From owner-freebsd-questions Sat Feb 19 11:51:55 2000 Delivered-To: freebsd-questions@freebsd.org Received: from vail.net (vail.net [199.45.148.10]) by hub.freebsd.org (Postfix) with ESMTP id F2D2637BB7E for ; Sat, 19 Feb 2000 11:51:50 -0800 (PST) (envelope-from ivanfetch@technologist.com) Received: from gatekeeper.cfcc.com (cfcc.com [204.144.216.251]) by vail.net (8.9.3/8.9.3) with ESMTP id MAA19344; Sat, 19 Feb 2000 12:44:33 -0700 (MST) Received: from ibis.ivanfetch.tzo.com (206.133.170.156 [206.133.170.156]) by gatekeeper.cfcc.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.1960.3) id FB03WKCL; Sat, 19 Feb 2000 12:53:30 -0700 Date: Sat, 19 Feb 2000 12:47:45 -0700 (MST) From: Ivan Fetch X-Sender: ifetch@ibis.ivanfetch.tzo.com To: Gene Harris Cc: Ivan Fetch , freebsd-questions@FreeBSD.ORG Subject: Re: Can ipfw log to somewhere else other than the console? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello, On Sat, 19 Feb 2000, Gene Harris wrote: > syslog.conf is your friend. Yes. >ipfw logs through the > kernel.info and higher. I added the following to /etc/syslog.conf prior to writing my previous message, and restarted syslog: *.* root Logging in as root and entering: ipfw add deny log logamount 100 all from ip_address to any Then, when generating trafic with that IP address - although the trafic was denied - I got nothing on the terminal (although I got plenty of other syslog stuff). Any ideas? >you can also direct ipfw logging to > a differenet file via syslog, with a line similar to the > following in your syslog.conf file: > > !ipfw > *.* /var/log/ipfw.log Would this log only ipfw related stuff or everything which comes through syslog? Thank You, Ivan. > > On Sat, 19 Feb 2000, Ivan Fetch wrote: > > > Hi, > > I have looked through the ipfw manual page with out luck - I would like > > to have packet logging written to somewhere other than the console and > > this does not seem to be possible. FOr example's sake: > > ipfw add 301 deny log all from badpeople.org to any > > > > I would like results of that rule to go into a file vs. the > > console. Nothing seems to be sent to syslog at all - Is it possible to > > change this behavior? > > Again, you need to look at your syslog.conf file. > kernel.info and above is the logging facility/level that > ipfw writes to. > > > > > Thank YOu, > > Ivan. > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > *==============================================* > *Gene Harris http://www.tetronsoftware.com* > * Home of TeamAccess version control for * > * Microsoft Office 97 and 2000 * > * FreeBSD 3.4-STABLE - The Power to Serve * > * Redhat 6.1 Secure Web Server * > *==============================================* > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message