Re: [wallfire-users] Help about how the wflogs reads the logs
Brought to you by:
eychenne
Menu
▾
▴
Re: [wallfire-users] Help about how the wflogs reads the logs
|
From: Herve E. <rv...@wa...> - 2008-11-07 23:05:31
|
On Fri, Nov 07, 2008 at 04:42:56PM -0200, Vinícius Batistela wrote: > Are you sure that nepenthes don't do any kind of filter? For example, i > have many packets that is part of a DNS connection (my host did a DNS > request) and, with wflogs, the port that my host used to do that appears > only one time. It don't consider all the packets. Well, if packets get logged by netfilter, wflogs should parse (by default) these log entries and reflect what's in it, no more no less. If you can provide a log sample that is not correctly parsed by wflogs, I'll be happy to fix that. Herve -- _ (°= Hervé Eychenne //) v_/_ WallFire project: http://www.wallfire.org/ |
