sixx wrote:
>
> Hi there,
>
> Just a repost and reword, I'm still wondering if there's a way to log
> ALL ports/traffic and NOT log those known ports?
>
> if (port!=22 || port!=80 || port!=110 || ...) {
> log;
> }
>
That will log EVERYTHING. What you want is:
if !(port=22 || port=80 || port=110 || ...) {
log;
|
Or, conversely,
if (port!=22 && port!=80 && port!=110 & ...) {
log;
}
Now implement those. It will work.
--Yan
--
Famous first words: My, my, my, my, my!
Jason, age 16 mos, to his older sister
spam killer code kpwq1jkcsEzdx39gnkVvgycd15ayqq
