ipf not loging (5.2.1)
Dev Tugnait
dev at unixdaemon.org
Tue Apr 27 02:03:27 PDT 2004
Try using ipmon_flags="-Dsn"
ipmon_program="/sbin/ipmon" and the other program flags are not necessary
* John Murphy (jfm at blueyonder.co.uk) wrote:
> I'm stumped. Can't seem to get ipf/ipmon to log to /var/log/ipflog
> (FreeBSD 5.2.1-Release)
>
> In /etc/rc.conf I have:
> ipfilter_enable="YES"
> ipfilter_program="/sbin/ipf"
> ipfilter_rules="/etc/ipf.rules"
> ipfilter_flags=""
>
> ipnat_enable="YES"
> ipnat_program="/sbin/ipnat"
> ipnat_rules="/etc/ipnat.rules"
> ipnat_flags=""
>
> ipmon_enable="YES"
> ipmon_program="/sbin/ipmon"
> ipmon_flags="-D /var/log/ipflog"
>
> The end of dmesg says:
> IP Filter: v3.4.31 initialized. Default = pass all, Logging = enabled
>
> I've touched and chmoded /var/log/ipflog so it looks like:
> -rw-rw-rw- 1 root wheel 0 Apr 26 23:23 /var/log/ipflog
>
> And I've used trafshow to see packets which should be logged but
> /var/log/ipflog remains empty. Any hints welcome.
>
> --
> John.
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
---++---
---------GnuPGPVer 1.2.3--------------------------------------------------
pub 1024D/B9046473 2003-11-21 Dev Tugnait (Freebsd) <dev at unixdaemon.org>
Key fingerprint = F690 6725 1930 6FBE C05A FE4D 6CB1 34C1 B904 6473
sub 1024g/F8F019DF 2003-11-21
--------------------------------------------------------------------------
More information about the freebsd-questions
mailing list