Feature Request

[Brad Chapman]

Mr. Vallimar,

   This would be a nice feature, but unfortunately, it wouldn't be possible
with the vanilla IPv4/IPv6 LOG target, which uses kernel printk()'s. 
However, I
suppose you could always write a small wrapper that used ULOG and libipulog
that would select a facility and use the userspace syslog(3) call to 
send data
to /var/log/messages (ULOG is a patch-o-matic target which sends packet 
data to
userspace and can be hooked into lots of neat stuff). The only drawback 
I see
is that it would be slow.

Brad

Vallimar wrote:

> Hello all,
> 
> Was wondering if it would be feasible to add in an option to set
> the syslog facility as well as the syslog type.  Currently you have
> the --log-level which is nice for setting the syslog priority, but
> it would be even nice to have a --log-facility that would allow you
> to set a default logging facility as well as per-packet ones.
> 
> Would be nice to set a default facility so I can tell it to use
> LOCAL4 or something and tell syslog to send those to /var/log/firewall
> for example rather then having to grep and filter through 
> /var/log/messages.  I understand being able to set a log prefix
> makes that simple for grepping, but I'd prefer to just be able to dump
> them into their own file.
> 
> I'm not a subscriber to the list, so please cc me with any responses
> you care to make.
> 
> 
> 
> 
>