio Alexander wrote: > So, I also try ipfw add 99 deny ip from any to any, but got the same > trouble... > > Bjoern A. Zeeb wrote: > >> On Sat, 6 May 2006, Alexander wrote: >> >> >>> Bjoern A. Zeeb wrote: >>> >>>> On Sat, 6 May 2006, Alexander wrote: >>>> >>>> >>>>> Default rule is deny. >>>>> Some packets is registered under default rule, but I can't find >>>>> documentation - how log to syslog packets, that denied in default >>>>> rules. >>>>> >>>> Add the same rule with rule number - 1 and add log statement. >>>> >>>> >>> Gmmmm! I have added rule: ipfw add 1 deny ip from any to any >>> And server dropped all packets... >>> >> Well >> "rule number" (for default rule) - 1 == 65535 - 1 == 65534 >> >> I guess I should have added quotes or braces or the sample. >> >> Sorry for the trouble... >> >> > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?445CA8C7.7080507>