-
Senior Member
registered user
Originally Posted by
jjmac
So ... the logwatch facility has been extracting that info and presenting it via the local mail facility.
Code:
logwatch extract ...
Dropped 72 packets on interface ppp0
From 24.207.157.140 - 2 packets
To 203.58.186.120 - 2 packets
Service: 15118 (tcp/15118) (FW_LASTDROP:,ppp0,none) - 2 packets
From 61.155.9.171 - 1 packet
To 203.58.186.120 - 1 packet
Service: ssh (tcp/22) (FW_LASTDROP:,ppp0,none) - 1 packet
From 64.62.190.36 - 36 packets
To 203.58.186.120 - 36 packets
Service: telnet (tcp/23) (FW_LASTDROP:,ppp0,none) - 8 packets
Service: www (tcp/80) (FW_LASTDROP:,ppp0,none) - 8 packets
Service: socks (tcp/1080) (FW_LASTDROP:,ppp0,none) - 8 packets
Service: 3128 (tcp/3128) (FW_LASTDROP:,ppp0,none) - 4 packets
Service: 6588 (tcp/6588) (FW_LASTDROP:,ppp0,none) - 4 packets
Service: webcache (tcp/8080) (FW_LASTDROP:,ppp0,none) - 4 packets
From 83.245.15.238 - 3 packets
etc
As you can see i label my DROP target as "FW_LASTDROP".
I'll have to look into my "snort" setup and possible configure some alet for those.
jm
I have snort installed, and it sends output to mail, not very interesting output though...
Upon seeing your output for logwatch, I installed it, but, I dont get output mailed on the ppp0, or even eth0 stuff - how did you get logwatch to get you the output above ?
I'd like to have a monitoring program working, like what your output shows above, but, I guess I need to create the filters / services code to get what you are getting ( I guess ) ?
Ms. Cuddles
-
Senior Member
registered user
right now, firestarter isnt wanting to work for me...
Similar Threads
-
By jeditalian in forum Tips and Tricks
Replies: 2
Last Post: 06-13-2010, 05:32 PM
-
By leif in forum Hardware & Booting
Replies: 6
Last Post: 03-27-2009, 10:33 PM
-
By lotech in forum General Support
Replies: 2
Last Post: 07-26-2005, 03:26 AM
-
By tonynaia in forum General Support
Replies: 6
Last Post: 01-10-2004, 05:47 PM
-
By probono in forum Customising & Remastering
Replies: 2
Last Post: 03-02-2003, 04:27 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
***NEW*** BCM RX67Q Gaming Motherboard | Intel Q67 2nd/3rd Gen. | LGA1155 | DDR3
$29.77
ASUS H110M-R Motherboard Intel 6th/7th Gen LGA1151 DDR4 Micro-ATX i/o shield
$42.00
Micro ATX Desktop Motherboard ASUS H110M-C LGA 1151
$31.95
MSI A320M-A PRO AM4 AMD A320 USB3.2 Gen1 Micro-ATX Motherboard
$46.99
Gigabyte GA-B75M-HD3 Intel LGA1155 DDR3 Desktop Motherboard MicroATX USB 3.0
$26.99
Gigabyte AMD B550 UD AC Gaming Motherboard - AMD B550 Chipset - AM4 Socket - AMD
$89.99
ASUS Prime Q270M-C LGA1151 DP HDMI VGA SATA 6GB/s USB 3.0 MicroATX Motherboard
$37.99
MSI B450M PRO-VDH MAX AM4 AMD B450 USB3.2 Micro-ATX Motherboard
$67.99
BTC-S37 Mining Motherboard Kit /w SSD & Ram Preinstalled
$59.99
GIGABYTE GA-Z77M-D3H-MVP LGA1155 DDR3 Intel Z77 Micro ATX Motherboard
$59.00