Hi ! (Sorry I can't send the history back in this mail, I just suscribed and first post)
I have the same problem than Russell :-(((( My iptables rule : $PATH -A FORWARD -i $LAN -p tcp -s 0.0.0.0/0 --dport 80 -j LOG --log-level DEBUG --log-prefix "FWlogHTTP :" Does my rule work ? (yes) # iptables -L -v -n pkts bytes target prot opt in out source destination 2793 241K LOG tcp -- eth3 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 LOG flags 0 level 7 prefix `FWlogHTTP :' Ok now lest do a little # dmesg # dmesg FWlogHTTP :IN=eth3 OUT=eth0 SRC=192.168.252.48 DST=194.98.133.xxx LEN=48 TOS=0x08 PREC=0x00 TTL=127 ID=12358 DF PROTO=TCP SPT=2271 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 FWlogHTTP :IN=eth3 OUT=eth0 SRC=192.168.255.184 DST=213.193.13.xx LEN=48 TOS=0x08 PREC=0x00 TTL=127 ID=19957 DF PROTO=TCP SPT=1114 DPT=80 WINDOW=16384 RES=0x00 SYN URGP=0 ok, it's logging in the kernel ring buffer lets see my /etc/syslog.conf *.info;mail.none;authpriv.none;cron.none /var/log/messages (this one shud work ? no ?) I tested to add these 2 ones (as suggested by GeorgeV)... but without any result ... *.* /var/log/test *.=debug /var/log/debugF (I restarted the syslogd also) So my stupid question is : What did I miss so that all logs goes in a file ? /var/log/messages or an other one ... Help ;-)) I am running on a RH 7.2 Alexander SWANN Administrateur Syst�mes et R�seaux SYNETICS Groupe Soft-Computing 75015 PARIS
