On Monday 15 March 2004 3:51 pm, Mario Udina wrote:
> Hello!
>
> I have done some googling however did not manage to find out if there
> is a way to define a file where iptables writes its logs.
>
> As I read in the man the file where the logs are written is the kernel
> log i.e. /var/log/messages
>
> is there a way to send this output to another file in order to keep the
> logs clean?
netfilter logs via syslogd, therefore by changing the --log-level option to
the LOG target you can get messages sent to some other file as specified in
your syslog.conf (however you may not be able to keep them *completely*
separate from other messages, depending on how you arrange syslog.conf).
If you want to change the syslog facility as well as the level, which is the
ideal solution, you'll have to hack the netfilter logging source code :(
Antony.
--
The first fifty percent of an engineering project takes ninety percent of the
time, and the remaining fifty percent takes another ninety percent of the
time.
Please reply to the list;
please don't CC me.
