Re: PF firewall log problems

From: Hornet (hornetmadness_at_gmail.com)
Date: 07/08/05

  • Next message: Tim Abbott: "RE: speedy-cgi-perl mail list or forum" 
    Date: Thu, 7 Jul 2005 20:53:55 -0400
To: fbsd_user@a1poweruser.com

    On 7/7/05, fbsd_user <fbsd_user@a1poweruser.com> wrote:
    > How can I change the default wait time for PF buffer writes to the log file?
    > The log records are being held in the buffers for a long time before being
    > written out.
    > I want to change this to a shorter time.
     How are you viewing the data?

    Realtime tcpdump
    tcpdump -n -e -ttt -i pflog0
    or
    Viewing pflog
    tcpdump -n -e -ttt -r /var/log/pflog

    Anything written to the tty is going to be a bit slower, of course if
    you can "jack into your brain" all would be solved.

    >
    >
    > Are there any tools or ports for use on the PF log file to create better
    > standardized reports?
    I think there is one called hatchet. Of course you can't beat good old
    fashion grep,awk, and maybe sed

    >
    > Where can I find a description of the PF log record fields?
    http://www.freebsd.org/cgi/man.cgi?query=pflog&sektion=4
    >
    > Thanks
    > _______________________________________________
    > freebsd-questions@freebsd.org mailing list
    > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
    > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
    >

    Erik
    _______________________________________________
    freebsd-questions@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-questions
    To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"

  • Next message: Tim Abbott: "RE: speedy-cgi-perl mail list or forum"

    Relevant Pages

    • Re: /var/tmp concept clarification
      ... I am running a client server application on UNIX platform. ... Every activity with the server is logged to a specific file.. ... file descriptor 2 to the log file. ... be stored in a temporary buffer. ...
      (comp.unix.programmer)
    • Re: Two simultaneous write accesses to a text file
      ... At this point it may be useful to know that if you open a file in _append_ ... something like a log file then the log file grows one line at a time. ... If for instance, one script tries to write 800 bytes with a 512 byte buffer, the first 512 bytes may be written. ... And the second script may get in between the first 512 bytes and the remaining 288 bytes to write its data. ...
      (comp.lang.php)
    • Re: string concatenation efficiency
      ... VB maintains its own internal buffer for disk files and it writes it to the ... the maximum amount of characters that can be ... "lost" from the log file is the size of the VB disk buffer. ...
      (microsoft.public.vb.general.discussion)
    • Re: Tuning log file sync
      ... > This is logical as the log buffer is locked by LGWR when LGWR flushes ... > the buffer to the online redo log file. ...
      (comp.databases.oracle.server)
    • PF firewall log problems
      ... How can I change the default wait time for PF buffer writes to the log file? ... The log records are being held in the buffers for a long time before being ... To unsubscribe, ...
      (freebsd-questions)