jdd wrote:
Le 05/12/2014 17:45, Per Jessen a écrit :
Really, it is very easy. I have never had the problem with my own iptables firewall.
sorry, but if your solution is easy, what is a difficult one? I don't understand it at all.
It's not really my solution, it's simply the default syslog-ng config in openSUSE :
filter f_iptables { facility(kern) and message("IN=") and message("OUT="); };
facility-kernel and message contains "IN=" and message contains "OUT=".
destination firewall { file("/var/log/firewall" suppress(30)); };
A destination definition.
log { source(src); source(chroots); filter(f_iptables); destination(firewall); };
log messages that match filter to destination.
filter f_messages { not facility(news, mail) and not filter(f_iptables); };
for the general /var/log/messages logfile, do not include the firewall m,essages. -- Per Jessen, Zürich (4.2°C) http://www.hostsuisse.com/ - virtual servers, made in Switzerland. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org