Ok, it was nf_log_ipv4, but it is a part of iptables. I can get nf_log_ipv4 installed only if I select XT tables and LOG matching for iptables, so means that some core components of iptables also comes to the installation. I would like to use only nfnetling_log for logging, but if I try to execute this command 'echo "nfnetlink_log" /proc/sys/net/netfilter/nf_log/2', then I get error, that wirte cannot be executed. Should I then necessarily have ulogd installed on my system in order to be able to use nfnetlink logging? > On March 21, 2018 at 11:02 PM darius <dram@xxxxxxxxxxx> wrote: > > > Problem solved! I have made quite some changes in image file > configuration, rebuild image and it started working! Now I can see that > 'nf_log_ipv4' module is loaded and I'm quite sure that it was the > missing link. I will do some more tests to be 100% sure, but I think it > will be the case. Before this module was missing and logging was not > working. > > On 21-03-2018 12:59, Pablo Neira Ayuso wrote: > > What does > > > > cat /proc/net/netfilter/nf_log > > > > say there? > > > > You may need to: > > > > # modprobe nf_log_ipv4 > > -- > To unsubscribe from this list: send the line "unsubscribe netfilter" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
