On 07/03/11 14:30, Alessandro Vesely wrote: > Hi! > > On 27/Feb/11 03:28, Pablo Neira Ayuso wrote: >> - The command line interface (CLI) conntrack that provides an interface >> to add, delete and update flow entries, list current active flows in >> plain text/XML, current IPv4 NAT'ed flows, reset counters, and flush the >> complete connection tracking table among many other. > > Although this is a command line tool, I guess it is mostly used in > scripts, or execv'ed by other command line utilities according to some > parameters, possibly non-interactively. Thus, there is a usability > concern about its output. > > I would like to see regular lines such as "NNN flow entries have been > deleted" at LOG_INFO, while something like "Operation failed: %s" > possibly deserves LOG_CRIT. Would it be possible to use dlog in > conntrack.c? The command line tool is not designed for logging. For that purpose you can use ulogd2. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
