Is there a way to limit or control the logging with SuSEfirewall2? I have left the firewall configuration at the default, which is; FW_LOG_DROP_CRIT="yes" # FW_LOG_DROP_ALL="no" # FW_LOG_ACCEPT_CRIT="yes" # FW_LOG_ACCEPT_ALL="no" # # only change/activate this if you know what you are doing! FW_LOG="--log-level warning --log-tcp-options --log-ip-option --log-prefix SuSE-FW" The problem is that after I setup squid to do transparent caching; FW_REDIRECT="10.0.1.0/24,0/0,tcp,80,3128" My log file is recording every access, quickly creating very large log files; Dec 30 21:22:02 comp kernel: SuSE-FW-ACCEPTIN=eth1 OUT= MAC=00:20:35:5e:6e:01:00:a0:c9:5a:ed:44:08:00 SRC=10.0.1.17 DST=10.0.1.1 LEN=48 TOS=0x08 PREC=0x00 TTL=128 ID=22019 DF PROTO=TCP SPT=1106 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405B401010402) Dec 30 21:22:02 comp kernel: SuSE-FW-ACCEPTIN=eth1 OUT= MAC=00:20:35:5e:6e:01:00:a0:c9:5a:ed:44:08:00 SRC=10.0.1.17 DST=10.0.2.1 LEN=48 TOS=0x08 PREC=0x00 TTL=128 ID=23555 DF PROTO=TCP SPT=1107 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405B401010402) How is it that every access is logged as CRITical? Is it because it is going to port 3128? How does SuSEfirewall2 and/or ipchains determine what is crtical? How can I tell them that things going to 3128 are ok, no need to log the info?