-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Junji Kanemaru wrote:
| Hi, | | I have a quick question regarding netfilter logging. I'm working on | some unified system logging interface and want to get netfilter | log when some netfilter policy violation occurred. How I can get | that kind of logs? Maybe I need to write ULog filter for that? I | could be showing my ignorance though... | | Thanks | The simple approach is to add a LOG rules as the _last_ rule of the respective chain, e.g.
iptables -A INPUT -j LOG --log-prefix "Policy Violation: "
So ervery time a packet hits the policy a log entry is generated.
HTH
Joerg
- -- - ----------------------------------------------------------------------- mnemon JÃrg Harmuth Marie-Curie.Str. 1 53359 Rheinbach
Tel.: (+49) 22 26 87 18 12 Fax: (+49) 22 26 87 18 19 mail: harmuth@xxxxxxxxx Web: http://www.mnemon.de PGP-Key: http://www.mnemon.de/keys/harmuth_mnemon.asc PGP-Fingerprint: 692E 4476 0838 60F8 99E2 7F5D B7D7 E48E 267B 204F - ----------------------------------------------------------------------- Diese Mail wurde vor dem Versenden auf Viren und andere schÃdliche Software untersucht. Es wurde keine maliziÃse Software gefunden.
This Mail was checked for virusses and other malicious software before sending. No malicious software was detected. - -----------------------------------------------------------------------
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCAj6ht9fkjiZ7IE8RArNqAKDD5ji3XfeRyEg0pAIPOOWSnc3I+wCfQ/DO m3hNNMh+XfeApNHMrx4R0/o= =UXRC -----END PGP SIGNATURE-----
