=== Sat, 20 Aug 2005 08:46:15 -0400 === Claude Jones <claude_jones@xxxxxxxxxxxxxx> > On Saturday 20 August 2005 8:33 am, Rakotomandimby Mihamina wrote: > > On Sat, 2005-08-20 at 07:36 -0400, Claude Jones wrote: > > > 1) Pull up a log and look at recent traffic - what's passing, > > > what's been > > > denied > > > 2) Open a window that shows this 'live' - in other words, execute > > > some command > > > that leads to the outside world, and watch what the firewall does > > > What are the appropriate tools? > > > > iptables. > > You can use "-j ULOG" or "-j LOG" then the information about matchig > > packets are logged. > > they are not terminating rules, so that you can safely do anything, > > but keep in mind that some could bloat you logfile with it... > > > > Thanks for your reply. I'm afraid I didn't phrase my question > clearly. I'm already generating logs. Logwatch dutifully sends me a > report each night at 4 am. I'm also running epylog which also > generates a nightly report. I want to be able to look at the logs at > any given time - where do I find these? How do I view them? And how > can I watch traffic in 'real time' as it's passing? > > -- > Claude Jones > Bluemont, VA, USA > iptraf (8) - Interactive Colorful IP LAN Monitor iptstate (8) - A top-like display of IP Tables state table entries Thomas
