[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] [Qube2] ICMP IP Filtering

Subject: Re: [cobalt-users] [Qube2] ICMP IP Filtering
From: Mike Vanecek <nospam99@xxxxxxxxxxxx>
Date: Wed May 3 14:17:07 2000
Organization: anonymous

On Wed, 3 May 2000 21:19:57 +1000, Malcolm McLeary <mim@xxxxxxxxxx> wrote:

:>Actually the book focuses on ipchains and it does have a -l option to log 
:>packets which match the criteria.
:>
:>Although the book uses ipchains semantics for all the examples the theory 
:>is "compatible" with ipfwadm (as used on the Qube2) ... Appendix B lists 
:>the worked example for ipfwadm.

Looks interesting. I did find something similar in ipfwadm:

    -o     Turn  on  kernel  logging of matching packets.  When this option
is set for a rule, the Linux kernel will print some information of  all
matching  packets (like  most  IP header fields) via printk().  This option
will only be effective when  the  Linux  kernel  is  compiled  with
CONFIG_IP_FIREWALL_VERBOSE defined.  This option is only valid in combination
with the append, insert or delete command.

How much do you want to bet that the kernel was not compiled with
CONFIG_IP_FIREWALL_VERBOSE defined?  Now I gotta figure out how to find out
what was set when the kernel was compiled?  Even if I find out how to do that
and the kernel was compiled without it defined, then what do I do then?

Only the shadow knows ...

Mike.

Follow-Ups:
- Re: [cobalt-users] [Qube2] ICMP IP Filtering
  - From: Malcolm McLeary

References:
- Re: [cobalt-users] [Qube2] ICMP IP Filtering
  - From: Malcolm McLeary

Prev by Date: Re: [cobalt-users] Log Files Stoped Generating : PLEASE HELP!
Next by Date: [cobalt-users] cannot change server name
Previous by thread: Re: [cobalt-users] [Qube2] ICMP IP Filtering
Next by thread: Re: [cobalt-users] [Qube2] ICMP IP Filtering

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index