Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

SuSE firewall and syslog.conf

Posted on 2004-09-03
5
Medium Priority
?
658 Views
Last Modified: 2013-12-15
my firewall seems to be filling up all sorts of log files that i don't want it in.  okay, so that's a bit of hyperbole, but the firewall messages are showing up in /var/log/messages, /var/log/warn and /var/log/firewall.  (i don't know if it makes any difference, but it's SuSE 8.0 running kernel 2.4.18.)

i'd like to drop the loggin to messages and warn and leave everything in firewall, but i'm not sure what to do with my syslog.conf file.  below are the lines from syslog.conf that mention the three files in question:
*.=warn;*.=err                  -/var/log/warn
*.crit                           /var/log/warn
*.*;mail.none;news.none;authpriv.none;auth.none         -/var/log/messages
kern.*          -/var/log/firewall

i'm not worried about errant kernel messages appearing in the firewall file - they only account for about 1.5% of the messages.  i've found websites saying that the firewall logs to kern.=info and kern.=debug.  what about boot messages (the other 1.5% of the firewall file) - what log level do they get passed through?

thanks!
kevin
0
Comment
Question by:kevincasey
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 2

Author Comment

by:kevincasey
ID: 12105701
any suggestions?  anyone?
0
 

Expert Comment

by:azcoffeehabit
ID: 12148332
Hi,

   If you are running a gui based firewall configuration program look for the logging directive for the individual firewall rules that you do not want to see and disable the logging.  

PKG
0
 
LVL 2

Author Comment

by:kevincasey
ID: 12162320
i'm not using a gui based tool.  i'm doing this by hand.

i ended up hacking this one together myself.  since i couldn't figure out what level the firewall was logging at, i ended up dumping all the kernel messages into the firewall log.  the two lines i ended up editing are below:

*.*;kern,mail,news,authpriv,auth.none           -/var/log/messages
kern.*          -/var/log/firewall
0
 
LVL 1

Accepted Solution

by:
DarthMod earned 0 total points
ID: 15749341
PAQed with points (300) refunded

DarthMod
Community Support Moderator
0

Featured Post

Enroll in September's Course of the Month

This month’s featured course covers 16 hours of training in installation, management, and deployment of VMware vSphere virtualization environments. It's free for Premium Members, Team Accounts, and Qualified Experts!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Network Interface Card (NIC) bonding, also known as link aggregation, NIC teaming and trunking, is an important concept to understand and implement in any environment where high availability is of concern. Using this feature, a server administrator …
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
Suggested Courses

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question