Date: Wed, 05 Oct 2005 11:03:03 +0200 From: =?UTF-8?B?QXJ2aW5uIEzDuGtrZWJha2tlbg==?= <arvinn@sandakerveien.net> To: bu7cher@yandex.ru, freebsd-ipfw@freebsd.org. Subject: Re: limited logging when using limit Message-ID: <434396C7.1000306@sandakerveien.net> In-Reply-To: <4342586C.2000100@yandex.ru> References: <433D1567.7020406@sandakerveien.net> <4342586C.2000100@yandex.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
Andrey V. Elsukov wrote: > Arvinn wrote: > >> ipfw add pipe 5 log tcp from 200.0.0.0/7 to me dst-port 25 limit >> src-addr 2 >> ipfw add allow log tcp from any to me dst-port 25 limit src-addr 10 >> >> All I get in syslog is: >> Sep 30 11:14:40 hostname drop session, too many entries > > > You can try this patch. ipfw will be logging a session drops like > following: > > Oct 4 14:15:44 hostname kernel: ipfw: drop session, too many entries > (by rule 200) Thank you very much. The patch worked like a charm. Is there any easy way to add src-ip/port and dst-ip/port too though? Arvinn
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?434396C7.1000306>