Re: Can't get iptables LOG
Logging works:
# logger plop
# tail -n 1 /var/log/iptables.log
Feb 22 14:25:05 jfg-pgslave2 root: plop
Like I said in a post before, I setup syslog to log everything in /var/log/iptables :
# grep iptables /etc/syslog.conf
*.* /var/log/iptables.log
Logging do works, but iptables logs nothing, even if it says so:
# iptables -nvL
Chain INPUT (policy ACCEPT 1357 packets, 99309 bytes)
pkts bytes target prot opt in out source destination
826 59659 LOG 0 -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 1870 packets, 240K bytes)
pkts bytes target prot opt in out source destination
2008/2/22, Paolo <oopla@users.sf.net>:
On Fri, Feb 22, 2008 at 11:54:05AM +0100, Laurent Raufaste wrote:
> Hi,
>
> I'm trying to get iptables to LOG on a xen virtual machine, but for
...
> I don't see why it does not work (it works on other boxes) and I don't
xen-vm as well? I'd rather check xen docs on this regard.
Anyway try also to see if the log daemon works, ie try to generate some
auth event (ssh into your vm with wrong uid/pwd) and try logger(1)
directly.
--
paolo
--
To UNSUBSCRIBE, email to debian-firewall-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
--
Laurent Raufaste
<http://www.glop.org/>
Reply to: