Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'alternate ipfw logfile' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
alternate ipfw logfile
Authored by: robh on Aug 20, '01 07:45:55PM

It doesn't look like it's possible to redirect just the ipfw output into a separate log in 10.0.*.
Looking at the output of 'syslogd -d', the ipfw output is tagged as 'kern level 2', so this new line in /etc/syslog.conf does the trick.

kern.2 /var/log/ipfw.log

You'll need to monitor the log to see if there are any unwanted side-effects.

You're probably better off grep'ing the ipfw info out of /var/log/system.log e.g.

grep ipfw /var/log/system.log

or

tail -f /var/log/system.log | grep ipfw


My ipfw logging shows that most of the attempts to abuse my machine are scans on the nntp port.



[ Reply to This | # ]