Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have configured iptables to log all traffic. In syslog it is configured to log this to another file, its working fine. but syslog is populating two files "messages and iptables.log" .
I have configured iptables to log all traffic. In syslog it is configured to log this to another file, its working fine. but syslog is populating two files "messages and iptables.log" .
i think the only difference in my setup to yours is the order, but i doubt that even matters
Code:
# Log all kernel messages to the console.
# Logging much else clutters up the screen.
#kern.* /dev/console
# Log anything (except mail) of level info or higher.
# Don't log private authentication messages!
*.info;mail.none;authpriv.none;cron.none;local0.none /var/log/messages
# The authpriv file has restricted access.
authpriv.* /var/log/secure
# Log all the mail messages in one place.
mail.* -/var/log/maillog
# Send iptables LOGDROPs to /var/log/iptables
kern.=debug /var/log/iptables
# Log cron stuff
cron.* /var/log/cron
# Everybody gets emergency messages
*.emerg *
# Save news errors of level crit and higher in a special file.
uucp,news.crit /var/log/spooler
# Save boot messages also to boot.log
local7.* /var/log/boot.log
# router logs here
local0.* /var/log/02.log
all iptables messages log to either dmesg or /var/log/iptables only.
Yes restarted syslog every time after making changes to syslog.conf but Not solved. when setting up to
kern.=debug
don't logs in /var/log/iptables.log but logs goes to /var/log/messages.
this can be, use of iptable --log-level 4.
so i revert back to
kern.=warning now logging to both files.
thanks
oh sorry...think you misunderstood.
when i said change to kern.=debug i also meant the log level on iptables.
iptables --log-level 7 which equates to debugging.
Never mind...that would not have solved the problem anyway.
i cant really replicate this problem..
but still looking..
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
