On Wed, Jan 08, 2003 at 03:37:34PM -0500, Chris Shepherd wrote: > Quoting "Randall J. Parr" <RParr@TemporalArts.COM>: > > Can I, and if so how can I, configure iptables (esp using GuardDog which > > I use to configure iptables) and/or syslog (ie /etc/syslog.conf, ...) so > > that my firewall messages are logged into a file other than > > /var/log/messages? > > > > I have searched, looked at tutorial, etc. and found this question asked > > many times but without ever finding a decent answer. > > > > If it just can not be done, could someone who knows this please state so? > > Configure Syslog to log a certain log-level to an alternate file, and then just > use "-j LOG --log-level <level>". ie: if you wanted it to log as a notice, > just setup Syslog to log notices to another file, and drop in a line that reads > like: > > iptables -A LOGGING_TABLE -j LOG --log-level notice --log-prefix="NF: " That's still only a _kernel_ log _priority_. So it'll still be in the kernel facility. But this is still part of the solution *8-). You won't be able to guarantee *ONLY* iptables logging in a file, but you can set --log-level debug and then in /etc/syslog.conf kernel.=debug /var/log/kernel-debug.log Debug is the level least likely to have stuff generated by other things normally. HTH, -Ath -- - Athanasius = Athanasius(at)miggy.org / http://www.miggy.org/ Finger athan(at)fysh.org for PGP key "And it's me who is my enemy. Me who beats me up. Me who makes the monsters. Me who strips my confidence." Paula Cole - ME
Attachment:
pgp00255.pgp
Description: PGP signature
