Re: Firewall Logs on Dialup Server
On Fri, Apr 18, 2003 at 03:19:34PM +0200, Emmanuel Lacour wrote:
> On Fri, Apr 18, 2003 at 12:54:19PM +0200, Juerg Schneider wrote:
> > On Freitag, 18. April 2003 11.16, Horst Pflugstaedt wrote:
> > > Hi
> > >
> > > I tried my logging rules with '--log-prefix "IPTables DROP:"'
> > > and use syslog-ng to filter them. If you google for iptables
> > > and syslog-ng there's some more help.
> > > What _I_ didn't figure out is, how to stop iptables from
> > > logging to standard-out;M syslog-ng seems only to additionally
> > > write it to my specified file.
> >
> > Right, this is done by klogd.
> >
> > man klogd
> >
>
> I typically add "-c 4" in KLOGD (/etc/init.d/klogd) to avoid the
> iptables logging to console.
thanks a lot for all your help.
I tried again with 'man iptables' and found an extra option:
--log-level level
since I do not want to stop other messages with priority 4 (warning)
from apearing on my console I needed to find other means to help me.
'--log-level debug' in my iptables-logging-rules seems to become my
friend. (you may find the log-levels and their numeric values in
/usr/include/linux/kernel.h)
with best regards
Horst.
>
--
Have you noticed the way people's intelligence capabilities decline
sharply the minute they start waving guns around?
-- Dr. Who
Reply to: