Subject: Re: Prepend to log prefix - msg#00003

Previous Message by Date:

Prepend to log prefix

Hi there, Is there something I can do in a FireHOL config file to prepend arbitrary text to the LOG prefix that FireHOL automatically adds for generated "end of chain" rules? I like to use something like "NETFILTER: ", and then match that text string in syslog-ng, to ensure that all firewall log messages go to a single file that contains no other log messages. I would prefer not to have to specify this in every single configuration rule; I'd like to set some global value. I'm using firehol-1.226. Ciao, Sheldon. ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click

Next Message by Date:

Re: Re: Prepend to log prefix

Thanks. However you can install ulogd and turn firehol log mode to ulog. Ulogd generates a separate configuration file just for iptables, it has minimum system requirements and requires minimum configuration. You just install it and forget all about it... Regards, Costa On Mon, April 18, 2005 0:40, Sheldon Hearn said: > On Sun, 2005-04-17 at 20:09 +0200, Sheldon Hearn wrote: > >> Is there something I can do in a FireHOL config file to prepend >> arbitrary text to the LOG prefix that FireHOL automatically adds for >> generated "end of chain" rules? > > Here's a patch against firehol-1.226 that demonstrates what I was > looking for. With this patch applied, I can add this to my firehol.conf > for convenient log filtering with syslog-ng: > > FIREWALL_LOG_PREFIX="firewall: " > > Cioa, > Sheldon. > > ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_ide95&alloc_id396&op=click

Previous Message by Thread:

Prepend to log prefix

Hi there, Is there something I can do in a FireHOL config file to prepend arbitrary text to the LOG prefix that FireHOL automatically adds for generated "end of chain" rules? I like to use something like "NETFILTER: ", and then match that text string in syslog-ng, to ensure that all firewall log messages go to a single file that contains no other log messages. I would prefer not to have to specify this in every single configuration rule; I'd like to set some global value. I'm using firehol-1.226. Ciao, Sheldon. ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click

Next Message by Thread:

Re: Re: Prepend to log prefix

Thanks. However you can install ulogd and turn firehol log mode to ulog. Ulogd generates a separate configuration file just for iptables, it has minimum system requirements and requires minimum configuration. You just install it and forget all about it... Regards, Costa On Mon, April 18, 2005 0:40, Sheldon Hearn said: > On Sun, 2005-04-17 at 20:09 +0200, Sheldon Hearn wrote: > >> Is there something I can do in a FireHOL config file to prepend >> arbitrary text to the LOG prefix that FireHOL automatically adds for >> generated "end of chain" rules? > > Here's a patch against firehol-1.226 that demonstrates what I was > looking for. With this patch applied, I can add this to my firehol.conf > for convenient log filtering with syslog-ng: > > FIREWALL_LOG_PREFIX="firewall: " > > Cioa, > Sheldon. > > ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_ide95&alloc_id396&op=click