Re: [pfSense-discussion] Re: Logging on to a syslog server
On 11/10/06, Marcus Bajohr [EMAIL PROTECTED] wrote: Sanjay Arora wrote: I wish to enable logging of events onto a syslog server on the LAN segment. Can somebody tell me about the security operational issues involved? e.g. - Do I introduce any security vulnerability in selecting logging on to a remote syslog server? on the LAN segment? - What security precautions should be taken? Should the syslog server be firewalled individually? For that matter, should the servers on the LAN segment be firewalled individually? Any Pointers to further reading on this issue?search the web for syslog security - What happens if the network link to the syslog server is interrupted for some time? Any way of implementing dual logging i.e. on pf-sense machine and the syslog server? Any pointers to existing implementations?syslog-ng is a very nice package that has a lot of knobs that can be tweaked. It also has the hooks for postgres and mysql backends and php frond end for display. A good starting point is here: http://www.campin.net/syslog-ng/faq.html Or maybe any backend software that imports pfsense logs on to a database for further processing in realtime or near realtime?If the link to the remote syslog is interrupted, you'll get muchmessages like this: ...Nov 10 02:01:56 last message repeated 10 timesNov 10 02:01:25 syslogd: sendto: Host is down...the internal syslog still continue to workafaik the syslog in pfSense is a rolling log, so publishing the logs via a remote syslogserver will be the best Any other pointers or comments on various issues involved. With best regards. Sanjay.greets, marcus
Re: [pfSense-discussion] NAT on tun0 used with OpenVPN
It will be available to add as an interface after you establish the vpn. Once you have done that it will work like any other nat config.On 12 Nov 2006, at 21:29, Stefan Tunsch wrote: Hi! I need to set up outbound natting on tun0. tun0 is the virtual interface created and used by an OpenVPN client on my pfSense machine. This interface (tun0) isn't available for creating rules, NAT, etc on the web interface of pfSense. How can I set up outbound NATTING for this interface? Regards, Stefan
RE: [pfSense-discussion] NAT on tun0 used with OpenVPN
The issue is that it is NOT available after establishing the vpn. What can be the reason for this? Can it have something to do with usingthe Live-CD version? De: Scott Roeder [mailto:[EMAIL PROTECTED] Enviado el: domingo, 12 de noviembre de 2006 22:33Para: discussion@pfsense.comAsunto: Re: [pfSense-discussion] NAT on tun0 used with OpenVPN It will be available to add as an interface after you establish the vpn. Once you have done that it will work like any other nat config. On 12 Nov 2006, at 21:29, Stefan Tunsch wrote: Hi! I need to set up outbound natting on tun0. tun0 is the virtual interface created and used by an OpenVPN client on my pfSense machine. This interface (tun0)isn't available for creating rules, NAT, etc on the web interface of pfSense. How can I set up outbound NATTING for this interface? Regards, Stefan --No virus found in this incoming message.Checked by AVG Free Edition.Version: 7.1.409 / Virus Database: 268.14.3/530 - Release Date: 11/11/2006 -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.409 / Virus Database: 268.14.3/530 - Release Date: 11/11/2006
