When using v2 we would modify the saved /var/lib/shorewall/restore file to
modify logging so we had separate counts by the physical device the
packets (actually, NEW connections, not total packet counts), such as:
-A LogStuff -j LOG etc
-A LogStuff -m physdev --physdev-in eth1 -j DROP
-A LogStuff -m physdev --physdev-in eth2 -j DROP
which gave us an idea where dropped traffic cam from (external internet or
local lan).
Is there an easy way of doing this within Shorewall such as the macro
facility or what?
Thank you,
Lucky
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
