That might work... This firewall is going to be a proxy server running squid. We will be forcing proxying so we will have this rule loaded: REDIRECT loc 8080 tcp 80,443 - I'm trying to make sure I understand how this works... will this rule put a matched packet onto the input chain so we can log its mac address? Without this rule a packet destined for the internet would otherwise just hit the forward chain correct? We will also have the proxy port open on 8080 for clients that are configured to use it. Web clients that have the proxy configured should send their packets in on the input chain correct? If so, then here is the next part: Will the maclist process before your suggested rule? We don't want mac addresses we have already blocked clogging up our log files...
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of teastep Sent: Thursday, December 21, 2006 3:45 PM To: Shorewall Users; Shorewall Users Subject: Re: [Shorewall-users] Logging MAC addresses On Thu, Dec 21, 2006 at 1:38pm Thomas Marschall <[EMAIL PROTECTED]> wrote: > Hmmm, that link didn't work either.... "Not found" error. s/b http://www.shorewall.net/Actions.html#Extension But it's possible you don't even need to use an action. What's wrong with LOG:info $FW <whereever> tcp <port> LOG:info $FW <whereever> udp <port> ... -Tom -- Tom Eastep \\ Nothing is foolproof to a sufficiently talented fool Shoreline, \\ http://shorewall.net Washington USA \\ [EMAIL PROTECTED] ------------------------------------------------------------------------ - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDE V _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
