Firewall Wizards mailing list archives

Re: Appropriate PIX logging level

From: Miha Vitorovic <mvitorovic () nil si>
Date: Tue, 2 May 2006 21:20:57 +0200

firewall-wizards-admin () honor icsalabs com wrote on 26.04.2006 22:18:14:

Well, that's .497 entries per second; you system can handle that 
load, I bet!!! :)
Why not just put something in front of your logging routines that 
filters out the
"junk" with a blacklist before letting it into the log? If you like 
massive overkill
you could use syslog-ng and zap the stuff with a pattern, but this is

more a

job for a 10 line C program or a 5 line perl program.


If anyone isn't aware (and I hope it isn't somewhere earlier in the 
thread) PIX also supports

"no logging message <message_number>"

command for filtering any messages with 0 bit information.

Regards, Mike
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Appropriate PIX logging level, (continued)
- - - Re: Appropriate PIX logging level ArkanoiD (May 04)
    - Re: Appropriate PIX logging level Marcus J. Ranum (May 04)
    - Re: Appropriate PIX logging level Brian Loe (May 05)
    - Re: Appropriate PIX logging level Chuck Swiger (May 05)
    - Re: Appropriate PIX logging level ArkanoiD (May 05)
    - Re: Appropriate PIX logging level Chuck Swiger (May 05)
    - Re: Appropriate PIX logging level ArkanoiD (May 05)
- RE: Appropriate PIX logging level Paul Melson (May 04)
  - RE: Appropriate PIX logging level David Lang (May 04)
  - Re: Appropriate PIX logging level Tichomir Kotek (May 05)
- Re: Appropriate PIX logging level Miha Vitorovic (May 04)
- RE: Appropriate PIX logging level Behm, Jeffrey L. (May 05)