From 82bb80cbba730fcd0e3208be97821a1c6b0de4ad Mon Sep 17 00:00:00 2001
From: Tom Eastep <teastep@shorewall.net>
Date: Tue, 2 Mar 2010 08:18:20 -0800
Subject: [PATCH] Put real fwlogwatch output in the FAQ

Signed-off-by: Tom Eastep <teastep@shorewall.net>
---
 docs/FAQ.xml | 29 +++++++++++++++--------------
 1 file changed, 15 insertions(+), 14 deletions(-)

diff --git a/docs/FAQ.xml b/docs/FAQ.xml
index f4281c7d8..ca99a8e00 100644
--- a/docs/FAQ.xml
+++ b/docs/FAQ.xml
@@ -1210,23 +1210,24 @@ LOGBURST=""</programlisting>
 
         <blockquote>
           <programlisting>fwlogwatch summary
-Generated Monday March 01 12:05:04 PST 2010 by root.
-840 (and 166 older than 86400 seconds) of 1006 entries in 2 input files are packet logs, 178 have unique characteristics.
-First packet log entry: Feb 28 12:56:49, last: Mar 01 12:00:38.
+Generated Tuesday March 02 08:14:37 PST 2010 by root.
+362 (and 455 older than 86400 seconds) of 817 entries in the file "/var/log/ulog/syslogemu.log" are packet logs, 138 have unique characteristics.
+First packet log entry: Mar 01 08:16:06, last: Mar 02 08:06:21.
 All entries were logged by the same host: "gateway".
 All entries have the same target: "-".
+Only entries with a count of at least 5 are shown.
 
-net-fw DROP  eth0 72 packets from 174.37.159.222 to 76.104.233.98
-net-fw DROP  eth2 30 packets from 66.249.65.20 to 206.124.146.176
-net-fw DROP  eth0 22 packets from 85.247.221.191 to 76.104.233.98
-net-dmz DROP  eth2 18 packets from 60.217.65.115 to 206.124.146.178
-net-fw DROP  eth2 18 packets from 60.217.65.115 to 206.124.146.180
-net-fw DROP  eth2 18 packets from 60.217.65.115 to 206.124.146.176
-net-fw DROP  eth2 18 packets from 60.217.65.115 to 206.124.146.179
-net-fw DROP  eth0 18 packets from 221.195.73.86 to 76.104.233.98
-net-dmz DROP  eth2 16 packets from 60.217.65.115 to 206.124.146.177
-net-fw DROP  eth0 16 packets from 24.30.147.199 to 76.104.233.98
-...</programlisting>
+net-dmz DROP  eth2 36 packets from 61.158.162.9 to 206.124.146.177
+net-fw DROP  eth0 21 packets from 89.163.162.13 to 76.104.233.98
+net-fw DROP  eth0 19 packets from 61.184.101.46 to 76.104.233.98
+net-fw DROP  eth0 12 packets from 81.157.214.103 to 76.104.233.98
+net-fw DROP  eth0 11 packets from 174.37.159.222 to 76.104.233.98
+net-fw DROP  eth0 10 packets from 221.195.73.86 to 76.104.233.98
+net-dmz DROP  eth2 9 packets from 202.199.158.6 to 206.124.146.177
+net-fw DROP  eth2 9 packets from 202.199.158.6 to 206.124.146.176
+net-dmz DROP  eth2 9 packets from 202.199.158.6 to 206.124.146.178
+net-fw DROP  eth0 6 packets from 221.192.199.35 to 76.104.233.98
+net-fw DROP  eth2 5 packets from 61.158.162.9 to 206.124.146.177</programlisting>
         </blockquote>
 
         <para>Fwlogwatch contains a built-in web server that allows monitoring