From owner-freebsd-pf@FreeBSD.ORG Tue Mar 6 19:50:32 2007 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 8982A16A400 for ; Tue, 6 Mar 2007 19:50:32 +0000 (UTC) (envelope-from Greg.Hennessy@nviz.net) Received: from smtp.nildram.co.uk (smtp.nildram.co.uk [195.149.33.74]) by mx1.freebsd.org (Postfix) with ESMTP id 5233D13C474 for ; Tue, 6 Mar 2007 19:50:31 +0000 (UTC) (envelope-from Greg.Hennessy@nviz.net) Received: from gw2.local.net (unknown [62.3.210.251]) by smtp.nildram.co.uk (Postfix) with ESMTP id EDC2F4E45F for ; Tue, 6 Mar 2007 19:50:27 +0000 (GMT) From: "Greg Hennessy" To: , References: <20070305043922.qgd8g96zo6jo0g0k@webmail.frontiernet.net> <45EC1DCA.3080001@vwsoft.com> <20070306154119.f54neym2pom8kgo4@webmail.frontiernet.net> In-Reply-To: <20070306154119.f54neym2pom8kgo4@webmail.frontiernet.net> Date: Tue, 6 Mar 2007 19:50:23 -0000 Message-ID: <001801c76028$add9f810$098de830$@Hennessy@nviz.net> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook 12.0 Thread-Index: AcdgCMjnGxsru4NJTsCxWPi404MrBAAHzHuA Content-Language: en-gb X-Antivirus: avast! (VPS 000722-0, 06/03/2007), Outbound message X-Antivirus-Status: Clean Cc: Subject: RE: home router with internal services available question [SOLVED] - followup X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Mar 2007 19:50:32 -0000 > Greg suggested that I do a tcpdump -s 96 -nleti pflog0 to see what was > going on. Do you have pflog_enable="YES" Set in /etc/rc.conf ? Is pflog0 visible as up and running in the output of ifconfig -a ? > > I tried that and got no data captured, not a single entry. > > one of my /etc/rc.conf variables is a pflog_path="/var/log/pflog" > > and that file has data in it, but it is hex data I'm assuming as ascii > tools didn't work to read the file. That's in raw tcpdump packet capture format, you can view the contents using tcpdump with the '-r' rather than the '-I' option. > And I honestly don't know enough here to ask a good question, tcpdump > found the pflog0 interface and warned that no ip address was > configured, something that makes some sense so didn't really concern > me. > > Once again, can you point me in the right direction please. Easily done :-) http://www.openbsd.org/faq/pf/logging.html greg