Hello!!!
I do all steps as in http://www.openbsd.org/faq/pf/logging.html#syslog to logging with
syslog. But when I :
bash-2.05b# touch /var/log/pflog.txt
bash-2.05b# kill -HUP $(cat /var/run/syslog.pid)
bash-2.05b# kill -HUP $(cat /var/run/cron.pid)
bash-2.05b# kill -HUP $(cat /var/run/pflogd.pid)
bash-2.05b# /home/pflogger/pfl2sysl
tcpdump: /home/pflogger/pflog5min*: No such file or directory
rm: /home/pflogger/pflog5min*: No such file or directory
bash-2.05b# touch /home/pflogger/pflog5min
bash-2.05b# /home/pflogger/pfl2sysl
tcpdump: fread: Undefined error: 0
My scripts:
bash-2.05b# ls -la /etc | grep log
-rwxr-xr-x 1 root wheel 253 Sep 29 05:46 pflogrotate
bash-2.05b# cat /etc/pflogrotate
FILE=/home/pflogger/pflog5min.$(date "+%Y%m%d%H%M")
kill -ALRM $(cat /var/run/pflogd.pid)
if [ $(ls -l /var/log/pflog | cut -d " " -f 8) -gt 24 ]; then
mv /var/log/pflog $FILE
chown pflogger $FILE
kill -HUP $(cat /var/run/pflogd.pid)
fi
bash-2.05b# cat /home/pflogger/pfl2sysl
for logfile in /home/pflogger/pflog5min* ; do
tcpdump -n -e -ttt -r $logfile | logger -t pf -p local0.info
rm $logfile
done
bash-2.05b# ls -la /var/log/ | grep .txt
-rw-r--r-- 1 root wheel 0 Sep 29 06:39 pflog.txt
Where I may be do some errors?
