File: tcplog.conf.5

package info (click to toggle)
jail 1:1.5-1
  • links: PTS
  • area: main
  • in suites: slink
  • size: 156 kB
  • ctags: 67
  • sloc: ansic: 482; makefile: 74; sh: 25
file content (70 lines) | stat: -rw-r--r-- 2,074 bytes parent folder | download | duplicates (2)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
.TH tcplog.conf 5 "JUN 1998" Linux "File Formats"
.SH NAME
tcplog.conf \- configuration file for tcplog(8).

.SH SYNOPSIS
.I /etc/tcplog.conf

.SH DESCRIPTION

The
.B tcplog(8)
configuration file is used to specify the level at which connections to
given ports should be logged.

Log levels for packets are specified using the
.B `type [level]'
rule described below.

A default log level can be specified with the
.B level
keyword, which is used for port numbers
which have not been explicitly assigned a level in the configuration.

The default syslog facility can be overriden with the
.B facility
keyword.
configuration.

The `except' keyword can be used to specify a list of hosts from which
connections should be ignored.

Lines beginning with `#' (shell-style comments) and blank lines in the
configuration file are ignored.

An example configuration is included with the source distribution and is
installed by default into
.I /etc/tcplog.conf

.SH KEYWORDS
.IP "except [host], [host], [host]"
Specify a list of hosts to ignore connection requests from. The list can be
comma or whitespace separated, and may contain fragments like `192.168.'
and `.foo.com'. If the fragment is numeric, it is compared with the IP of
the source host, otherwise the comparison is made with the resolved
hostname.
.IP "level [level]"
Specify the default logging level. The level can be any one of IGNORE, ERR,
WARNING, NOTICE, INFO and DEBUG.
.IP "facility [facility]"
Specify the default logging facility. The facility can be any one of USER,
DAEMON and LOCAL0-7.
.IP "[service] [level]"
This is a generic rule which specifies the level at which connections to a
certain port are logged. The service can either be a numeric port number,
or a service name (as specified in
.I /etc/services
). The level, as above, is a
.I syslog.h
symbolic constant.

.SH "SEE ALSO"
.B tcplog(8), icmplog(8), icmplog.conf(5), syslogd(8)

.SH DISTRIBUTION
jail is distributed under the Artistic License.

.SH AUTHOR
ams@wiw.org (Abhijit Menon-Sen)

$Id: tcplog.conf.5,v 1.3 1998/08/03 14:09:36 ams Exp $