On Tue, 24 Jun 2003, Robert L. Harris wrote:
> Looking at the docs for iptables you can specify log Level (auth,
> crit, etc) but I don't see a way of specifying a "facility" such as
> local1. I'd like to put all my iptables output logs into a specific
> file I can dig through easier than my messages file. Messing with
> loglevels could work but has potential to get very ugly if it makes me
> miss important messages I need otherwise.
There is probably a better way to do this, but I'm using syslog-ng,
along with these lines added to /etc/syslog-ng/syslog-ng.conf
destination iptables { file("/var/log/iptables.log" owner("root")
group("adm") perm(0640)); };
filter f_iptables { match("IN="); };
log { source(src); filter(f_iptables); destination(iptables); };
Works for me, YMMV.
~ Jesse Meyer
--
icq: 34583382 / msn: dasunt@hotmail.com / yim: tsunad
"We are what we pretend to be, so we must be careful about what we
pretend to be." - Kurt Vonnegut Jr : Mother Night
Attachment:
pgpiaAfjXY74N.pgp
Description: PGP signature