From owner-freebsd-isp  Mon Jan 14  6:30: 0 2002
Delivered-To: freebsd-isp@freebsd.org
Received: from smtp.kka.com (smtp.kka.com [63.141.65.2])
	by hub.freebsd.org (Postfix) with ESMTP id B5AE537B42F
	for <freebsd-isp@freebsd.org>; Mon, 14 Jan 2002 06:29:38 -0800 (PST)
Subject: Re: tuning syslog.conf
To: freebsd-isp@freebsd.org
X-Mailer: Lotus Notes Release 5.0.8  June 18, 2001
Message-ID: <OFD2BE3ADD.536936DE-ON86256B41.004F1AFD@kka.com>
From: Eric_Stanfield@kenokozie.com
Date: Mon, 14 Jan 2002 08:26:08 -0600
X-MIMETrack: Serialize by Router on Notes1st/Keno(Release 5.0.4 |June 8, 2000) at 01/14/2002
 08:26:15 AM
MIME-Version: 1.0
Content-type: text/plain; charset=us-ascii
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-isp.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-isp>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-isp>
X-Loop: FreeBSD.org


Had the same problems.  The trick was putting ' ' around the -a flag
argument.  ie:

syslog -a '4.13.14.15/27:*'

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

Eric Stanfield, K2Access
Keno Kozie Associates
222 N LaSalle #1500
Chicago, IL 60606
(312) 332-3000




                                                                                          
                    George Lewis                                                          
                    <schvin@schvin.net>        To:     Len Conrad <LConrad@Go2France.com> 
                    Sent by:                   cc:     Freebsd-isp@FreeBSD.ORG            
                    owner-freebsd-isp@F        Subject:     Re: tuning syslog.conf        
                    reeBSD.ORG                                                            
                                                                                          
                                                                                          
                    01/13/2002 09:44 AM                                                   
                                                                                          
                                                                                          



> 2.  For a little ACL, when I add an "allowed peer" option (
> ipaddr/masklen[:service] ) to the above syslog command "-a
> 212.73.210.73/24", the -d output becomes:
>
> # syslogd -d -4 -a 212.73.210.73
> allowaddr: rule 0: numeric, addr = 212.73.210.0, mask = 255.255.255.0;
port
> = 514
> listening on inet and/or inet6 socket
> sending on inet and/or inet6 socket
> off & running....
>
> and all syslog messages from 212.73.210.73 get this treatment:
>
> cvthname(212.73.210.73)
> validate: dgram from IP 212.73.210.73, port 3506, name ms1.meiway.com;
> rejected in rule 0 due to port mismatch.
>
> ok, so we use "-a 212.73.210.73/24:*" and get:
>
> # syslogd -d -4 -a 212.73.210.73:*
> syslogd: No match.
>
> I've been all over man 3 and man 8 for syslogd, syslog, syslcon.conf and
> can't figure out what we're doing wrong in 2., or how to do 1.

Perhaps your shell is expanding the * for you? Have you by chance
tried:

           syslogd -d -4 -a 212.73.210.73:\*

HTH,

George

>
> Thanks
> Len
>
>
> http://MenAndMice.com/DNS-training
> http://BIND8NT.MEIway.com : ISC BIND 8.2.4 for NT4 & W2K
> http://IMGate.MEIway.com  : Build free, hi-perf, anti-abuse mail gateways
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-isp" in the body of the message

--
http://schvin.net/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message