Re: ipfilter question

2005-12-13 Thread Pietro Cerutti
On 12/13/05, Elmer Rivera [EMAIL PROTECTED] wrote: hello, Hello, my freebsd box is already setup and followed some of the docs on setting up the firewall using ipfilter. question on logging. setup /var/log/ipfilter.log as my log file. How/where did you set this up? modified

RE: ipfilter question

2005-12-13 Thread fbsd_user
Of Pietro Cerutti Sent: Tuesday, December 13, 2005 7:39 AM To: Elmer Rivera; FreeBSD Subject: Re: ipfilter question On 12/13/05, Elmer Rivera [EMAIL PROTECTED] wrote: hello, Hello, my freebsd box is already setup and followed some of the docs on setting up the firewall using ipfilter. question

Re: ipfilter question

2005-12-13 Thread Elmer Rivera
#uname -a FreeBSD hcggw1.hcg.com.ph 5.4-RELEASE-p8 FreeBSD 5.4-RELEASE-p8 #0: Sat Dec 10 09:49:16 PHT 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/HCGGW1 i386 setup /var/log/ipfilter.log as my log file. How/where did you set this up? # touch /var/log/ipfilter.log modified

Re: ipfilter question

2005-12-13 Thread Rob Lytle
Here's my setup: /etc/rc.conf ipmon_enable=YES ipmon_flags=-Dns /etc/syslog.conf security.* /var/log/ipfilter.log Make sure you don't have any other security.* facility specified in /etc/syslog.conf yes, there is no other security.* facility, actually i got it

Re: ipfilter question

2005-12-13 Thread Parv
in message [EMAIL PROTECTED], wrote Rob Lytle thusly... Here's my setup: ... in /etc/syslog.conf yes, there is no other security.* facility, actually i got it working Please keep the attribution attribute the respective authors. I have the problem that ipmon logs to

Re: ipfilter question

2005-12-13 Thread Elmer Rivera
Got it working. forgot to add security.none after *.notice; Thanks guys... -- Elmer Rivera, http://www.vizcayano.com, http://youand.i.ph ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To

RE: IPFILTER Question

2003-04-03 Thread Ivailo Tanusheff
Can you post the rules he is using? Perhaps you'll need something like: passout quick on xl0 proto tcp from any to any keep state keep frags in his ruleset! Regards, Ivailo Tanusheff -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Nevins,

Re: IPFILTER Question

2003-04-03 Thread Marco Radzinschi
On Tue, 1 Apr 2003, Nevins, Peter wrote: Hello. I'm a firewall admin and have run into a question regarding your OS. A client is running IPFILTER and cannot send mail to us here. We're running a Raptor Firewall for NT (yes, NT). He sends a SYN and my system responds with an ACK that is more