With the /etc/npf.conf file as below
procedure "log" {
log: npflog0
}
group (default) {
pass all
pass final family inet proto icmp all apply "log"
}
it works.
I can read the log by running "tcpdump -i npflog0". But is there an easier way
to have the log?
I would like to automatically redirect the log to a file without keeping active
tcpdump.
Rocky
