[wallfire-users] Needing help with $count filter option
Brought to you by:
eychenne
Menu
▾
▴
[wallfire-users] Needing help with $count filter option
|
From: James L. <jl...@sl...> - 2005-09-15 08:02:29
|
Hey all! Here's what I'm trying to do: wflogs -i netfilter -f '$start_time >= [00:00:00] && $count > 1' -o html --sort=dport,-count --resolve=0 --whois=0 /var/log/kernel > test.html The above yields nothing at all :( If I remove the $count > 1 then I get all sorts of info...including a lot of things that have counts above one. Am I missing something? Help! James |
