This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Packetfilter Logging Issues

Has anyone come across an issue where some rules aren't logging properly on the Astaro? We have an ASG 320 running 7.509 and some of our packetfilter rules don't log any accepted traffic even with the logging option checked. Recreated the affected rules hasn't helped.

We're able to verify that the traffic is indeed being accepted. Running "iptables -L -n" from the command line shows LOGMARK which I think means it's supposed to be logged.

Any ideas or suggestions?

This thread was automatically locked due to age.

0 BarryG over 14 years ago

Hi, are you sure there's not another rule above, or a proxy, that would be accepting the traffic?

Barry
Cancel
Vote Up 0 Vote Down

Cancel
0 aab81 over 14 years ago

No proxy. There's two deny rules above it for different traffic but that's it.
Cancel
Vote Up 0 Vote Down

Cancel
0 BarryG over 14 years ago

Do you have any Auto PacketFilter Rules on the NAT settings?

Barry
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 14 years ago

I'm with Barry. I bet you could put a logged Allow rule at the top of the packet filter list, and you would not see the traffic. Any time you check 'Automatic packet filter rules', the traffic is not logged. When you log a NAT rule, it's only the initial packet. With HTTP/S and SMTP Proxies, the traffic is seen only in those logs. The basic rule about in-bound packets is: DNATs are considered before Proxies, and manual Routes and Packet Filter rules are considered last.

If you're still having problems, let us know what traffic you're looking for.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel