[Shorewall-newbies] specific log-prefix ... patch

Tom Eastep teastep at shorewall.net
Tue Feb 10 15:22:30 PST 2004

On Tuesday 10 February 2004 03:14 pm, xavier wrote:
> here is a patch to allow this :
> |ACCEPT<10/sec:20>:debug fw      lan:$ntp_servers      udp 123 - - - - ntp

You're patch is rather raw yet -- arguments out of order for example.

> a problem with the patch is that now the logprefix is mandatory.
> i'm trying to debug it, but i  can't find the flaw.

In calls to log_rule_limit, you need to enclose "$logprefix" in quotes so if 
it is empty, it will still eat an argument position.

Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net

More information about the Shorewall-newbies mailing list