Date: Mon, 14 Oct 2002 14:58:50 -0700 (PDT) From: Mike Hoskins <mike@adept.org> To: freebsd-security@freebsd.org Subject: Re: FW: monitor ALL connections to ALL ports Message-ID: <20021014145602.K1231-100000@fubar.adept.org> In-Reply-To: <NGBBIILBAKIFGHHCHOHPOEODFJAA.maildrop@qwest.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 14 Oct 2002, Maildrop wrote: > I put these rule in: > ipfw add count log all from any to any Is this rule before the other allow rules in your chain? Since the rule chain is parsed on a first-match basis, you'll either need this rule before all others or you'll need to add log entires to each of your other rules. > security.* /var/log/security By default, this logs anything dumped to syslog by ipfw via the log keyword. I think you're just being bitten by rule order. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021014145602.K1231-100000>