[fw-wiz] IPTables logging target: show pid/program name?
From: Chris de Vidal (chris_at_devidal.tv)
Date: 11/14/03
- Previous message: Scott Thomas: "[fw-wiz] Symantec firewall/vpn & Nortel Contivity 2700 branch office tunnel"
- Next in thread: William Stearns: "Re: [fw-wiz] IPTables logging target: show pid/program name?"
- Reply: William Stearns: "Re: [fw-wiz] IPTables logging target: show pid/program name?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: firewall-wizards@honor.icsalabs.com Date: Fri, 14 Nov 2003 11:46:28 -0500 (EST)
I have several rules like this:
/sbin/iptables --append OUTPUT --jump LOG --log-level DEBUG --log-prefix
"OUTPUT packet died: "
at the bottom of my OUTPUT chain to debug which outgoing packets get
dropped so I can adjust the rules as necessary. It's been working well
for months.
Trouble is I don't always know which program is producing these packets.
It would be handy to also see the pid and/or program name responsible for
these packets. Any idea how?
/dev/idal
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Scott Thomas: "[fw-wiz] Symantec firewall/vpn & Nortel Contivity 2700 branch office tunnel"
- Next in thread: William Stearns: "Re: [fw-wiz] IPTables logging target: show pid/program name?"
- Reply: William Stearns: "Re: [fw-wiz] IPTables logging target: show pid/program name?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
