From: Shorewall G. <sho...@co...> - 2009-01-24 16:14:26
|
Brian Schang wrote: > > Shorewall Guy wrote: >> Brian Schang wrote: >>> Hello: >>> >>> I just started using Shorewall this morning and must say that I'm very >>> impressed. Much nicer than what I was using previously. >>> >>> I love the ability to type 'shorewall logdrop ww.xx.yy.zz' and >>> completely block a particular IP address. However, the log part doesn't >>> happen. When I look in the logdrop chain, there is no LOG prefix. >>> >>> I've looked through the FAQ, the manual pages and Googled. I can't seem >>> to find anything that seems to explain why. I'm hoping someone here can >>> help. >>> >>> Any advice would be appreciated. Thank you! >>> >> What is your setting for BLACKLIST_LOGLEVEL in shorewall.conf? > > Null... > > BLACKLIST_LOGLEVEL= > > Does this option need to be set to something in order for logdrop to work? Yes. |