This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Unrecognized firewall log output

Dear,
I want to understand the attached output of the firewall log when I try to update Ubuntu 11.10 and this update related to Google Chrome.

Thanks,
Mostafa Aly

This thread was automatically locked due to age.

Parents

0 most_ahdy over 13 years ago

Hi Bob,
Please find the same lines from full firewall log:

2011:10:30-18:55:14 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="301" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:14 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="4396" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK"
2011:10:30-18:55:14 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="4396" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK"
2011:10:30-18:55:15 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:15 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:16 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:18 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:21 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"

Please I want something that explain to me all log output parameter like fwrule,id,mark,app

Thanks,
Mostafa
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 most_ahdy over 13 years ago

Hi Bob,
Please find the same lines from full firewall log:

2011:10:30-18:55:14 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="301" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:14 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="4396" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK"
2011:10:30-18:55:14 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="4396" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK"
2011:10:30-18:55:15 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:15 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:16 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:18 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"
2011:10:30-18:55:21 asg ulogd[5248]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60003" outitf="eth0" mark="0xb6" app="182" srcmac="0:50:4:b0[:D]7:8d" srcip="66.102.13.136" dstip="192.168.10.36" proto="6" length="1500" tos="0x00" prec="0x00" ttl="64" srcport="80" dstport="57242" tcpflags="ACK PSH"

Please I want something that explain to me all log output parameter like fwrule,id,mark,app

Thanks,
Mostafa
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data