Hi, A workaround to this problem is writing a simple script which periodically checks /var/log/messages, cuts lines related to iptables and then puts them in your favorite path, e.g. /var/log/iptables. Another way is replacing classic syslogd with syslong-ng which has filtering capabilities.
However, if you want to analyze iptables logs, you can user a high level iptables log analyzer like http://www.gege.org/iptables/ Regards, --- John Joseph <[EMAIL PROTECTED]> wrote: > > > Hi > I want to log iptables to a file > /var/log/iptables > > I did some changes in /etc/syslog.conf > iptables.* /var/log/iptables > > My intention is to log all the packets which has > destination 192.168.20.240 and marked wit 1 > > I have given this command > > iptables -t mangle -A PREROUTING -d 192.168.6.240 -j > MARK --set-mark 1 > iptables -t mangle -A POSTROUTING -j LOG > > Now after restarting service sylog , I am not > able > to get the logs in /var/log/iptables > > But I can see them in /var/log/messages and dmesg > > What should I do , for the log files to be > copied to “/var/log/iptables” ? > Thanks > Joseph John > > > > > ___________________________________________________________ > > Now you can scan emails quickly with a reading pane. > Get the new Yahoo! Mail. > http://uk.docs.yahoo.com/nowyoucan.html > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/dubailug/ <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
