AW: [fwAnalog] Empty files on FreeBSD

From: Panholzer (
Date: Thu Mar 13 2003 - 19:54:29 CET

You are absolutely right balázs!
THANK YOU! PS: guys, don't forget to read the README at least twice before asking stupid questions as i did ;)

-----Ursprüngliche Nachricht-----
Von: Balázs Bárány [] Gesendet: Donnerstag, 13. März 2003 13:29 An:
Betreff: Re: [fwAnalog] Empty files on FreeBSD


> 12/03/2003 15:47:49.926636 tun0 ~AT~0:13 b,4203 ->
> A.B.C.D,socks PR tcp len 20 52 -S IN

This is your problem: it seems that your port name is resolved. Use your firewall logger with address/port resolution disabled, fwanalog is doing this itself.

> logformat="ipf"
> #this should work because no errors about corrupt lines are reported,
> freebsd doesn't work

You should use freebsd on FreeBSD. It doesn't work because of the port names.


Balázs Bárány       ICQ 10747763

A good engineer will make considerable effort to avoid additional effort.

fwAnalog mailing list

This archive was generated by hypermail 2.1.5 : Sun Mar 16 2003 - 16:02:03 CET