as mentioned a few times before in this list syslog-ng will do that. http://www.balabit.hu/en/downloads/syslog-ng/
regards, Alex ----- Original Message ----- From: "John Jones" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, April 19, 2002 8:37 AM Subject: Re: Logging to unique file > But what else will be pushed into that file? I would like a file -just- for > the firewall messages, so I can write a script to glean through it and find > out what is being trapped by my end-of-chain LOG messages that describe what > is being dropped. > > > ----- Original Message ----- > From: "Bailey Kong" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Cc: <[EMAIL PROTECTED]> > Sent: Friday, April 19, 2002 8:21 AM > Subject: Re: Logging to unique file > > > > you need to edit /etc/syslog.conf > > if you want all kernel messages logged to that file, add or edit > > > > #kern.* /dev/console > > > > to > > > > kern. /var/log/firewall > > > > if you have a specific kernel level that you want to log to the firewall > > file, for example lets take kernel level notice add or edit > > kern.notice /var/log/firewall > > > > hope this helps, if i did something wrong fillfree to correct me > > > > Best Regards > > Bailey > > > > John Jones said: > > > How does one change syslog.conf to pipe iptables output to a unique > > > file, say /var/log/firewall ? > > > > > > What I mean to ask, what kind of messages are these being generated by > > > iptables' -L option? > > > > > > > > > >
