Log tag
Bill Marquette
bill.marquette at gmail.com
Tue Apr 4 12:01:15 UTC 2006
On 4/4/06, N. Ersen SISECI <siseci at gmail.com> wrote:
>
>
> Hi,
>
> Is it possible to label the log entries?
> We can do it in IPF with set-tag (log=48).
> Is there a similiar method in PF?
>
>
> IPF Rule:
> pass in log first quick on bge0 proto tcp from any to 10.1.2.3 port = 22
> flags S/SA keep state keep frags set-tag (log=110)
>
> IPF Log entry:
> 04/04/2006 09:26:00.982095 bge0 @0:3 p 10.1.2.3,57221 ->
> 192.168.90.12,22 PR tcp len 20 64 -S K-S K-F OUT log-tag 110
The "label" keyword is what you want (and gives you a plain text
description instead of number?!?!?! ouch).
pass in log from foo to bar label "foo to bar rule"
--Bill
More information about the freebsd-pf
mailing list