syslog-conf ?? (Re: no LOG-Entries at all !! :-()
Marcus Rapp
marcus.rapp@twest.com
Mon, 17 Apr 2000 17:34:26 +0200
Thank you .. it works now ..
The problem was, that you need a destination set, to log.
but now i have anther problem :
I want wo get the Firewall-Logs in an extra-file .. i managed, that
every kernel-message is logges into /var/log/kernel, by adding
"kern.* /var/log/kernel" to /etc/syslog.conf
but what do i have to set, if i only want to log the firewall-logs in an
extra-file ?
thx
Marcus
Claes Ström schrieb:
>
> I have played with it today and got it into my /var/log/messages!
>
> I have the same things running on my machine as you (except that I run
> RH6.1)
>
> First of all I load EVERY NF-module (except ipchains.o and ipfwadm.o)
> I have tried many times with different versions to get it in a static
> kernal, but with no luck :-(
>
> Here is my variant of Rusty´s "Realy Quick Guide" example (with logging
> and eth0 instead of ppp0)
>
> # Create chain which blocks new connections, except if coming from
> inside.
> iptables -N block
> iptables -A block -m state --state ESTABLISHED,RELATED -j ACCEPT
> iptables -A block -m state --state NEW -i ! eth0 -j ACCEPT
> iptables -A block -d! 255.255.255.255 -j LOG --log-prefix "NF-Drop! "
> iptables -A block -j DROP
>
> # Jump to that chain from INPUT and FORWARD chains.
> iptables -A INPUT -j block
> iptables -A FORWARD -j block
>
> Hopes it works for you to!
> /Claes
--
Marcus Rapp
___________________________________________________________________
>> go twest - be twested with interactive applications on demand <<
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
eMail : marcus.rapp@twest.com
www : http://www.twest.com
TWEST.COM
Viktualienmarkt 5
D - 80331 Muenchen
Phone : +49(89)242250-338
Fax : +49(89)242250-340