Displaying 20 results from an estimated 1000 matches similar to: "Want to log all ISP traffic to ULOG"
2004 Jul 23
4
shorewall 2.0.3a, (ULOG) doesn''t log anything
Dear all:
Im using shorewall 2.0.3a (debian) w/ ULOG. shorewall starts ok, and the
firewall is running, but nothing is printed on the logs.
I try, for example, to do a connection to a port that is opened on the
server but closed by the FW and I get a connection refused. If I stop
the firewall, this port is accesible from the outside.
I think I''ve followed all the steps on
2004 Aug 08
1
using ULOG
hi,
if i would like to use ulog (in order to split netfilter messages from
other kernel messages), than i have to set all loglevel to ULOG? and
then is there any way to define diferent loglevel for eg. maclist?
thanks in advance.
yours.
ps. it''s a bit confusing that all loglevel parameter name is LOG_LEVEL
except BLACKLIST_LOGLEVEL:-(
--
Levente
2009 Feb 24
3
cisco netflow analyzer?
Pp
------Original Message------
From: nate
Sender: centos-bounces at centos.org
To: CentOS Mailing list
ReplyTo: CentOS Mailing list
Sent: Feb 23, 2009 8:13 PM
Subject: Re: [CentOS] cisco netflow analyzer?
Robinson Tiemuqinke wrote:
> Anyone knows any Cisco netflow analyzer that could run on Linux/Windows? I
> know that cisco ASDM works at somewhat level but too rough...
>
> For
2004 Feb 01
4
Shorewall 2.0.0 Alpha2
http://shorewall.net/pub/shorewall/Alpha/shorewall-2.0.0
ftp://shorewall.net/pub/shorewall/Alpha/shorewall-2.0.0
See if this change to proxy arp is more palatable.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
2010 Jul 28
4
Re: Shorewall-users Digest, Vol 50, Issue 25
On 28/07/2010 15:45, shorewall-users-request@lists.sourceforge.net wrote:
> On 7/28/10 1:50 AM, Andrea Perdicchia wrote:
>
>> > Hi all,
>> > Is possible log mac address in shorewall?
>> > I try all configuration "debug,info..." in /etc/shorewall/shorewall.conf
>> > but in /var/log/messages the log show only few information and not mac
2007 Dec 18
11
Shields-Up Scan of Shorewall Firewall
Guys,
After i got the port forwarding and everything else
working as per my previous post, i ran a shields-up
scan from grc.com on the firewall, i.e. a scan of the
external interface.
I m a little suprised at the results. On the firewall
i have postfix running ( smtp port 26 ), openssh ( ssh
port 22) and port forwarding of port 85 (on the
firewall ) to an internal host.
The Shields-Up scan
2004 Nov 22
2
realtime trafic monitor
ok .. a use iptraf, but iptraf show my evry connection from computerX:
84.135.15.81:4899 > 163 7940 --A- eth0 ?
82.77.210.7:3475 > 212 323323 -PA- eth0 ?
62.231.96.133:80
2004 Feb 17
12
Metalog and Shorewall
Hi Tom and list,
Still trying to set up Shorewall logging. I understand that Shorewall require syslog to get logging working, however I have metalog. Is this
possible to use metalog as logging facility for Shorewall? I was reading
http://www.shorewall.net/shorewall_logging.html and it describes other
method ( ULOG ). I understand that I have to compile ULOG support in the
kernel... where do I
2008 Mar 26
8
Hub/Spoke OpenVPN can't communicate from Client A to Client B - FORWARD:REJECT:IN=tun0 OUT=tun0
Hi, I am running OpenVPN where i have one central hub VPN server, and multiple spoke VPN clients. I can ping from each client to the server and each client to computers on the subnet which the server resides (192.168.2.0/24) so it works ok there. I cannot however, ping from one client to another client. I guess the packet path would go:
clienta -> vpn -> shorewall/router -> vpn ->
2007 Dec 14
6
kernel panic with shorewall
I have an old Pentium II which I use as a gateway and firewall
for a home network. The external interface is a modem on ppp and the
internal interface is ethernet. I have had this setup running
successfully for many years starting with the early 2.x series
Shorewall.
My ISP recently changed my dial-up ''phone number and presumably also
the system at the other end of my modem (they
2008 Mar 30
7
FTP DNAT not working - "Server sent passive reply with unroutable address"
Hi all!
I am a long time lurker, but have not posted until now.
My old trusted firewall machine broke a couple of weeks ago and I replaced it
with a XEN domU that is using DNAT and has two interfaces. The firewall domU and
the FTP server domU are both guests on the same dom0. All three machines are
running Debian/etch (stable) and Shorewall has version 3.2.6.
I can''t get FTP to work
2004 Dec 16
9
Some help for a beginner please: terser logging
Dear newfound friends,
please be patient. For me reading and writing in English is more painful
than dissecting IP traces :)
I have tried reading through the FAQ but could not quite understand:
I would like the logs to be terser. I think I can live without MAC, LEN,
TOS, PREC, TTL, ID fields normally (maybe need them only in special
situations). Could not understand if/how I can achieve this.
2002 Mar 17
2
ulog support in shorewall?
Hi,
I''ve just recently switched off my (lame) hardware firewall onto an
old box running linux 2.4.18, iptables 1.2.6 and shorewall 1.2.9. I''m
kinda new to linux firewalling myself but so far Shorewall has taken
much work from me.
While reading myself into iptables I saw that just recently something
called ULOG (userspace logging) has been implemented in newer kernels
and
2009 Aug 25
1
[PATCH] A default log level of ULOG is ignored by the shorewall-perl compiler (but not by shorewall-shell)
Hello,
I tried Shorewall for the first time today. I am currently using an up-to-date
installation of Debian Sid, which has shorewall 4.2.10, shorewall-shell 4.2.10
and shorewall-perl 4.2.10.1.
I noticed that even though I had the following /etc/shorewall/policy file,
iptables would still show LOG rules at the end of the INPUT and OUTPUT chains
instead of ULOG rules. (Other logging related rules
2006 Jan 02
1
routing- multiple net provider, tcp logging
Hi all,
Is any way to logs tcp connection (not packets)? something like this:
src_IP dst_Ip, srcPort, dst_port bytes_send bytes_received?
Any netfilter extension?
2 issue:
eth0------- connection 1
NET ---------gw (linux)
eth1--------connection 2
Real bandwitch on connection 1 and connection 2 is depend on different
things
2005 Jan 07
5
ULOG weirdness with 2.0.10
I''m noticing some weirdness in my ulog files with version 2.0.10. Here
is a portion of the log:
Jan 7 11:01:37 rancor Shorewall:loc2fw:AllowWOL: IN=eth1 OUT=
MAC=ff:ff:ff:ff:ff:ff:00:0a:95:b2:11:4c:08:00 SRC=192.168.0.100
DST=192.168.0.255 LEN=97 TOS=00 PREC=0x00 TTL=64 ID=44155 CE PROTO=UDP
SPT=631 DPT=631 LEN=77
Jan 7 11:01:39 rancor Shorewall:loc2fw:AllowWOL: IN=eth1 OUT=
2003 Aug 31
4
linux-ha heartbeat .. failover firewall
I have searched your FAQ''s and read the documentation on your site as well
as googling. I am not able to figure this out. If you have any ideas can
you please help.
I am using the linux-ha failover with redundant firewalls.
As part of the function of the linux-ha software consists a service called
heartbeat which is a connection from each failover node through a serial
cable or ethernet.
2014 Nov 07
7
[Bug 986] New: ulogd fails to build against linux headers >= 3.17.0 due to ULOG target removal
https://bugzilla.netfilter.org/show_bug.cgi?id=986
Bug ID: 986
Summary: ulogd fails to build against linux headers >= 3.17.0
due to ULOG target removal
Product: ulogd
Version: SVN (please provide timestamp)
Hardware: x86_64
OS: Gentoo
Status: NEW
Severity: major
Priority:
2011 Sep 13
1
[Bug 748] New: Range check for ulog-cprange is wrong
http://bugzilla.netfilter.org/show_bug.cgi?id=748
Summary: Range check for ulog-cprange is wrong
Product: iptables
Version: unspecified
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P5
Component: iptables
AssignedTo: netfilter-buglog at lists.netfilter.org
ReportedBy:
2013 Aug 31
23
ERROR: Log level INFO requires LOG Target in your kernel and iptables
Hi,
I have 2 Debian testing boxes running a very similar setup (both running
the latest aptosid kernel); on one of them, since the
iptables/libxtables10 packages have been upgraded from 1.4.19.1-1 to
1.4.20-2, shorewall-init can''t start shorewall anymore and for this
reason ifupdown also fails triggering firewall up.
Shorewall can be successfully started later on, and ifupdown starts