From owner-freebsd-questions@FreeBSD.ORG  Tue Feb 26 14:42:54 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 369B4106566C
	for <freebsd-questions@freebsd.org>;
	Tue, 26 Feb 2008 14:42:54 +0000 (UTC)
	(envelope-from fbsd.questions@rachie.is-a-geek.net)
Received: from snoogles.rachie.is-a-geek.net (rachie.is-a-geek.net
	[66.230.99.27])
	by mx1.freebsd.org (Postfix) with ESMTP id 07CD213C45A
	for <freebsd-questions@freebsd.org>;
	Tue, 26 Feb 2008 14:42:53 +0000 (UTC)
	(envelope-from fbsd.questions@rachie.is-a-geek.net)
Received: from localhost (localhost [127.0.0.1])
	by snoogles.rachie.is-a-geek.net (Postfix) with ESMTP id DB9EA1CDCC;
	Tue, 26 Feb 2008 05:42:52 -0900 (AKST)
From: Mel <fbsd.questions@rachie.is-a-geek.net>
To: freebsd-questions@freebsd.org
Date: Tue, 26 Feb 2008 15:42:51 +0100
User-Agent: KMail/1.9.7
References: <20080226132032.GA86468@mech-aslap33.men.bris.ac.uk>
	<200802261509.14823.fbsd.questions@rachie.is-a-geek.net>
	<20080226142537.GA87016@mech-aslap33.men.bris.ac.uk>
In-Reply-To: <20080226142537.GA87016@mech-aslap33.men.bris.ac.uk>
MIME-Version: 1.0
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200802261542.52179.fbsd.questions@rachie.is-a-geek.net>
Cc: Anton Shterenlikht <mexas@bristol.ac.uk>
Subject: Re: IPMON log to syslog doesn't work
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 26 Feb 2008 14:42:54 -0000

On Tuesday 26 February 2008 15:25:37 Anton Shterenlikht wrote:
> On Tue, Feb 26, 2008 at 03:09:14PM +0100, Mel wrote:
> > On Tuesday 26 February 2008 14:20:32 Anton Shterenlikht wrote:
> > > I'm trying to troubleshoot my ipfilter firewall, and I cannot get any
> > > log data, i.e. /var/log/ipfilter.log is empty.
> >
> > Does:
> > # logger -p security.notice test
> > put anything in the log?
>
> yes:
>
> # logger -p security.notice test
> # cat /var/log/ipfilter.log
> Feb 26 00:00:00 mech-cluster238 newsyslog[21510]: logfile turned over
> Feb 26 14:17:07 mech-cluster238 mexas: test
> # cat /var/log/security
> Jul 20 10:52:47  newsyslog[463]: logfile first created
> Feb 26 14:17:07 mech-cluster238 mexas: test
> #
>
> so what does this mean?

That syslog works correctly and it's really ipmon. Are you sure it's running? 
How about ipmon -s (without the -D), does that turn up in syslog?


-- 
Mel

Problem with today's modular software: they start with the modules
    and never get to the software part.