firewall/ipt-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
88 Commits 1 Branch 0 Tags 754 KiB
Shell 100%
e68705c819
Go to file
Christoph e68705c819 some minor changes on file 'main_ipv6.conf.sample'.
2020-11-04 16:25:14 +01:00
conf some minor changes on file 'main_ipv6.conf.sample'. 2020-11-04 16:25:14 +01:00
OLD Complete the last commit. 2019-03-07 05:07:46 +01:00
.gitignore Add some comments for DNS rules. 2017-06-02 11:34:43 +02:00
ip6t-firewall-server Some more or less minor changes.. 2020-10-30 15:00:46 +01:00
ipt-firewall-server Some more or less minor changes.. 2020-10-30 15:00:46 +01:00
README.bridge Initial import 2017-02-12 16:07:07 +01:00
README.install Add Jitsi Video Conferencing Service. 2020-03-17 22:43:03 +01:00
README.ulogd Adjusrt README.ulogd. 2019-03-07 18:37:10 +01:00

README.ulogd 

# ---
# - Install netfilter userspace logging daemon.
# ---
apt-get install ulogd2

# ---
# - Adjust configuration file '/etc/ulogd.conf'
# ---

# - (1) 
# -
# - Define two new plugin stacks inside '[global]'.
# -
# -     directly after the last "plugin="/usr/lib.." statement add:
# -
# -        # ====================================================================
# -        # Define two new plugin stacks inside for iptables logging
# -        # ====================================================================
# -        # -
# -        # -    firewall11 - for IPv4 Firewall
# -        # -    firewall12 - for IPv6 Firewall
# -        # -
# -        stack=firewall11:NFLOG,base1:BASE,ifi1:IFINDEX,ip2str1:IP2STR,print1:PRINTPKT,emu11:LOGEMU
# -        stack=firewall12:NFLOG,base1:BASE,ifi1:IFINDEX,ip2str1:IP2STR,print1:PRINTPKT,emu12:LOGEMU
# -
vim /etc/ulogd.conf

# - (2)
# -
# -    - Define input plugins using above specified netlink group
# -    - Define output plugins
# -
cat <<EOF >> /etc/ulogd.conf


# =========================================================
# Define input plugins using specified netlink group inside
# =========================================================

[firewall11]
group=11

[firewall12]
group=12


# =====================
# Define output plugins 
# =====================

[emu11]
file="/var/log/ulog/iptables.log"
sync=1

[emu12]
file="/var/log/ulog/ip6tables.log"
sync=1

EOF


# - Restart ulog daemon
# 
systemctl restart ulogd