On Wed, 15 Mar 2006 20:39:13 -0700, Darrin Chandler wrote: >Rod.. Whitworth wrote: > >>I have about a dozen OpenBSD firewalls "out there" and most of them are >>pretty minimal having a NATted LAN and the only traffic allowed in >>(other than replies to outbound) is ssh. >> >>The pf.confs are pretty much modifications of a template one with just >>the LAN IPs changing. >> >>The changes in /etc/* are also the same for all of them. >> >>Just one is not getting anything in pflog. pflogd is running. >> >> > >Is there an empty /var/log/pflog, or *no* /var/log/pflog? (just guessing)
Empty. It had 24 bytes in it that was dated at install time (last November): # hexdump -C /var/log/pflog 00000000 d4 c3 b2 a1 02 00 04 00 00 00 00 00 00 00 00 00 |TC2!............| 00000010 74 00 00 00 75 00 00 00 |t...u...| 00000018 so I blew it away and did touch /var/log/pflog to create an empty one. Next question? Thanks, >From the land "down under": Australia. Do we look <umop apisdn> from up over? Do NOT CC me - I am subscribed to the list. Replies to the sender address will fail except from the list-server.
