limited logging when using limit
Arvinn Løkkebakken
arvinn at sandakerveien.net
Wed Oct 5 02:03:25 PDT 2005
Andrey V. Elsukov wrote:
> Arvinn wrote:
>
>> ipfw add pipe 5 log tcp from 200.0.0.0/7 to me dst-port 25 limit
>> src-addr 2
>> ipfw add allow log tcp from any to me dst-port 25 limit src-addr 10
>>
>> All I get in syslog is:
>> Sep 30 11:14:40 hostname drop session, too many entries
>
>
> You can try this patch. ipfw will be logging a session drops like
> following:
>
> Oct 4 14:15:44 hostname kernel: ipfw: drop session, too many entries
> (by rule 200)
Thank you very much. The patch worked like a charm. Is there any easy
way to add src-ip/port and dst-ip/port too though?
Arvinn
More information about the freebsd-ipfw
mailing list