From: "hare ram" <hareram@sol.net.in>
To: Arnt Karlsen <arnt@c2i.net>, netfilter@lists.netfilter.org
Subject: Re: Problem with bridge+iptables+ulog
Date: Wed, 12 Mar 2003 21:16:31 +0530 [thread overview]
Message-ID: <07cc01c2e8ae$8d8ee160$13fcc5cb@Housecall> (raw)
In-Reply-To: 20030312135021.58bf6699.arnt@c2i.net
Hi
thanks, BR0 have IP becoz of monitoring purpose
i would like to use IPTABLES to monitor the packets
but i could not able to do so, looking for the same help.
hare
----- Original Message -----
From: "Arnt Karlsen" <arnt@c2i.net>
To: <netfilter@lists.netfilter.org>
Sent: Wednesday, March 12, 2003 6:20 PM
Subject: Re: Problem with bridge+iptables+ulog
> On Wed, 12 Mar 2003 15:55:34 +0530,
> "hare ram" <hareram@sol.net.in> wrote in message
> <078601c2e886$039a49e0$13fcc5cb@Housecall>:
>
> > Hi all
> >
> > some one can help i have the following setup
> >
> > x.x.x.1/24 x.x.x.2/24
> > +----------+ +------+
> > | Router A |---------+ +---------| PC B |
> > +----------+ | | +------+
> > | |
> > eth0| | eth1
> > +-----+
> > | qos | (br0 =3D x.x.x.3/24)
> > +-----+
> >
> >
> >
> > Router A is connected to internet
> > QOS box running with bridge
> > PC B is my LAPTOP
> >
> > iam try to make the ULOG usig the following command
> >
> >
> > $IPTABLES -I INPUT -i eth1 -j ULOG --ulog-nlgroup 1 --ulog-cprange
> > --ulog-qthreshold 50 --ulog-prefix "EXT_IN"
>
> ..does eth1 have an ip address? Why does br0 have an ip address
> at all? IMNTHO, it does not need it, but then I can generate logs
> from: 'tcpdump -i $interface | grep -v $whatever-I-dont-need \
> | grep $what-I-want.etc.iterate.greps.as.needed >> $logfile '
>
> > iam not able to see any LOG here in my LOG file
> >
> > when i do this with out interfce
> >
> > $IPTABLES -I INPUT -j ULOG --ulog-nlgroup 1 --ulog-cprange
> > --ulog-qthreshold 50 --ulog-prefix "EXT_IN"
> >
> > iam able to see some logs using BR0
> >
> > how can i get the logs from eth0 and eth1
> >
> > any suggestion will be great
> >
> > hare
>
>
> --
> ..med vennlig hilsen = with Kind Regards from Arnt... ;-)
> ...with a number of polar bear hunters in his ancestry...
> Scenarios always come in sets of three:
> best case, worst case, and just in case.
>
>
>
next prev parent reply other threads:[~2003-03-12 15:46 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-03-12 10:25 Problem with bridge+iptables+ulog hare ram
2003-03-12 12:50 ` Arnt Karlsen
2003-03-12 15:46 ` hare ram [this message]
2003-03-13 0:01 ` Arnt Karlsen
2003-03-13 21:51 ` Axel Christiansen
-- strict thread matches above, loose matches on Subject: below --
2003-03-12 7:20 problem " B H R Balaji
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='07cc01c2e8ae$8d8ee160$13fcc5cb@Housecall' \
--to=hareram@sol.net.in \
--cc=arnt@c2i.net \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox