LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Configure Shorewall to Allow Syslog Messages from Router
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-29-2011, 08:57 PM   #1
dman777
Member
 
Registered: Dec 2010
Distribution: Gentoo
Posts: 232

Rep: Reputation: 8
Configure Shorewall to Allow Syslog Messages from Router

I have my system set up to where the router(dd-wrt) will send it's syslog messages to my Linux PC system. I am using shorewall as my firewall. I have two questions:

How can I configure shorewall to allow the messages from my router?

If I use my router IP address to allow the messages to come through the firewall, will this be a great security risk as anything from the internet can come through on that router ipaddress?
 
Old 01-30-2011, 02:44 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985
the IP address of the router would only be used internally for traffic for the router itself (assuming your firewall is behind your router, and you are using the ddwrt device for an ADSL connection. Firstly you'd only permit UDP traffic on port 514 for syslog, so it's not "everything", there would also be no port forwarding, so no way anyone from the outside would be able to get matching traffic into your network, and again as above, the IP of the router would only be used for the routers own traffic.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Using Rsyslog to redirect Shorewall messages but Shorewall is not a facility dman777 Linux - Software 3 06-22-2018 05:23 PM
Log messages after uninstall of shorewall UnConundrum Linux - General 1 03-06-2006 08:14 PM
Shorewall not logging messages xxx_anuj_xxx Linux - Security 11 01-12-2006 10:52 PM
Can't get syslog to record messages from my router ec3042 Linux - Networking 3 02-24-2004 12:10 PM
syslog and firestarter - log messages to another file than messages mule Linux - Newbie 0 08-07-2003 03:35 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:33 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration