Hi john,
I want to stop it logging to *all* the consoles, and limit it to just one of the virtual consoles if poss, it does log to var/log/messages as well where I run a perl script to check for "naughtiness" so I am covered in that respect, its just a pain with it logging to the console when you want to use the console....
I actually found iptables still logs to the console whatever settings you have in syslogd.conf and /etc/sysconfig/syslog.
I also found iptables still logs to the console even if you kill klogd and syslogd altogether (how bizarre)...
So in the end I modified /etc/sysctl.conf and added this line:
kernel.printk = 3 4 1 7
then did a sysctl -p
and that seems to have done it.... while still logging fully to /var/log/messages
P.
John Logsdon wrote:
Peter
This isn't exactly what you want but for one I can never understand sending things to the console where they just scroll off the top. In the days of computer rooms, slow teletype messages and loads of operators it may have made sense but these days things happen so quickly that you sometimes need to go back and analyse it.
So it is better IMHO to log to a file and tail -f in a shell if you really need the info all the time. For this, try syslog-ng - you can filter the stuff you want right from the socket. So you can make an iptables log file for example and anything else which can be stored of rotated as you wish. It works on my server nicely.
Best wishes
John
John Logsdon "Try to make things as simple Quantex Research Ltd, Manchester UK as possible but not simpler" j.logsdon@quantex-research.com a.einstein@relativity.org +44(0)161 445 4951/G:+44(0)7717758675 www.quantex-research.com
On Wed, 25 May 2005, Peter Farrow wrote:
Hi All,
A few years ago I was asked if I could redirect console messages from Iptables to a different virtual console, on RedHat 7.3 . I managed to do it, but can't remember how I did it, now that the same question has arisen ona Centos 3.4 box.
I edited /etc/syslog.conf and redirected kern.* to /dev/tty2 for example & this didn't work I edited /etc/sysconfig/syslog and modified klogd options with -f /dev/tty2 & this didn't work either
So I stopped syslogd and klogd altogether and iptables still logs to the current console (which ever one you're on).
So my question is, how do I get iptables to redirect its output to another console?
P.
This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email ______________________________________________________________________ _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
______________________________________________________________________ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email ______________________________________________________________________