Re: netfilter logiing - Jörg Harmuth

Linux Netfilter discussions
 help / color / mirror / Atom feed

From: "Jörg Harmuth" <harmuth@mnemon.de>
To: netfilter@lists.netfilter.org
Subject: Re: netfilter logiing
Date: Thu, 03 Feb 2005 16:09:21 +0100	[thread overview]
Message-ID: <42023EA1.8000002@mnemon.de> (raw)
In-Reply-To: <42023802.5060403@linuon.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Junji Kanemaru wrote:

| Hi,
|
| I have a quick question regarding netfilter logging. I'm working on
|  some unified system logging interface and want to get netfilter
| log when some netfilter policy violation occurred. How I can get
| that kind of logs? Maybe I need to write ULog filter for that? I
| could be showing my ignorance though...
|
| Thanks
|
The simple approach is to add a LOG rules as the _last_ rule of the
respective chain, e.g.

iptables -A INPUT -j LOG --log-prefix "Policy Violation: "

So ervery time a packet hits the policy a log entry is generated.

HTH

Joerg

- --
- -----------------------------------------------------------------------
mnemon
Jörg Harmuth
Marie-Curie.Str. 1
53359 Rheinbach

Tel.: (+49) 22 26  87 18 12
Fax:  (+49) 22 26 87 18 19
mail: harmuth@mnemon.de
Web:  http://www.mnemon.de
PGP-Key: http://www.mnemon.de/keys/harmuth_mnemon.asc
PGP-Fingerprint: 692E 4476 0838 60F8 99E2  7F5D B7D7 E48E 267B 204F
- -----------------------------------------------------------------------
Diese Mail wurde vor dem Versenden auf Viren und andere schädliche
Software untersucht. Es wurde keine maliziöse Software gefunden.

This Mail was checked for virusses and other malicious software before
sending. No malicious software was detected.
- -----------------------------------------------------------------------

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
 
iD8DBQFCAj6ht9fkjiZ7IE8RArNqAKDD5ji3XfeRyEg0pAIPOOWSnc3I+wCfQ/DO
m3hNNMh+XfeApNHMrx4R0/o=
=UXRC
-----END PGP SIGNATURE-----

next prev parent reply	other threads:[~2005-02-03 15:09 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2005-02-03 14:41 netfilter logiing Junji Kanemaru
2005-02-03 15:09 ` Jörg Harmuth [this message]
2005-02-03 18:22 ` R. DuFresne

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=42023EA1.8000002@mnemon.de \
    --to=harmuth@mnemon.de \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox