* How to log dropped packet ?
@ 2003-07-16 12:14 Jerry Kim
2003-07-16 12:49 ` Ray Leach
0 siblings, 1 reply; 5+ messages in thread
From: Jerry Kim @ 2003-07-16 12:14 UTC (permalink / raw)
To: netfilter
Hi all.
I hope to know how to log dropped/accepted packets.
For example,
iptables -A INPUT -i eth0 -p tcp -d 10.10.10.1 --dport 22 -j ACCEPT
How can I log it ?
I don't understand how '-j LOG' target operate.
Help.
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: How to log dropped packet ?
2003-07-16 12:14 How to log dropped packet ? Jerry Kim
@ 2003-07-16 12:49 ` Ray Leach
2003-07-16 13:22 ` Julien Didron
0 siblings, 1 reply; 5+ messages in thread
From: Ray Leach @ 2003-07-16 12:49 UTC (permalink / raw)
To: Netfilter Mailing List
[-- Attachment #1: Type: text/plain, Size: 716 bytes --]
On Wed, 2003-07-16 at 14:14, Jerry Kim wrote:
> Hi all.
>
> I hope to know how to log dropped/accepted packets.
> For example,
>
Exactly the same except put -j LOG --log-prefix "Accept input eth0"
instead of -j ACCEPT.
Oh, and the log rule must be before the accept/drop rule.
> iptables -A INPUT -i eth0 -p tcp -d 10.10.10.1 --dport 22 -j ACCEPT
>
> How can I log it ?
> I don't understand how '-j LOG' target operate.
>
> Help.
>
--
--
Raymond Leach <raymondl@knowledgefactory.co.za>
Network Support Specialist
http://www.knowledgefactory.co.za
"lynx -source http://www.rchq.co.za/raymondl.asc | gpg --import"
Key fingerprint = 7209 A695 9EE0 E971 A9AD 00EE 8757 EE47 F06F FB28
--
[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 198 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: How to log dropped packet ?
2003-07-16 12:49 ` Ray Leach
@ 2003-07-16 13:22 ` Julien Didron
2003-07-16 14:10 ` Ramin Dousti
2003-07-16 18:20 ` Sven Schuster
0 siblings, 2 replies; 5+ messages in thread
From: Julien Didron @ 2003-07-16 13:22 UTC (permalink / raw)
To: netfilter
Hi all,
I apologize for being a little OT, but has anybody tried to log to another
file than /var/log/syslog when using -j log ? if so, thanks for sharing the
experience ;o)
--
Open WebMail Project (http://openwebmail.org)
---------- Original Message -----------
From: Ray Leach <raymondl@knowledgefactory.co.za>
To: Netfilter Mailing List <netfilter@lists.netfilter.org>
Sent: 16 Jul 2003 14:49:47 +0200
Subject: Re: How to log dropped packet ?
> On Wed, 2003-07-16 at 14:14, Jerry Kim wrote:
> > Hi all.
> >
> > I hope to know how to log dropped/accepted packets.
> > For example,
> >
> Exactly the same except put -j LOG --log-prefix "Accept input eth0"
> instead of -j ACCEPT.
> Oh, and the log rule must be before the accept/drop rule.
>
> > iptables -A INPUT -i eth0 -p tcp -d 10.10.10.1 --dport 22 -j ACCEPT
> >
> > How can I log it ?
> > I don't understand how '-j LOG' target operate.
> >
> > Help.
> >
> --
> --
> Raymond Leach <raymondl@knowledgefactory.co.za>
> Network Support Specialist
> http://www.knowledgefactory.co.za
> "lynx -source http://www.rchq.co.za/raymondl.asc | gpg --import"
> Key fingerprint = 7209 A695 9EE0 E971 A9AD 00EE 8757 EE47 F06F FB28
> --
------- End of Original Message -------
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: How to log dropped packet ?
2003-07-16 13:22 ` Julien Didron
@ 2003-07-16 14:10 ` Ramin Dousti
2003-07-16 18:20 ` Sven Schuster
1 sibling, 0 replies; 5+ messages in thread
From: Ramin Dousti @ 2003-07-16 14:10 UTC (permalink / raw)
To: Julien Didron; +Cc: netfilter
man syslog.conf
man syslogd
also -j LOG --log-level info/alert/debug...
On Wed, Jul 16, 2003 at 01:22:19PM +0000, Julien Didron wrote:
> Hi all,
>
> I apologize for being a little OT, but has anybody tried to log to another
> file than /var/log/syslog when using -j log ? if so, thanks for sharing the
> experience ;o)
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: How to log dropped packet ?
2003-07-16 13:22 ` Julien Didron
2003-07-16 14:10 ` Ramin Dousti
@ 2003-07-16 18:20 ` Sven Schuster
1 sibling, 0 replies; 5+ messages in thread
From: Sven Schuster @ 2003-07-16 18:20 UTC (permalink / raw)
To: Julien Didron; +Cc: netfilter
Hi,
you could take a look at the ULOG target. You'll need the additional
ulogd-package
from http://gnumonks.org/gnumonks/projects . With this you can log
pakets to plain
text files, databases, etc. More information is in the iptables man-Page
and probably
in the ulogd package itself, I haven't used it for some time.
Hope this helps
Sven
Julien Didron wrote:
>Hi all,
>
>I apologize for being a little OT, but has anybody tried to log to another
>file than /var/log/syslog when using -j log ? if so, thanks for sharing the
>experience ;o)
>
>--
>Open WebMail Project (http://openwebmail.org)
>
>
>
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2003-07-16 18:20 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2003-07-16 12:14 How to log dropped packet ? Jerry Kim
2003-07-16 12:49 ` Ray Leach
2003-07-16 13:22 ` Julien Didron
2003-07-16 14:10 ` Ramin Dousti
2003-07-16 18:20 ` Sven Schuster
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.