File: icmplog.8

package info (click to toggle)
jail 1.04-1
  • links: PTS
  • area: main
  • in suites: hamm
  • size: 120 kB
  • ctags: 39
  • sloc: ansic: 201; makefile: 61; sh: 17
file content (89 lines) | stat: -rw-r--r-- 2,160 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
 
.TH icmplog 8 "OCT 1997" Linux "System Manuals"
.SH NAME
icmplog \- icmp connection logger daemon
.SH SYNOPSIS
.B icmplog 
[-f, --file
.I filename
] [-n, --no-resolve]
[-v, --version]
.SH DESCRIPTION
.B icmplog
is a small program which runs in the background, and can be configured
to log the reception of various ICMP packets at different syslog levels.

icmplog is derived from iplogger, and provides more configurability and better
logging options. It also bears a slight resemblance to icmpinfo.

icmplog recognises the following ICMP packet types (as defined in
.I /usr/include/linux/icmp.h:
.IP ICMP_ECHOREPLY
Echo reply.
.IP ICMP_DEST_UNREACH
Destination unreachable.
.IP ICMP_SOURCE_QUENCH
Source quench.
.IP ICMP_REDIRECT
Redirect (change route).
.IP ICMP_ECHO
Echo request (ping).
.IP ICMP_TIME_EXCEEDED
Time exceeded.
.IP ICMP_PARAMETERPROB
Parameter problem.
.IP ICMP_TIMESTAMP
Timestamp request.
.IP ICMP_TIMESTAMPREPLY
Timestamp reply.
.IP ICMP_INFO_REQUEST
Information request.
.IP ICMP_INFO_REPLY
Information reply.
.IP ICMP_ADDRESS
Address mask request.
.IP ICMP_ADDRESSREPLY
Address mask reply.

If a packet with an undefined type is received, the numeric value of the
type is logged instead of its name.

It has four logging levels:
.IP IGNORE
- packets are ignored.
.IP NOTIFY
- packets are logged to syslog with level
.B LOG_NOTICE
.IP INFORM
- packets are logged to syslog with level
.B LOG_INFO
.IP WARN
- packets are logged to syslog with level
.B LOG_WARNING
.PP
All messages are logged with the LOG_DAEMON facility, and specify the
type and source of the packet.

You may also want to see iplogger and icmpinfo at:
sunsite.unc.edu:/pub/Linux/system/network/daemons/iplogger.tar.gz
.PP
sunsite.unc.edu:/pub/Linux/system/network/admin/icmpinfo-1.11.tar.gz

.SH OPTIONS
.IP -f, --file [filename]
Use
.I filename
as the configuration file instead of the default
.I /etc/icmplog.conf.
.IP -n, --no-resolve
Do not resolve IP addresses to hostnames
.IP -v, --version
Display jail version

.SH BUGS
Currently, jail is linux-specific. I should do something about this.

.SH AUTHOR
crab@wiw.org (Abhijit Menon-Sen)

.SH "SEE ALSO"
.B syslog(3)