Actually, I got a response directly to me that solved the problem. This is effectively dumping all my iptables messages to their own log: >I set my logging in my firewall script to >iptables -A FORWARD -j LOG --log-level 7 --log-prefix "FORWARD: " > >Then in /etc/syslog.conf: > >kern.7 -/var/log/firewall > >On a side note in /etc/sysconfig/syslog I modified the -c parameter, this >controls the console logging level. >KLOGD_OPTIONS="-x -c 4" I didn't bother tinkering with klogd, but I thought I'd reproduce the message I got in full for anyone else who might find this as useful as I did. - Michael Hurley -----Original Message----- From: Laurence J. Lane [mailto:ljlane@xxxxxxxxxxxx] Sent: Tuesday, December 16, 2003 6:34 PM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: Re: logging to console On Tue, Dec 16, 2003 at 05:19:31PM +0000, Antony Stone wrote: [ re sending netfilter logs to a separate file ] > I thik several people would. It's come up a few times before on > this list. Short of delving into the netfilter source code, I > don't know of a way to do it. syslog-ng may interest you.
