Date: Wed, 24 Dec 2003 11:48:52 -0800 (PST) From: John Fox Maule <john@fox-maule.dk> To: freebsd-gnats-submit@FreeBSD.org Subject: misc/60549: ipfilter (ipf) logging not working as expected Message-ID: <200312241948.hBOJmqsj060670@www.freebsd.org> Resent-Message-ID: <200312241950.hBOJoOEF008713@freefall.freebsd.org>
index | next in thread | raw e-mail
>Number: 60549
>Category: misc
>Synopsis: ipfilter (ipf) logging not working as expected
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Wed Dec 24 11:50:23 PST 2003
>Closed-Date:
>Last-Modified:
>Originator: John Fox Maule
>Release: 5.2-RC
>Organization:
N/A
>Environment:
FreeBSD nefertiti.fox-maule.dk 5.2-RC FreeBSD 5.2-RC #1: Tue Dec 23 19:27:09 CET 2003 gljohmau@nefertiti.fox-maule
.dk:/usr/obj/usr/src/sys/NEFERTITI i386
>Description:
ipfilter/ipmon not logging at facility local0 (Looks like it logs at facility security because it logs to /var/log/messages).
ipmon running as /sbin/ipmon -Ds
putting like this in /etc/syslog.conf also works
!ipmon
*.* /var/log/ipf.log
Logging format changed ?
Before i was running FreeBSD-4.9 on this box and ipmon would log like this (on a tl interface)
Dec 23 12.14:59 nefertiti ipmon[159]: 12.14.59.424114 tl0 @0:30 etc
Now i reinstalled box as 5.2-RC it logs like this
Dec 23 12.14:59 nefertiti ipmon[159]: 12.14.59.424114 tl03241691170 @0:30 etc (It puts 10 extra numbers after interface name)
>How-To-Repeat:
Kernel config extra
options IPDIVERT
options IPFILTER
options IPFILTER_DEFAULT_BLOCK
options IPFILTER_LOG
options IPSEC
options PERFMON
options PFIL_HOOKS
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200312241948.hBOJmqsj060670>