Date: Mon, 19 Feb 2001 05:28:41 -0800 From: Kent Stewart <kstewart@urx.com> To: wayne.pascoe@realtime.co.uk Cc: freebsd-questions@freebsd.org Subject: Re: ipfw not logging Message-ID: <3A911F89.BAC2B9CC@urx.com> References: <m3r90uhkku.fsf@zaphod.realtime.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
Wayne Pascoe wrote: > > Hi again all, > > I have ipfw setup on my system now. At the moment, I have a fairly > simple script that sets up some very simple rules for testing. > > The script is as follows: > > #!/bin/bash > > FW_CMD=/sbin/ipfw > > $FW_CMD -f flush > $FW_CMD add reject log tcp from any to 192.168.2.253 23 > $FW_CMD add allow ip from any to any > > After executing this script, the output of ipfw l looks like > 00100 unreach host log logamount 30 tcp from any to 192.168.2.253 23 > 00200 allow ip from any to any > 65535 deny ip from any to any > > telnetting to the host is immediately rejected, but nothing is logged. > I added the following lines to my kernel config and rebuilt it. > > # Firewalling Options > options IPFIREWALL > options IPFIREWALL_VERBOSE > options IPFIREWALL_VERBOSE_LIMIT=30 > > I was not getting any log messages on my console, so I added the > following section to /etc/syslog.conf > # IPFW logging > !ipfw > *.* /var/log/ipfw.log > > I touched the logfile and restarted syslog, but nothing is being > logged to that file. > > With ipf you have to run ipmon to log stuff. Is there any similar > utility for ipfw that I am missing? Did you look at /var/log/security. That is where I found my ipfw logs. Kent > > Any help would be appreciated! > > Thanks, > > -- > - Wayne Pascoe > E-mail: wayne.pascoe@realtime.co.uk > Phone : +44 (0) 20 7544 4668 > Mobile: +44 (0) 788 431 1675 > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- Kent Stewart Richland, WA mailto:kbstew99@hotmail.com http://kstewart.urx.com/kstewart/index.html FreeBSD News http://daily.daemonnews.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A911F89.BAC2B9CC>