On 12/13/05, Elmer Rivera [EMAIL PROTECTED] wrote:
hello,
Hello,
my freebsd box is already setup and followed some of the docs on
setting up the firewall using ipfilter. question on logging.
setup /var/log/ipfilter.log as my log file.
How/where did you set this up?
modified
Of Pietro
Cerutti
Sent: Tuesday, December 13, 2005 7:39 AM
To: Elmer Rivera; FreeBSD
Subject: Re: ipfilter question
On 12/13/05, Elmer Rivera [EMAIL PROTECTED] wrote:
hello,
Hello,
my freebsd box is already setup and followed some of the docs on
setting up the firewall using ipfilter. question
#uname -a
FreeBSD hcggw1.hcg.com.ph 5.4-RELEASE-p8 FreeBSD 5.4-RELEASE-p8 #0:
Sat Dec 10 09:49:16 PHT 2005
[EMAIL PROTECTED]:/usr/obj/usr/src/sys/HCGGW1 i386
setup /var/log/ipfilter.log as my log file.
How/where did you set this up?
# touch /var/log/ipfilter.log
modified
Here's my setup:
/etc/rc.conf
ipmon_enable=YES
ipmon_flags=-Dns
/etc/syslog.conf
security.* /var/log/ipfilter.log
Make sure you don't have any other security.* facility specified in
/etc/syslog.conf
yes, there is no other security.* facility, actually i got it
in message [EMAIL PROTECTED],
wrote Rob Lytle thusly...
Here's my setup:
...
in /etc/syslog.conf
yes, there is no other security.* facility, actually i got it
working
Please keep the attribution attribute the respective authors.
I have the problem that ipmon logs to
Got it working. forgot to add security.none after *.notice;
Thanks guys...
--
Elmer Rivera, http://www.vizcayano.com, http://youand.i.ph
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To
Can you post the rules he is using?
Perhaps you'll need something like:
passout quick on xl0 proto tcp from any to any keep state keep
frags
in his ruleset!
Regards,
Ivailo Tanusheff
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Nevins,
On Tue, 1 Apr 2003, Nevins, Peter wrote:
Hello. I'm a firewall admin and have run into a question regarding your OS.
A client is running IPFILTER and cannot send mail to us here. We're running
a Raptor Firewall for NT (yes, NT). He sends a SYN and my system responds
with an ACK that is more