ipfilter.log

bob at a1poweruser.com bob at a1poweruser.com
Tue Apr 5 14:45:03 PDT 2005 

I wrote the official handbook firewall section based on 4.10 release
before ipfilter was incorporated into the base of 5.3. You are
incorrect to think that what you read in the official handbook is
for 5.3 only. I have submitted a change to the handbook to correct
it saying that 5.3 uses security.*       ipfw also uses security.*
that way there are no changes necessary to syslog.conf no mater
which firewall you use.

-----Original Message-----
From: Francis Whittington [mailto:fewjr at adelphia.net]
Sent: Tuesday, April 05, 2005 5:13 PM
To: bob at a1poweruser.com
Cc: freebsd-questions at freebsd.org
Subject: Re: ipfilter.log

Hi again Bob,
    I read the ipfilter section of the Official manual for 5.3.
Where it
talks about adding that line to syslog.conf,
(local0.*  /var/log/ipfilter.log), well it says to put local0.*. It
doesn't
mention putting security.*, although it did work for me. I looked
through
the errata section online and didn't see anything about it there
either. At
the same time I see that in my syslog.conf file there is already a
line that
uses security.*  /var/log/security. Am I using two logs for the same
thing?

                                                    fewjr/Buddy
----- Original Message -----
From: <bob at a1poweruser.com>
To: "Francis Whittington" <fewjr at adelphia.net>;
<freebsd-questions at freebsd.org>
Sent: Sunday, April 03, 2005 11:29 PM
Subject: RE: ipfilter.log


> The answer is very simple. The integration of the open source
> ipfilter firewall into FreeBSD has changed between the 4.x
releases
> and the 5.3 release just made available. If you change the
> syslog.conf:
>
> Local0.*           /var/log/ipfilter.log          which is how
4.10
> & 4.11  work
>
> To
>
> security.*        /var/log/ipfilter.log        for 5.3 then every
> thing will work as documented.
>
> -----Original Message-----
> From: owner-freebsd-questions at freebsd.org
> [mailto:owner-freebsd-questions at freebsd.org]On Behalf Of Francis
> Whittington
> Sent: Sunday, April 03, 2005 9:29 PM
> To: freebsd-questions at freebsd.org
> Subject: ipfilter.log
>
> Hi guys,
>    I've been following this guide:
> http://www.unixguide.net/freebsd/fbsd_installguide/index.php
> So far I have gotten the firewall/router to work. Everything seems
> to be okay, except I do not see anything being logged in
> ipfilter.log.
> I am using ipf.rules and ipnat.rules. I created ipfilter.log in
> /var/log/ and I added this line to syslog.conf:
>    Local0.* /var/log/ipfilter.log
> and I added the following line to newsyslog.conf for rotating the
> log.
> /var/log/ipfilter.log       600  5      100     $M1D0  J
> I was wondering if anyone could tell me why I do not get anything
in
> my ipfilter.log.
>
>                                                       Thanks
>                                                      fewjr/Buddy
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"
>

More information about the freebsd-questions mailing list