You need to DEFINE the log rule. rule123 -j ULOG --ulog-nlgroup 5 --ulog-prefix "LOGGING_BLOCK" rule123 -j DROP # look at the nlgroup = 5 above # netlink multicast group (the same as the iptables --ulog-nlgroup param) nlgroup=5 then, use logemu: # output plugins. plugin="/app/ulogd-1.23/lib/ulogd/ulogd_LOGEMU.so" [LOGEMU] file="/var/log/ulogd-eth0.log" sync=1 On Mon, 11 Sep 2006, Justin F. Knotzke wrote:
On 9/11/06, Justin Piszcz <jpiszcz@lucidpixels.com> wrote:Why not use ulogd? That is its purpose, to "log" iptables logs.Good question, I just installed it. Looking at the ulog config file, it appears that it should be logging to /var/log/ulog/ I see the entries indicating that ulog has started but nothing else.. J -- Justin F. Knotzke jknotzke@shampoo.ca http://www.shampoo.ca