Ivan Petrushev a écrit :
Hello Thomas,
I'm recieving an error:
# ifconfig plog1 create
ifconfig: SIOCIFCREATE2: Invalid argument
and I can't see anything in 'man ifconfig' related to the pflog device.
I think it's just a typo: you forgot the 'f' in pflog1...;)
Martin
Regards, Ivan
On Wed, Jul 23, 2008 at 11:57 PM, Thomas Rasmussen <[EMAIL PROTECTED]> wrote:
Ivan Petrushev wrote:
Hi Jon,
Aaahhh, I see now - these FROM rules must be TO rules :D
Thank you both for your replies.
I'm going to monitor the outbond connections as well, but I think I
will be OK then. This was the little stone in the shoe.
I've already managed to let ICMP trough that 'block all' ;)
Btw, I like the way pflog is working - deploying tcpdump on pflog0 and
track down the logged packets. Is there a way to create another pflog
device and use it for some different rules? I've seen there is an
option to the 'log' keyword - (to pflogX), but I didn't managed to
find out how to create more pflog devices.
Regards,
Ivan.
Hello,
To create another pflog interface do:
ifconfig pflog1 create
And to create it at boot time add:
cloned_interfaces="pflog1"
to /etc/rc.conf
Regards
Thomas
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
