From owner-freebsd-stable Thu Nov 7 11:15:39 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9EE0E37B401 for ; Thu, 7 Nov 2002 11:15:37 -0800 (PST) Received: from zmamail04.zma.compaq.com (zmamail04.zma.compaq.com [161.114.64.104]) by mx1.FreeBSD.org (Postfix) with ESMTP id D790F43E3B for ; Thu, 7 Nov 2002 11:15:36 -0800 (PST) (envelope-from Dewayne.Geraghty@hp.com) Received: from sgpexg11.asiapacific.cpqcorp.net (sgpexg11.asiapacific.cpqcorp.net [16.158.249.63]) by zmamail04.zma.compaq.com (Postfix) with ESMTP id 5953C58A2; Thu, 7 Nov 2002 14:15:35 -0500 (EST) Received: from sgpexb11.asiapacific.cpqcorp.net ([16.158.249.64]) by sgpexg11.asiapacific.cpqcorp.net with Microsoft SMTPSVC(5.0.2195.2966); Fri, 8 Nov 2002 03:15:34 +0800 Received: from snoexb21.asiapacific.cpqcorp.net ([16.176.6.253]) by sgpexb11.asiapacific.cpqcorp.net with Microsoft SMTPSVC(5.0.2195.2966); Fri, 8 Nov 2002 03:15:33 +0800 Received: from SNOEXC01.asiapacific.cpqcorp.net ([16.176.6.251]) by snoexb21.asiapacific.cpqcorp.net with Microsoft SMTPSVC(5.0.2195.2966); Fri, 8 Nov 2002 06:15:31 +1100 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Subject: RE: ipfw and syslog[-ng] X-MimeOLE: Produced By Microsoft Exchange V6.0.6249.0 Date: Fri, 8 Nov 2002 06:15:31 +1100 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: ipfw and syslog[-ng] Thread-Index: AcKFSeD43MIsHGB4TEirOYcUfZzYtQBRsBgQ From: "Geraghty, Dewayne" To: , "Marcus Larsson" Cc: X-OriginalArrivalTime: 07 Nov 2002 19:15:31.0648 (UTC) FILETIME=[0A54EC00:01C28692] Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG And the file that you want to look at is /var/log/security -----Original Message----- From: Mark.Andrews@isc.org [mailto:Mark.Andrews@isc.org] Sent: Wednesday, 6 November 2002 3:06 PM To: Marcus Larsson Cc: freebsd-stable@FreeBSD.ORG Subject: Re: ipfw and syslog[-ng]=20 > =20 > Hi there! I have this really weird problem with a couple of ipfw log > rules. It seems like I can't trust that syslog, nor syslog-ng > actually logs everything it should. >=20 > ipfw -at list shows me for example: > 00899 187 13676 Wed Nov 6 01:43:01 2002 deny log logamount = 10 icm > p from any to any >=20 > But when I tail -f /var/log/ipfw.log the last msg reported was dated = Nov 3 > 08:46:31. >=20 > Am I missing something or what? Yes. You have had 187 hits of which you logged the first 10. >=20 > Kind regards, marcus >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message -- Mark Andrews, Internet Software Consortium 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews@isc.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message