Subject: Re: [Leaf-user] How not to log a deny'ed packet/ip address Date: Fri, 30 Nov 2001 22:16:57 -0600 From: guitarlynn <[EMAIL PROTECTED]> To: "Scott C. Best" <[EMAIL PROTECTED]>
On Friday 30 November 2001 17:59, you wrote: > Dachstein handles the log rotation better than ES2B does, > sure. For my liking though, I want the stuff in my log files to > be at least interesting. :) Yes and the ruleset to Dachstein is nice enough that I have to check it with the weblet to understand what is going where. Charles posted the info on the SILENT_DENY option I couldn't figure out. # Traffic to completely ignore...define here to prevent filling your logs # Space seperated list: protocol_srcip/mask_dstport #SILENT_DENY="udp_207.235.84.1_route udp_207.235.84.0/24_37" So you want something like: SILENT_DENY="88_x.y.z.158" I wasn't thinking about the changes in regards to a subnet compared to a host. Something as a commented suggestion would have been much clearer to me, like: #SILENT_DENY="ProtoNumber_SourceAddress/Netmask_DestinationPort" #Netmask and DestinationPort are optional I edited my network.conf file to match these parameter on the web trash, and waalaa it works perfect.! Thanks to all again, Lynn Avants ~Guitalrynn ------------------------------------------------------- -- if linux isn't the answer, you've got the wrong question _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
