Support Requests item #547477, was opened at 2002-04-23 11:30 You can respond by visiting: http://sourceforge.net/tracker/?func=detail&atid=213751&aid=547477&group_id=13751
Category: Release/Branch: Bering Group: None Status: Open Priority: 5 Submitted By: Nobody/Anonymous (nobody) Assigned to: Mike Noyes (mhnoyes) Summary: Log messages. Customize Initial Comment: Hi I am using Bering firewall and I've blocked traffic from my routers port 520. I'm asking what do I have to modify that that 520 port deny's are not logged to messages, cause it only floods that log? Please I've tried to gather that information but not successed. ---------------------------------------------------------------------- >Comment By: Eric Wolzak (ericw) Date: 2002-05-17 20:59 Message: Logged In: YES user_id=15026 Hi, perhaps you made an typeing error. In Bering iptables is used. traffic is not denied ( as with ipchains) but dropped (DROP) or rejected (REJECT) You have to insert a line in the shorewall rules file in wicht you DROP or REJECT all traffic to port 520. If you don't give the log options ( :with loglevel) than this package will not be logged. It leaves the "walking tree" before the logging automatically occurs at the end. If the post is not opened by default, and you made a typo by writing this rule ( DENY) than the rest of the rules is checked, nothing aplies and you and up with an net2all:DROP or all2all:DROP logentry. Hope this answers your questions Info at http://shorewall.net/Documentation.htm#Rules Eriw Wolzak member of the Bering Crew. member of the bering crew ---------------------------------------------------------------------- Comment By: Eric Wolzak (ericw) Date: 2002-05-17 20:59 Message: Logged In: YES user_id=15026 Hi, perhaps you made an typeing error. In Bering iptables is used. traffic is not denied ( as with ipchains) but dropped (DROP) or rejected (REJECT) You have to insert a line in the shorewall rules file in wicht you DROP or REJECT all traffic to port 520. If you don't give the log options ( :with loglevel) than this package will not be logged. It leaves the "walking tree" before the logging automatically occurs at the end. If the post is not opened by default, and you made a typo by writing this rule ( DENY) than the rest of the rules is checked, nothing aplies and you and up with an net2all:DROP or all2all:DROP logentry. Hope this answers your questions Info at http://shorewall.net/Documentation.htm#Rules Eriw Wolzak member of the Bering Crew. member of the bering crew ---------------------------------------------------------------------- Comment By: Eric Wolzak (ericw) Date: 2002-05-17 20:58 Message: Logged In: YES user_id=15026 Hi, perhaps you made an typeing error. In Bering iptables is used. traffic is not denied ( as with ipchains) but dropped (DROP) or rejected (REJECT) You have to insert a line in the shorewall rules file in wicht you DROP or REJECT all traffic to port 520. If you don't give the log options ( :with loglevel) than this package will not be logged. It leaves the "walking tree" before the logging automatically occurs at the end. If the post is not opened by default, and you made a typo by writing this rule ( DENY) than the rest of the rules is checked, nothing aplies and you and up with an net2all:DROP or all2all:DROP logentry. Hope this answers your questions Info at http://shorewall.net/Documentation.htm#Rules Eriw Wolzak member of the Bering Crew. member of the bering crew ---------------------------------------------------------------------- Comment By: Eric Wolzak (ericw) Date: 2002-05-17 20:57 Message: Logged In: YES user_id=15026 Hi, perhaps you made an typeing error. In Bering iptables is used. traffic is not denied ( as with ipchains) but dropped (DROP) or rejected (REJECT) You have to insert a line in the shorewall rules file in wicht you DROP or REJECT all traffic to port 520. If you don't give the log options ( :with loglevel) than this package will not be logged. It leaves the "walking tree" before the logging automatically occurs at the end. If the post is not opened by default, and you made a typo by writing this rule ( DENY) than the rest of the rules is checked, nothing aplies and you and up with an net2all:DROP or all2all:DROP logentry. Hope this answers your questions Info at http://shorewall.net/Documentation.htm#Rules Eriw Wolzak member of the Bering Crew. member of the bering crew ---------------------------------------------------------------------- Comment By: Mike Noyes (mhnoyes) Date: 2002-05-17 16:45 Message: Logged In: YES user_id=39521 Have you looked at our FAQs? Specifically: FAQs sec09: Security & Firewall Questions Answered Why am I getting floods of SYN/ACK packets to my DNS server? http://sourceforge.net/docman/display_doc.php?docid=4715&group_id=13751 Let me know if this information helps. ---------------------------------------------------------------------- You can respond by visiting: http://sourceforge.net/tracker/?func=detail&atid=213751&aid=547477&group_id=13751 _______________________________________________________________ Hundreds of nodes, one monster rendering program. Now that’s a super model! Visit http://clustering.foundries.sf.net/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
