Linux Netfilter discussions
 help / color / mirror / Atom feed
* Log everything from iptables
@ 2005-06-15 17:20 Sebastião Antônio Campos (Infojoi)
  2005-06-16 13:36 ` Michael Weinert
  0 siblings, 1 reply; 3+ messages in thread
From: Sebastião Antônio Campos (Infojoi) @ 2005-06-15 17:20 UTC (permalink / raw)
  To: netfilter

Hi people!

How can I do to log everything is passing thru my firewall on eth0 and eth1 
and lo?? Using iptables??

Thanks

Tião

Sebastião Antônio Campos
Infojoi Computadores Ltda
89.224-000 Joinville -SC - R. Iririú, 3587
Cml. (47) 437-0796 - Cel. (47) 9927-5349
tiao@infojoi.com.br
http://www.lupusnet.com.br 



^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: Log everything from iptables
  2005-06-15 17:20 Log everything from iptables Sebastião Antônio Campos (Infojoi)
@ 2005-06-16 13:36 ` Michael Weinert
  2005-06-17 11:47   ` Jörg Harmuth
  0 siblings, 1 reply; 3+ messages in thread
From: Michael Weinert @ 2005-06-16 13:36 UTC (permalink / raw)
  To: netfilter

[-- Attachment #1: Type: text/plain, Size: 635 bytes --]

Am Mittwoch, 15. Juni 2005 19:20 schrieb Sebastião Antônio Campos:

Hi,

> How can I do to log everything is passing thru my firewall on eth0 and eth1
> and lo?? Using iptables??
just put:

iptables -I INPUT 1 -j LOG
iptables -I OUTPUT 1 -j LOG
iptables -I FORWARD 1 -j LOG

in a script and run it. It pushes a Log-entry as the first rule in the table.

Michael

-- 

          SysQuadrat    Systeme mit Sicherheit
    Michael Weinert Stuttgart Filderstadt-Plattenhardt
  Tel.: 0711-9970288 Fax: 5360559 Mobil: 0170-4141273
   http://www.linux-firewall.de  weinert@sys2.de
           KeyServer hkp://pgp.mit.edu

[-- Attachment #2: Type: application/pgp-signature, Size: 676 bytes --]

^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: Log everything from iptables
  2005-06-16 13:36 ` Michael Weinert
@ 2005-06-17 11:47   ` Jörg Harmuth
  0 siblings, 0 replies; 3+ messages in thread
From: Jörg Harmuth @ 2005-06-17 11:47 UTC (permalink / raw)
  To: netfilter

Michael Weinert schrieb:
[SNIP]> just put:
> 
> iptables -I INPUT 1 -j LOG
> iptables -I OUTPUT 1 -j LOG
> iptables -I FORWARD 1 -j LOG
> 
> in a script and run it. It pushes a Log-entry as the first rule in the table.

If you have to deal with much traffic, you could be interested in
reading this thread:

https://lists.netfilter.org/pipermail/netfilter/2005-May/060220.html

Have a nice time

Joerg



^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2005-06-17 11:47 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-06-15 17:20 Log everything from iptables Sebastião Antônio Campos (Infojoi)
2005-06-16 13:36 ` Michael Weinert
2005-06-17 11:47   ` Jörg Harmuth

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox