Date: Tue, 12 Sep 2006 17:20:22 -0400 From: "Steve Bertrand" <iaccounts@ibctech.ca> To: "'Bart Silverstrim'" <bsilver@chrononomicon.com> Cc: freebsd-questions@freebsd.org Subject: RE: forwarding as a gateway, logging certain traffic Message-ID: <20060912212057.EF06A43D6B@mx1.FreeBSD.org> In-Reply-To: <7869C6E1-55F9-4028-AE9B-C0ED8044BA48@chrononomicon.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> > There's a kernel option you need to enable for IPFW to do > logging. > > If you're kldload'ing the ipfw module, it probably wasn't compiled > > with IPFW_LOGGING or whatever the exact name is. > > I had set the verbosity (I think that was the parameter) from > googling around earlier, but that doesn't seem to help. I'm > probably missing an option somewhere else. Rebuild your kernel with the following options: options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE=1000 Will have it log up to 1000 entries on a rule that specifies the log option. Alternatively, you can do something like: # ipfw add 100 allow log logamount 50000 .... to override the kernel config log amount. Steve
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060912212057.EF06A43D6B>