Re: iptables not logging via syslog-ng

2006-09-12 Thread Justin Piszcz
Yeah, my guess is you don't have the ulogd support in the kernel. On Mon, 11 Sep 2006, Justin F. Knotzke wrote: Thanks Justin again for the reply.. Here is what I have: justin:/var/log/ulog# cat /etc/ulogd.conf nlgroup 6 logfile /var/log/ulog/ulogd.log loglevel 1 rmem 131071 bufsize 15

Re: iptables not logging via syslog-ng

2006-09-11 Thread Justin Piszcz
Also you need the ulogd module loaded or compiled into the kernel. On Mon, 11 Sep 2006, Justin Piszcz wrote: Is your firewall working? Have you tested it? On Mon, 11 Sep 2006, Justin F. Knotzke wrote: Thanks Justin again for the reply.. Here is what I have: justin:/var/log/ulog# cat /et

Re: iptables not logging via syslog-ng

2006-09-11 Thread Justin Piszcz
Is your firewall working? Have you tested it? On Mon, 11 Sep 2006, Justin F. Knotzke wrote: Thanks Justin again for the reply.. Here is what I have: justin:/var/log/ulog# cat /etc/ulogd.conf nlgroup 6 logfile /var/log/ulog/ulogd.log loglevel 1 rmem 131071 bufsize 15 syslogfile /var/log

Re: iptables not logging via syslog-ng

2006-09-11 Thread Justin F. Knotzke
Thanks Justin again for the reply.. Here is what I have: justin:/var/log/ulog# cat /etc/ulogd.conf nlgroup 6 logfile /var/log/ulog/ulogd.log loglevel 1 rmem 131071 bufsize 15 syslogfile /var/log/ulog/syslogemu.log syslogsync 1 plugin /usr/lib/ulogd/ulogd_LOGEMU.so Here are my firewall

Re: iptables not logging via syslog-ng

2006-09-11 Thread Justin Piszcz
You need to DEFINE the log rule. rule123 -j ULOG --ulog-nlgroup 5 --ulog-prefix "LOGGING_BLOCK" rule123 -j DROP # look at the nlgroup = 5 above # netlink multicast group (the same as the iptables --ulog-nlgroup param) nlgroup=5 then, use logemu: # output plugins. plugin="/app/ulogd-1.23/lib/ulo

Re: iptables not logging via syslog-ng

2006-09-11 Thread Justin F. Knotzke
On 9/11/06, Justin Piszcz <[EMAIL PROTECTED]> wrote: Why not use ulogd? That is its purpose, to "log" iptables logs. Good question, I just installed it. Looking at the ulog config file, it appears that it should be logging to /var/log/ulog/ I see the entries indicating that ulog has start

Re: iptables not logging via syslog-ng

2006-09-11 Thread Justin Piszcz
On Mon, 11 Sep 2006, Justin F. Knotzke wrote: Hi, iptables does not log via syslog-ng. There is nothing in kern.log or in syslog.. I have the package's defaut syslog-ng.conf (see below) This is the logging entries for my firewall (monmotha). Any ideas ? Thanks J #These logging chains

iptables not logging via syslog-ng

2006-09-11 Thread Justin F. Knotzke
Hi, iptables does not log via syslog-ng. There is nothing in kern.log or in syslog.. I have the package's defaut syslog-ng.conf (see below) This is the logging entries for my firewall (monmotha). Any ideas ? Thanks J #These logging chains are valid to specify in DROP= above #Set u