Erwin Van de Velde wrote: > Dear all, > > I have configured both shorewall and shorewall6 on my firewall. Shorewall is > using ULOG as logging target and since that did not seem to work I tried > using > NFLOG in shorewall6. However, nothing is logged in the /var/log files. > > Three questions: > - What am I doing wrong? I just use LOG=NFLOG in the params file.
That, by itself, does absolutely nothing. You also need to specify $LOG, everywhere you want logging. When you think something should have been logged, check 'shorewall6 show | grep NFLOG'; you should see packet counts > 0. If you do not, then no traffic is hitting your logging rules. > - Can I use NFLOG for shorewall too? Yes. > - Do I need ulogd when setting the NFLOG target? Yes. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
