> Logging from network namespaces other than init has been disabled since
> kernel 3.10 in order to prevent host kernel log flooding from inside
> a container.
>
> If you have kernel >= 4.11 or one with commit 2851940ffee3 ("netfilter:
> allow logging from non-init namespaces") backported, you can enable
> netfilter logging from other network namespaces by
>
> echo 1 >/proc/sys/net/netfilter/nf_log_all_netns
>
> (the command must be issued from init_net).
>
> > I try to install ulogd2 on my container too, no more luck.
>
> Logging via NFLOG target and ulogd2 should work even without the sysctl
> mentioned above, IIRC.
Hi,
Thanks for the reply.
I try with a 4.11 kernel, logs are OK.
Will retry with nflog+ulogd2 too, I surely miss a point during my setup test.
Regards,
--
Aeris
Individual crypto-terrorist group self-radicalized on the digital Internet
https://imirhil.fr/
Protect your privacy, encrypt your communications
GPG : EFB74277 ECE4E222
OTR : 5769616D 2D3DAC72
https://café-vie-privée.fr/Attachment:
signature.asc
Description: This is a digitally signed message part.
