syslogd and netfilter
Joe Patterson
jpatterson@asgardgroup.com
Fri, 26 Oct 2001 17:57:36 -0400
You are, actually, exactly correct. I was wrong about this (this is to
teach me not to tell people how to do something I haven't done myself...)
So, completely ignore everything I said. You can't do it simply, because
all of the log messages are going to come from the kernel.
The next step would be for me to go out on a limb again (see how well I
don't learn from my mistakes?) and suggest a package that I haven't used
yet, but is on my list of cool things to try sometime Real Soon Now...
syslog-ng (http://www.balabit.hu/en/products/syslog-ng/) According to the
documentation, it has the capability to log syslog messages to destinations
based on cool things like regex's.
-Joe
-----Original Message-----
From: netfilter-admin@lists.samba.org
[mailto:netfilter-admin@lists.samba.org]On Behalf Of Justin Michael
Sent: Friday, October 26, 2001 5:47 PM
To: netfilter@lists.samba.org
Subject: Re: syslogd and netfilter
On Fri, Oct 26, 2001 at 11:56:46AM -0400, Joe Patterson wrote:
> you should be able to have something like all of your -j LOG statements
with
> the option --log-level local6,
>
> then in the syslog.conf, have a line like
> local6.* /var/log/netfilter
>
I got the impression --log-level was an integer 0 .. 7 coresponding
to emergency .. debug
--j