Home page logo

firewall-wizards logo Firewall Wizards mailing list archives

Re: Appropriate PIX logging level
From: Miha Vitorovic <mvitorovic () nil si>
Date: Tue, 2 May 2006 21:20:57 +0200

firewall-wizards-admin () honor icsalabs com wrote on 26.04.2006 22:18:14:

Well, that's .497 entries per second; you system can handle that 
load, I bet!!! :)
Why not just put something in front of your logging routines that 
filters out the
"junk" with a blacklist before letting it into the log? If you like 
massive overkill
you could use syslog-ng and zap the stuff with a pattern, but this is 
more a
job for a 10 line C program or a 5 line perl program.

If anyone isn't aware (and I hope it isn't somewhere earlier in the 
thread) PIX also supports

"no logging message <message_number>"

command for filtering any messages with 0 bit information.

Regards, Mike
firewall-wizards mailing list
firewall-wizards () honor icsalabs com

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]