Date: Mon, 5 Sep 2005 10:21:20 +0200 From: Daniel Hartmeier <daniel@benzedrine.cx> To: Vladimir Kotal <vlada@devnull.cz> Cc: freebsd-pf@freebsd.org Subject: Re: logging to another machine Message-ID: <20050905082120.GD27277@insomnia.benzedrine.cx> In-Reply-To: <20050905080949.GA19145@otaku.xtrmntr.org> References: <431BD7AA.4040300@errno.com> <20050905072630.664053A@gw2.local.net> <20050905080949.GA19145@otaku.xtrmntr.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Sep 05, 2005 at 10:09:49AM +0200, Vladimir Kotal wrote: > So, the following looks like what can be put into /etc/rc* script for your > favorite embedded distribution: > > ifconfig pflog0 up > tcpdump -s 96 -l -e -t -i pflog0 2>/dev/null | \ > logger -p local0.info -t pf & > > It could be nice if pflogd supported logging to syslog directly. It would have to duplicate (or link against, I guess) a lot of code in tcpdump, especially all the protocol-printers if you wanted to add -vvv, and then that code redundancy would have to be kept in sync, etc. One tool for one purpose, right? :) Daniel
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050905082120.GD27277>