iptables log

[k]

where can i find log file after this rule?

iptables -A INPUT -s 0/0 -d 0/0 -j LOG

thc a lot

[Brett E. Dufault]

On Sunday 06 October 2002 03:02 am, k wrote:

> where can i find log file after this rule?
>
> iptables -A INPUT -s 0/0 -d 0/0 -j LOG

iptable logging typically goes to /var/log/messages.

Cheers!
--Brett

[Antoine EMERIT]

Try 'dmesg' or 'cat /var/log/kern/log'

or search 'kern.*' in the /etc/syslogd.conf

from 'man iptables' :

"When this option is set for a rule, the Linux kernel will print some
information on all matching packets (like most IP header fields)
via the kernel log (where it can be read with dmesg or syslogd(8))."

[Raqueeb Hassan]

best way to find out is to go in deeper with /var/log/messages ....
you may grep the filtered output!

raqueeb hassan
bangladesh

[Peter B. Steiger]

on 07 Oct 2002, Antoine EMERIT sez:
> Try 'dmesg' or 'cat /var/log/kern/log'
> or search 'kern.*' in the /etc/syslogd.conf

Is there a way (short of modifying the source and recompiling) to redirect
iptables messages to a different file? My messages file and dmesg ring are
getting so cluttered with packet drop & reject messages that it's
impossible to find anything else in them. I guess I could configure
syslogd.conf to route all kern.* messages to another file, but of course
then I'd be moving all messages, not just iptables, elsewhere. I guess
what I'm asking is, can I direct iptables messages to another facility,
such as local0?

--
Peter B. Steiger
Cheyenne, WY

If you reply by email, send it to pbs at com dot
canada (or vice-versa). All advertisements will be
returned to your postmaster, eh!