Log nftables: Difference between revisions

From Coolscript
Jump to navigation Jump to search
No edit summary
No edit summary
 
(One intermediate revision by the same user not shown)
Line 15: Line 15:




*Easiest way to logrotate is to add into /etc/logrotete.d/rsyslog
/var/log/firewall.log


Attention: don't forget to configure logrotate
Attention: don't forget to configure logrotate
Keys: firewall log iptables nft nftables

Latest revision as of 19:56, 12 November 2022

Log kernel message like nftables or iptables to a different log.

Sample:
/etc/rsyslog.conf 

###############
#### RULES ####
###############
#
# First some standard log files.  Log by facility.
#

:msg,regex,"IN=.*OUT=.*SRC=.*DST="      -/var/log/firewall.log
& stop


  • Easiest way to logrotate is to add into /etc/logrotete.d/rsyslog
/var/log/firewall.log

Attention: don't forget to configure logrotate

Keys: firewall log iptables nft nftables

Retrieved from "https://coolscript.org/index.php?title=Log_nftables&oldid=851"