pf not logging on 5.3-BETA3 ?
Max Laier
max at love2party.net
Thu Sep 16 12:27:06 PDT 2004
On Thursday 16 September 2004 21:19, Thomas T. Veldhouse wrote:
> Bruno Afonso wrote:
> > Thomas T. Veldhouse wrote:
> >> Max Laier wrote:
> >>> Okay, have you guys read UPDATING?
> >>
> >> Yes, but it is from a BETA3 install ... so the user/group was already
> >> their. Besides, installworld will fail unless this group is added
> >> first.
> >
> > Did you do "mergemaster -p" ?
>
> Yes. But like I said, it is not required to move from 5.3-BETA3 to
> RELENG_5 as the changes in master.passwd and group are already there.
> If they were not, an installworld would fail because the chown or chgrp
> commands fail trying to set the user or group to _pflogd or authpf (group).
>
> In any event, my passwd and group file are indeed up to date and
> /var/log/pflog broken (no logging taking place).
>
> fuggle# ps aux | grep pf
> root 340 0.0 0.3 1584 612 ?? Ss 3:05PM 0:00.01 pflogd:
> [priv] (
> _pflogd 343 0.0 0.3 1648 652 ?? S 3:05PM 0:11.14 pflogd:
> [running
> root 21395 0.0 0.1 440 224 p1 R+ 2:18PM 0:00.00 grep pf
Are you sure that you have logging rules in place? And are you sure that these
rules are matched? Please attach the output of "$pfctl -vvsr" if in doubt.
Also, are you using the module or did you build pf into your kernel directly?
Did you put in "device pflog" as well? What does "$ifconfig pflog0" say?
--
/"\ Best regards, | mlaier at freebsd.org
\ / Max Laier | ICQ #67774661
X http://pf4freebsd.love2party.net/ | mlaier at EFnet
/ \ ASCII Ribbon Campaign | Against HTML Mail and News
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-pf/attachments/20040916/1de3e386/attachment.bin
More information about the freebsd-pf
mailing list