David, this is correct and what I believe he is trying to accomplish. " If select no log on a filter. Then you will not log if the filter is matched."
Therefore, if I have an outbound filter that is anyip to anyip all. Then I put a filter above that which is (some internal ip) to (some public IP) and select no log. Why wouldn't gnatbox stop logging anything regarding that filter....whether it be www, open tunnel or close tunnel. On Tue, 04 Sep 2001 16:16:39 -0400, you wrote: >--------------------- Attention ----------------------------- >A digest version of this list is now available. >Send email to [EMAIL PROTECTED], with the following message: >subscribe gb-users-digest your_email_address >Then unsubscribe from this list. >------------------------------------------------------------- >GNAT Box User Forum http://www.gnatbox.com/cgi-bin/Ultimate.cgi >Send postings to: [EMAIL PROTECTED] >Access the list archives at: http://www.gnatbox.com/gb-users/ >------------------------------------------------------------- >Hi, > >I believe you are looking at the wrong section. If select no log on a >filter. Then you will not log if the filter is matched. This is different >than logging the opening and closing of a tunnel. Which is in the Services >section -> Remote Logging. By default only the close of a tunnel is logged. > >David > > >At 11:52 AM 9/4/01 -0500, [EMAIL PROTECTED] wrote: >>--------------------- Attention ----------------------------- >>A digest version of this list is now available. >>Send email to [EMAIL PROTECTED], with the following message: >>subscribe gb-users-digest your_email_address >>Then unsubscribe from this list. >>------------------------------------------------------------- >>GNAT Box User Forum http://www.gnatbox.com/cgi-bin/Ultimate.cgi >>Send postings to: [EMAIL PROTECTED] >>Access the list archives at: http://www.gnatbox.com/gb-users/ >>------------------------------------------------------------- >>tested this myself with the same results...outbound block nolog works >>fine...remote access nolog works fine...outbound accept nolog doesn't >>seem to work >> >>Is this a bug? If not, I believe GTA should DEFINITELY add this to >>the next release. >> >>On Tue, 4 Sep 2001 02:28:35 -0400, you wrote: >> >> >--------------------- Attention ----------------------------- >> >A digest version of this list is now available. >> >Send email to [EMAIL PROTECTED], with the following message: >> >subscribe gb-users-digest your_email_address >> >Then unsubscribe from this list. >> >------------------------------------------------------------- >> >GNAT Box User Forum http://www.gnatbox.com/cgi-bin/Ultimate.cgi >> >Send postings to: [EMAIL PROTECTED] >> >Access the list archives at: http://www.gnatbox.com/gb-users/ >> >------------------------------------------------------------- >> >Is it possible to create an outbound filter that would prevent a host on >> >the protected side of the network from being logged to the syslog when >> >it tried to contact certain hosts on the external (Internet) side of the >> >network? For example, if you have a machine on your internal 192.168.1.x >> >/24 subnet running something such as BigBrother or MRTG to monitor >> >several outside hosts, your syslogs tend to get large rather quickly. >> >I'd like to add a filter that would still allow the internal monitoring >> >host to contact the outside hosts on the Internet, but prevent it from >> >logging those connections to the syslog. I've tried adding specific >> >outbound filters set to accept with nolog and haven't had any luck. It >> >works fine (doesn't log) if you add a DENY filter outbound with nolog, >> >but not if you have an ACCEPT filter outbound with nolog. If someone can >> >either confirm that it is not possible for GNAT Box to do this, or else >> >tell me how to do it, I would appreciate it. >> > >> >///Jason >> > >> >---------------------------------------------- >> >To Unsubscribe: send mail to [EMAIL PROTECTED] >> >with "unsubscribe gb-users your_email_address >> >in the body of the message >> >>---------------------------------------------- >>To Unsubscribe: send mail to [EMAIL PROTECTED] >>with "unsubscribe gb-users your_email_address >>in the body of the message > > >David Brooks Email: [EMAIL PROTECTED] >Tech Support Tel: +1.407.482.6925 >Global Technology Associates, Inc. Fax: +1.407.380.6080 >3505 Lake Lynda Drive Web: http://www.gta.com >Suite 109 http://www.gnatbox.com >Orlando, Florida 32817 ftp://ftp.gnatbox.com >USA > > > >---------------------------------------------- >To Unsubscribe: send mail to [EMAIL PROTECTED] >with "unsubscribe gb-users your_email_address >in the body of the message
