Firewall Wizards mailing list archives
Re: Appropriate PIX logging level
From: Miha Vitorovic <mvitorovic () nil si>
Date: Tue, 2 May 2006 21:20:57 +0200
firewall-wizards-admin () honor icsalabs com wrote on 26.04.2006 22:18:14:
Well, that's .497 entries per second; you system can handle that load, I bet!!! :) Why not just put something in front of your logging routines that filters out the "junk" with a blacklist before letting it into the log? If you like massive overkill you could use syslog-ng and zap the stuff with a pattern, but this is
more a
job for a 10 line C program or a 5 line perl program.
If anyone isn't aware (and I hope it isn't somewhere earlier in the thread) PIX also supports "no logging message <message_number>" command for filtering any messages with 0 bit information. Regards, Mike _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: Appropriate PIX logging level, (continued)
- Re: Appropriate PIX logging level ArkanoiD (May 04)
- Re: Appropriate PIX logging level Marcus J. Ranum (May 04)
- Re: Appropriate PIX logging level Brian Loe (May 05)
- Re: Appropriate PIX logging level Chuck Swiger (May 05)
- Re: Appropriate PIX logging level ArkanoiD (May 05)
- Re: Appropriate PIX logging level Chuck Swiger (May 05)
- Re: Appropriate PIX logging level ArkanoiD (May 05)
- RE: Appropriate PIX logging level David Lang (May 04)
- Re: Appropriate PIX logging level Tichomir Kotek (May 05)