IPTables Logging information.

Marcos Aurelio Rodrigues deigratia33 at gmail.com
Wed May 14 11:10:16 UTC 2008 

i not sure but i think ulog may solve your problem

http://www.netfilter.org/projects/ulogd/index.html

-- 
========================================
Marcos Aurelio Rodrigues (DEiGrAtiA-33)
<deigratia33 at gmail.com>
CCNA, MCSO, Security+
Mirabilia laudo semprer, Dei
========================================

On Wed, May 14, 2008 at 6:13 AM, Nirmal Pathak <nirmal.pathak at gmail.com>
wrote:

> Hi Paul,
>
> Thanks for reply.
>
> I think you are right. I tried so google & read few man pages but couldn't
> find what I was looking for.
> So I belive external tools can only help me for this!
>
> On Wed, May 14, 2008 at 2:27 PM, Paul Malinowski <
> pmalinowskieu at yahoo.co.uk>
> wrote:
>
> > Hi Nirmal,
> >
> >  I'm afraid that LOG target is limited, I couldn't even find a way to
> > change logging facility.
> >
> >  It might be a good idea to google for some tool which can do that for
> > you. Alternatively you can use scripting for that purpose.
> >
> >  Please note that in corporate network you have less then a 30 services
> > which are being used.
> >
> >  Kind Regards,
> >  Paul Malinowski
> >
> > Nirmal Pathak <nirmal.pathak at gmail.com> wrote:
> >  Hi,
> >
> > I am looking for something that would indicate the packet type in the
> log
> > without me having to refer to /etc/services for each entry.
> >
> > An example of what I'd like to see would be:
> >
> > May 5 09:28:58 ws4 kernel: Dropped from INPUT chain IN=eth0 OUT=
> > MAC=ff:ff:ff:ff:ff:ff:00:06:5b:8f:f5:99:08:00 SRC=192.168.251.98 DST=
> > 192.168.251.255 LEN=78 TOS=0x00 PREC=0x00 TTL=128 ID=18370 PROTO=UDP
> > SPT=137
> > DPT=137 DPTDESC=NETBIOS Name Service LEN=58
> >
> > In terms of the fictional DPTDESC output, will iptables do something
> like
> > this?
> >
>
> Have Fun.
> --
> Nirmal D Pathak.
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> I was born free!
> No Gates and Windows can restrict my Freedom!!
>
> Enjoy Linux!
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>

More information about the redhat-list mailing list