From owner-freebsd-questions@FreeBSD.ORG Tue Jan 22 16:45:56 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3655016A417 for ; Tue, 22 Jan 2008 16:45:56 +0000 (UTC) (envelope-from zszalbot@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.187]) by mx1.freebsd.org (Postfix) with ESMTP id D9C4D13C44B for ; Tue, 22 Jan 2008 16:45:55 +0000 (UTC) (envelope-from zszalbot@gmail.com) Received: by nf-out-0910.google.com with SMTP id b2so499544nfb.33 for ; Tue, 22 Jan 2008 08:45:54 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=AI40tarDs2wjDDVl5E1Qc1C09Mj2QEpIAFA6zbw7BK8=; b=eIPRcnGLD6RRThfhD3O+JM9APb4Y2VohucvFzJ4brV8/DJ+7/wbOiweXPcllU7Gm1esUZYi4nwMlIMCv04iMZtX5eelwE43M79+QatPDZVFPHlxvmQUrxx718Rm/P9BDBHN2+0HKPY+NMo/6/2BDR/DvVOhThFGcD4uyoN44ClU= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=RNsiIJnl9GsxNBw8NWlQTCEXxUsn/a0uHqCtbR0pefAp3heGo82bzmyOUiKzSfpnVXB8WCchalT4BBAHUilTjE71IEMgCKsBsd2IVEYS4ZeaFRiCF9fZ6tWHDA5cYW1ML8cVBuflEd0pdUH+iX1hadECk5A8CJyUEZcM7OODKY0= Received: by 10.78.100.1 with SMTP id x1mr11526645hub.45.1201020352846; Tue, 22 Jan 2008 08:45:52 -0800 (PST) Received: by 10.78.130.5 with HTTP; Tue, 22 Jan 2008 08:45:52 -0800 (PST) Message-ID: <94136a2c0801220845w6bbf50c9q7ba59052c72e871d@mail.gmail.com> Date: Tue, 22 Jan 2008 17:45:52 +0100 From: "Zbigniew Szalbot" To: "Rakhesh Sasidharan" In-Reply-To: <20080122202158.R45709@dogmatix.home.rakhesh.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <94136a2c0801220259x1b7dd4efw7a8fc1e8a60d2cc9@mail.gmail.com> <20080122202158.R45709@dogmatix.home.rakhesh.com> Cc: freebsd-questions@freebsd.org Subject: Re: pflogd log X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 Jan 2008 16:45:56 -0000 Hello, 2008/1/22, Rakhesh Sasidharan : > > > I noticed that pflog is not being written to. > > > > $ l /var/log/pflog > > -rw-r--r-- 1 root wheel 60 Jan 22 00:00 /var/log/pflog > > > > However, the process running pflogd runs as _pflogd. Does this mean I > > should chown the log file with user _pflogd? > > I don't think so. Had a look at my machine, /var/log/pflog has permissions > like on yours. > > > _pflogd 248 0.0 0.2 1632 1056 ?? S 6:49AM 0:01.31 > > pflogd: [suspended] -s 116 -f /var/log/pflog (pflogd) > > > > To complete the picture: > > > > $ ps aux |grep pf > > root 36 0.0 0.0 0 8 ?? DL 6:49AM 0:01.04 [softdepflush] > > root 246 0.0 0.2 1568 1004 ?? Is 6:49AM 0:00.01 > > pflogd: [priv] (pflogd) > > _pflogd 248 0.0 0.2 1632 1056 ?? S 6:49AM 0:01.32 > > pflogd: [suspended] -s 116 -f /var/log/pflog (pflogd) > > I don't have pflogd: [suspended] though. Its pflogd: [running] for me. > Have you tried restart /etc/rc.d/pflog? Thanks! Need to find out what is going on. Have restarted pflogd but it is still showing suspend for me. Zbigniew Szalbot