66 lines
1.4 KiB
Plaintext
66 lines
1.4 KiB
Plaintext
# ---
|
|
# - Install netfilter userspace logging daemon.
|
|
# ---
|
|
apt-get install ulogd2
|
|
|
|
# ---
|
|
# - Adjust configuration file '/etc/ulogd.conf'
|
|
# ---
|
|
|
|
# - (1)
|
|
# -
|
|
# - Define two new plugin stacks inside '[global]'.
|
|
# -
|
|
# - directly after the last "plugin="/usr/lib.." statement add:
|
|
# -
|
|
# - # ====================================================================
|
|
# - # Define two new plugin stacks inside for iptables logging
|
|
# - # ====================================================================
|
|
# - # -
|
|
# - # - firewall11 - for IPv4 Firewall
|
|
# - # - firewall12 - for IPv6 Firewall
|
|
# - # -
|
|
# - stack=firewall11:NFLOG,base1:BASE,ifi1:IFINDEX,ip2str1:IP2STR,print1:PRINTPKT,emu11:LOGEMU
|
|
# - stack=firewall12:NFLOG,base1:BASE,ifi1:IFINDEX,ip2str1:IP2STR,print1:PRINTPKT,emu12:LOGEMU
|
|
# -
|
|
vim /etc/ulogd.conf
|
|
|
|
# - (2)
|
|
# -
|
|
# - - Define input plugins using above specified netlink group
|
|
# - - Define output plugins
|
|
# -
|
|
cat <<EOF >> /etc/ulogd.conf
|
|
|
|
|
|
# =========================================================
|
|
# Define input plugins using specified netlink group inside
|
|
# =========================================================
|
|
|
|
[firewall11]
|
|
group=11
|
|
|
|
[firewall12]
|
|
group=12
|
|
|
|
|
|
# =====================
|
|
# Define output plugins
|
|
# =====================
|
|
|
|
[emu11]
|
|
file="/var/log/ulog/iptables.log"
|
|
sync=1
|
|
|
|
[emu12]
|
|
file="/var/log/ulog/ip6tables.log"
|
|
sync=1
|
|
|
|
EOF
|
|
|
|
|
|
# - Restart ulog daemon
|
|
#
|
|
systemctl restart ulogd
|
|
|