From owner-freebsd-stable Wed May 31 7:22:49 2000 Delivered-To: freebsd-stable@freebsd.org Received: from lunatic.oneinsane.net (lunatic.oneinsane.net [207.113.133.231]) by hub.freebsd.org (Postfix) with ESMTP id B156537B812 for ; Wed, 31 May 2000 07:22:44 -0700 (PDT) (envelope-from insane@lunatic.oneinsane.net) Received: by lunatic.oneinsane.net (Postfix, from userid 1000) id E17255DBF; Wed, 31 May 2000 07:22:42 -0700 (PDT) Date: Wed, 31 May 2000 07:22:42 -0700 From: Ron 'The InSaNe One' Rosson To: freebsd-stable@freebsd.org Subject: Re: Logging for ipfilter under 3.4-STABLE April Build Message-ID: <20000531072242.A16064@lunatic.oneinsane.net> Reply-To: Ron Rosson Mail-Followup-To: freebsd-stable@freebsd.org References: <20000530192634.A7881@lunatic.oneinsane.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: ; from oogali@intranova.net on Wed, May 31, 2000 at 01:00:22AM -0400 X-Operating-System: FreeBSD lunatic.oneinsane.net 4.0-STABLE X-Moon: The Moon is Waning Crescent (6% of Full) X-Opinion: What you read here is my IMHO X-Disclaimer: I am a firm believer in RTFM X-WWW: http://www.oneinsane.net X-PGP-KEY: http://www.oneinsane.net/~insane/insane2-pgp5i.txt X-Uptime: 7:13AM up 6 days, 16:16, 3 users, load averages: 0.01, 0.02, 0.01 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Sorry for not mentioning that this is the ipfilter that was in the 3.4-STABLE branch in April. Here is how I start ipfilter and ipmon from my startup script located in /usr/local/etc/rc.d ## IPFilter /sbin/ipf -Fa -f /etc/ipf.conf /usr/sbin/ipmon -sn Yes there is tabs in the entry below for syslog.conf also I made the correction to the syslog.conf that was mentioned in another email. Just in case here are the entries in my Kernel config file. # Enable IPFilter options IPFILTER #kernel ipfilter support options IPFILTER_LOG #ipfilter logging options IPSTEALTH The only option I haven't explored is building ipfilter outside of the base system. The snags to that are that this system at the moment can only run 3.x branch of FreeBSD due to driver support for the ETinc serial adapter. So it does have at least one more cvsup to the "Golden 3.5". I am in a delimma and can use some advice. TIA On Wed, 31 May 2000, Omachonu Ogali was heard blurting out: > Are you running ipmon with the '-s' argument? > > On Tue, 30 May 2000, Ron 'The InSaNe One' Rosson wrote: > > > I have a 3.4-STABLE build of FreeBSD It is currntly running IPFilter to > > protect my network. No matter what I have done I can not get ipmon to > > log to syslog. > > > > Here is what I have in my syslog.conf: > > > > *.notice;kern.debug;lpr.info;mail.crit;news.err;local0.none /var/log/messages > > local0.info;local0.debug /var/log/ipfilter.log > > local0.err /var/log/ipfilter.err > > > > TIA > > -- ------------------------------------------------------------------------------ Ron Rosson ... and a UNIX user said ... The InSaNe One rm -rf * insane@oneinsane.net and all was /dev/null and *void() ------------------------------------------------------------------------------ Heaven and earth regard the ten thousand things as straw dogs, and I feel fine. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message