Modify

Opened 9 years ago

Closed 7 years ago

Last modified 4 years ago

#5420 closed enhancement (obsolete)

Firewall logging

Reported by: Daniel Dickinson <crazycshore@…> Owned by: developers
Priority: normal Milestone: Barrier Breaker 14.07
Component: base system Version:
Keywords: Cc:

Description

There should be a way to log blocked packets for the overall firewall, and for each section that has a default policy

Attachments (0)

Change History (4)

comment:1 Changed 9 years ago by marca56@…

It would also be useful to have some simple filtering mechanism in the log; for example, filtering on SIP or RTP can help diagnose IP PBX issues with the firewall or SIP trunk connectivity problems.

marc.

comment:2 Changed 7 years ago by markus_kubler@…

You can end any chain (default or custom) with something like:
$IPT -A INPUT_lan -j LOG --log-prefix "IPT_lan-Rej "
$IPT -A INPUT_lan -j REJECT

This means that any packet which doesn't match your earlier rules in the chain, will be logged and then rejected. Use with custom chains to log desired packets. Use whatever you like instead of the "IPT-lan-Rej ". Then use "syslog | grep ..." and rejoice.

=> closed

comment:3 Changed 7 years ago by nbd

  • Resolution set to obsolete
  • Status changed from new to closed

comment:4 Changed 4 years ago by jow

  • Milestone changed from Attitude Adjustment 12.09 to Barrier Breaker 14.07

Milestone Attitude Adjustment 12.09 deleted

Add Comment

Modify Ticket

Action
as closed .
The resolution will be deleted. Next status will be 'reopened'.
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.