AW: [fwAnalog] Empty files on FreeBSD

From: Panholzer (pani~AT~ycn.com)
Date: Thu Mar 13 2003 - 19:54:29 CET



You are absolutely right balázs!
THANK YOU! PS: guys, don't forget to read the README at least twice before asking stupid questions as i did ;)

-----Ursprüngliche Nachricht-----
Von: Balázs Bárány [mailto:balazs~AT~tud.at] Gesendet: Donnerstag, 13. März 2003 13:29 An: fwanalog~AT~tud.at
Betreff: Re: [fwAnalog] Empty files on FreeBSD

Hello,

> 12/03/2003 15:47:49.926636 tun0 ~AT~0:13 b 64.91.54.112,4203 ->
> A.B.C.D,socks PR tcp len 20 52 -S IN

This is your problem: it seems that your port name is resolved. Use your firewall logger with address/port resolution disabled, fwanalog is doing this itself.

> logformat="ipf"
> #this should work because no errors about corrupt lines are reported,
> freebsd doesn't work

You should use freebsd on FreeBSD. It doesn't work because of the port names.

Regards

-- 
_________________________________________________________________________
Balázs Bárány       balazs~AT~tud.at        http://tud.at       ICQ 10747763

A good engineer will make considerable effort to avoid additional effort.

_______________________________________________
fwAnalog mailing list
fwAnalog~AT~tud.at
http://tud.at/cgi-bin/mailman/listinfo/fwanalog


This archive was generated by hypermail 2.1.5 : Sun Mar 16 2003 - 16:02:03 CET