On Tue, 24 Jun 2003, Robert L. Harris wrote: > Looking at the docs for iptables you can specify log Level (auth, > crit, etc) but I don't see a way of specifying a "facility" such as > local1. I'd like to put all my iptables output logs into a specific > file I can dig through easier than my messages file. Messing with > loglevels could work but has potential to get very ugly if it makes me > miss important messages I need otherwise.
There is probably a better way to do this, but I'm using syslog-ng,
along with these lines added to /etc/syslog-ng/syslog-ng.conf
destination iptables { file("/var/log/iptables.log" owner("root")
group("adm") perm(0640)); };
filter f_iptables { match("IN="); };
log { source(src); filter(f_iptables); destination(iptables); };
Works for me, YMMV.
~ Jesse Meyer
--
icq: 34583382 / msn: [EMAIL PROTECTED] / yim: tsunad
"We are what we pretend to be, so we must be careful about what we
pretend to be." - Kurt Vonnegut Jr : Mother Night
pgp00000.pgp
Description: PGP signature
