Erwin Van de Velde wrote:
> Dear all,
> On Wednesday 24 February 2010, Tom Eastep wrote:
>>> - What am I doing wrong? I just use LOG=NFLOG in the params file.
>> That, by itself, does absolutely nothing. You also need to specify $LOG,
>> everywhere you want logging. When you think something should have been
>> logged, check 'shorewall6 show | grep NFLOG'; you should see packet
>> counts > 0. If you do not, then no traffic is hitting your logging rules.
> Ow sorry, perhaps it was not clear, I did not only specify LOG in the params
> file, but I also use it in policy and rules file (which are in fact the same as
> for the ipv4 firewall). I do see counts > 0, but the logs do contain only IPv4
> and no IPv6 traffic. Do I have to configure something for ulog to log IPv6 traffic?
I don't know -- you can read the docs as well as I can.
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car