I would like to use fwlogwatch and am wondering... What is the best way to setup the logging, What rule would be appropriate for fwlogwatch? Would I try and capture everything, and let fwlogwatch parse it? or does it just notify when one of the packets gets logged?
any help would be great...
