IPFIREWALL_VERBOSE_LIMIT ignored by recent kernel/world?
Dan Pelleg
daniel+bsd at pelleg.org
Sun Jul 4 05:05:00 PDT 2004
I have a patch for that in kern/46080. Note I haven't tested it in a while
http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/46080
--
Dan Pelleg
"JJB" <Barbish3 at adelphia.net> writes:
> Verbose limit is a sysctl knob now, you can display it to see
> current setting or change it without a reboot. Check your
> newsyslog.conf file to very the rotate trigger is the same as you
> were using before.
>
> -----Original Message-----
> From: owner-freebsd-questions at freebsd.org
> [mailto:owner-freebsd-questions at freebsd.org]On Behalf Of Rob
> Sent: Sunday, July 04, 2004 12:37 AM
> To: freebsd-stable at freebsd.org; freebsd-questions at freebsd.org
> Subject: IPFIREWALL_VERBOSE_LIMIT ignored by recent kernel/world?
>
>
> Hello,
>
> I have one PC with updated kernel/world from June 25th, and another
> from June 10th,
> all with sources for STABLE.
>
> Both PCs have a firewall. Neither of the two seems to obey the
> verbose limit of 100,
> that I put in the kernel configuration file.
>
> In the past, /var/log/secure used to rotate once a week or so, but
> now it does in
> less than 30 minutes due to the overwhelming amount of firewall
> logs.
>
> The kernel configuration has following lines, related to the
> firewall:
>
> options IPDIVERT
> options IPFW2 # version 2 IPFW
> options IPFIREWALL # firewall
> options IPFIREWALL_VERBOSE # enable logging to
> syslogd(8)
> options IPFIREWALL_VERBOSE_LIMIT=100 # limit verbosity
> options IPFIREWALL_DEFAULT_TO_ACCEPT # allow everything by
> default
>
> and I have in /etc/make.conf:
>
> IPFW2=TRUE
>
>
> Any idea what is going wrong here?
>
> Thanks,
> Rob.
>
>
More information about the freebsd-ipfw
mailing list