Hello: I just started using Shorewall this morning and must say that I''m very impressed. Much nicer than what I was using previously. I love the ability to type ''shorewall logdrop ww.xx.yy.zz'' and completely block a particular IP address. However, the log part doesn''t happen. When I look in the logdrop chain, there is no LOG prefix. I''ve looked through the FAQ, the manual pages and Googled. I can''t seem to find anything that seems to explain why. I''m hoping someone here can help. Any advice would be appreciated. Thank you! -- Brian Schang ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword
Brian Schang wrote:> Hello: > > I just started using Shorewall this morning and must say that I''m very > impressed. Much nicer than what I was using previously. > > I love the ability to type ''shorewall logdrop ww.xx.yy.zz'' and > completely block a particular IP address. However, the log part doesn''t > happen. When I look in the logdrop chain, there is no LOG prefix. > > I''ve looked through the FAQ, the manual pages and Googled. I can''t seem > to find anything that seems to explain why. I''m hoping someone here can > help. > > Any advice would be appreciated. Thank you! >What is your setting for BLACKLIST_LOGLEVEL in shorewall.conf? ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword
Shorewall Guy wrote:> Brian Schang wrote: >> Hello: >> >> I just started using Shorewall this morning and must say that I''m very >> impressed. Much nicer than what I was using previously. >> >> I love the ability to type ''shorewall logdrop ww.xx.yy.zz'' and >> completely block a particular IP address. However, the log part doesn''t >> happen. When I look in the logdrop chain, there is no LOG prefix. >> >> I''ve looked through the FAQ, the manual pages and Googled. I can''t seem >> to find anything that seems to explain why. I''m hoping someone here can >> help. >> >> Any advice would be appreciated. Thank you! >> > > What is your setting for BLACKLIST_LOGLEVEL in shorewall.conf?Null... BLACKLIST_LOGLEVEL Does this option need to be set to something in order for logdrop to work? Thanks. -- Brian Schang ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword
Brian Schang wrote:> > Shorewall Guy wrote: >> Brian Schang wrote: >>> Hello: >>> >>> I just started using Shorewall this morning and must say that I''m very >>> impressed. Much nicer than what I was using previously. >>> >>> I love the ability to type ''shorewall logdrop ww.xx.yy.zz'' and >>> completely block a particular IP address. However, the log part doesn''t >>> happen. When I look in the logdrop chain, there is no LOG prefix. >>> >>> I''ve looked through the FAQ, the manual pages and Googled. I can''t seem >>> to find anything that seems to explain why. I''m hoping someone here can >>> help. >>> >>> Any advice would be appreciated. Thank you! >>> >> What is your setting for BLACKLIST_LOGLEVEL in shorewall.conf? > > Null... > > BLACKLIST_LOGLEVEL> > Does this option need to be set to something in order for logdrop to work?Yes. ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword
Shorewall Guy wrote:> Brian Schang wrote: >> Shorewall Guy wrote: >>> Brian Schang wrote: >>>> Hello: >>>> >>>> I just started using Shorewall this morning and must say that I''m very >>>> impressed. Much nicer than what I was using previously. >>>> >>>> I love the ability to type ''shorewall logdrop ww.xx.yy.zz'' and >>>> completely block a particular IP address. However, the log part doesn''t >>>> happen. When I look in the logdrop chain, there is no LOG prefix. >>>> >>>> I''ve looked through the FAQ, the manual pages and Googled. I can''t seem >>>> to find anything that seems to explain why. I''m hoping someone here can >>>> help. >>>> >>>> Any advice would be appreciated. Thank you! >>>> >>> What is your setting for BLACKLIST_LOGLEVEL in shorewall.conf? >> Null... >> >> BLACKLIST_LOGLEVEL>> >> Does this option need to be set to something in order for logdrop to work? > > Yes.Sure enough that worked. Thanks a lot! -- Brian Schang ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword