JJB wrote:
Adding an "logamount" option to each logging rules would be to "long
way work around".
Adding net.inet.ip.fw.verbose_limit=100 to /etc/sysctl.conf would be
the short way.
You're right with IPFW, but you missed Dan Pelleg's note that this seems
not to work with IPFW2; for some reason IPFW
uly 04, 2004 8:15 AM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED];
[EMAIL PROTECTED]
Subject: Re: IPFIREWALL_VERBOSE_LIMIT ignored by recent
kernel/world?
Dan Pelleg wrote:
> I have a patch for that in kern/46080. Note I haven't tested it in
a while
>
> http://www.freebsd.org/cgi/query
Dan Pelleg wrote:
I have a patch for that in kern/46080. Note I haven't tested it in a while
http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/46080
So what I observed (security logfile get floaded with ipfw2 logs) is actually
a kind of bug. If so, I'd rather wait till the fix makes it into the offic
Verbose limit is a sysctl knob now, you can display it to see
current setting or change it without a reboot. Check your
newsyslog.conf file to very the rotate trigger is the same as you
were using before.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Rob
Se