Dear all, On Wednesday 24 February 2010, Tom Eastep wrote: > > - What am I doing wrong? I just use LOG=NFLOG in the params file. > > That, by itself, does absolutely nothing. You also need to specify $LOG, > everywhere you want logging. When you think something should have been > logged, check 'shorewall6 show | grep NFLOG'; you should see packet > counts > 0. If you do not, then no traffic is hitting your logging rules.
Ow sorry, perhaps it was not clear, I did not only specify LOG in the params file, but I also use it in policy and rules file (which are in fact the same as for the ipv4 firewall). I do see counts > 0, but the logs do contain only IPv4 and no IPv6 traffic. Do I have to configure something for ulog to log IPv6 traffic? Best regards, Erwin ------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
