holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

Put real fwlogwatch output in the FAQ

Browse Source 
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
Tom Eastep 2010-03-02 08:18:20 -08:00
parent 55e1124bbe
commit 82bb80cbba
1 changed files with 15 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
docs/FAQ.xml
View File

@ -1210,23 +1210,24 @@ LOGBURST=""</programlisting>
<blockquote>
<programlisting>fwlogwatch summary
Generated Monday March 01 12:05:04 PST 2010 by root.
840 (and 166 older than 86400 seconds) of 1006 entries in 2 input files are packet logs, 178 have unique characteristics.
First packet log entry: Feb 28 12:56:49, last: Mar 01 12:00:38.
Generated Tuesday March 02 08:14:37 PST 2010 by root.
362 (and 455 older than 86400 seconds) of 817 entries in the file "/var/log/ulog/syslogemu.log" are packet logs, 138 have unique characteristics.
First packet log entry: Mar 01 08:16:06, last: Mar 02 08:06:21.
All entries were logged by the same host: "gateway".
All entries have the same target: "-".
Only entries with a count of at least 5 are shown.
net-fw DROP eth0 72 packets from 174.37.159.222 to 76.104.233.98
net-fw DROP eth2 30 packets from 66.249.65.20 to 206.124.146.176
net-fw DROP eth0 22 packets from 85.247.221.191 to 76.104.233.98
net-dmz DROP eth2 18 packets from 60.217.65.115 to 206.124.146.178
net-fw DROP eth2 18 packets from 60.217.65.115 to 206.124.146.180
net-fw DROP eth2 18 packets from 60.217.65.115 to 206.124.146.176
net-fw DROP eth2 18 packets from 60.217.65.115 to 206.124.146.179
net-fw DROP eth0 18 packets from 221.195.73.86 to 76.104.233.98
net-dmz DROP eth2 16 packets from 60.217.65.115 to 206.124.146.177
net-fw DROP eth0 16 packets from 24.30.147.199 to 76.104.233.98
...</programlisting>
net-dmz DROP eth2 36 packets from 61.158.162.9 to 206.124.146.177
net-fw DROP eth0 21 packets from 89.163.162.13 to 76.104.233.98
net-fw DROP eth0 19 packets from 61.184.101.46 to 76.104.233.98
net-fw DROP eth0 12 packets from 81.157.214.103 to 76.104.233.98
net-fw DROP eth0 11 packets from 174.37.159.222 to 76.104.233.98
net-fw DROP eth0 10 packets from 221.195.73.86 to 76.104.233.98
net-dmz DROP eth2 9 packets from 202.199.158.6 to 206.124.146.177
net-fw DROP eth2 9 packets from 202.199.158.6 to 206.124.146.176
net-dmz DROP eth2 9 packets from 202.199.158.6 to 206.124.146.178
net-fw DROP eth0 6 packets from 221.192.199.35 to 76.104.233.98
net-fw DROP eth2 5 packets from 61.158.162.9 to 206.124.146.177</programlisting>
</blockquote>
<para>Fwlogwatch contains a built-in web server that allows monitoring