----- Original Message -----
From: "Mario" <mariounixuser@xxxxxxxxxxxx>
To: "robee" <mlody@xxxxxxxxx>
Cc: <netfilter@xxxxxxxxxxxxxxxxxxx>
Sent: Thursday, April 20, 2006 10:47 PM
Subject: Re: packets loging
robee wrote:
when i use -j LOG target, netfilter writes so many information to syslog.
what can i use to write only IN and OUT interface, SRC and DST host?
robee
$myLoglevel=info ...
iptables -A _____ -i $intif -s $Src -o $outif -d $Dest ________ -j
LOG --log-prefix "xxxxxxx" --log-level $myLoglevel
and a little change in syslog.conf... like: kern.=info
/var/log/kern.info.log ....
__________________________________________________
Correo Yahoo!
Espacio para todos tus mensajes, antivirus y antispam Ągratis! Regístrate
ya - http://correo.yahoo.com.mx/
my rules looks like this:
iptables -I FORWARD -p tcp -i ! eth0 --dport 80 -m state --state NEW -j
LOG --log-prefix HTTP_ --log-level info
and i get something like this in /var/log/kernel
Apr 21 04:09:20 master kernel: HTTP_IN=eth2 OUT=eth0 SRC=10.11.9.2
DST=213.54.82.29 LEN=48 TOS=0x00 PREC=0x00 TTL=127 ID=57962 DF PROTO=TCP
SPT=3636 DPT=80 WINDOW=64240 RES=0x00 SYN URGP=0
but i want only this:
Apr 21 04:09:20 master kernel: HTTP_IN=eth2 OUT=eth0 SRC=10.11.9.2
DST=213.54.82.29
any sugestion?
robee
