IPFIREWALL_VERBOSE stopped logging?
Maxim Konovalov
maxim at macomnet.ru
Tue Sep 7 09:08:18 PDT 2004
On Tue, 7 Sep 2004, 08:32-0600, Ryan Sommers wrote:
> I'm trying to figure out why my firewall has stopped logging to
> /var/log/security. The last entry was from Aug 17 and there has been at
> least one restart and a few hundred thousand packets denied.
>
> FreeBSD ***** 5.2.1-RELEASE-p8 FreeBSD 5.2.1-RELEASE-p8 #1: Thu Jul 1
> 18:24:26 CDT 2004 root at moleman:/usr/obj/usr/src/sys/MOLEMAN i386
>
> (root at node15):~:#ipfw list | tail -2
> 03000 deny log tcp from any to any in via xl0 setup
> 65535 deny ip from any to any
>
> (root at node15):~:#sysctl net.inet.ip.fw
> net.inet.ip.fw.enable: 1
> net.inet.ip.fw.autoinc_step: 100
> net.inet.ip.fw.one_pass: 1
> net.inet.ip.fw.debug: 1
> net.inet.ip.fw.verbose: 1
> net.inet.ip.fw.verbose_limit: 0
> (truncated)
>
> (root at node15):~:#grep security /etc/syslog.conf
> security.* /var/log/security
>
> What am I missing?
Previous ipfw rules, 'ipfw sh' instead of 'ipfw list' and a tail of
the /var/log/security :-)
--
Maxim Konovalov
More information about the freebsd-hackers
mailing list