Re: ulogd - ip_conntrack_netlink - how to get it working one

kay <kay.diam@xxxxxxxxx> · Sat, 28 Jul 2012 07:11:56 +0400

Dear Gomathivinayagam,

What exactly you would like to achieve and what you already achieved?

What did you mean saying "capture flow based logging"?

For example here is my ulog data:

Jul 28 01:03:15 esagila DROP packet:  IN=eth0 OUT= MAC=***  SRC=***
DST=*** LEN=52 TOS=00 PREC=0x00 TTL=55 ID=37188 CE DF PROTO=TCP
SPT=51183 DPT=22 SEQ=2563245107 ACK=138246617 WINDOW=61 ACK URGP=0

Do you need something more with the packet data or what?

2012/7/28 Gomathivinayagam Muthuvinayagam <sankarmail@xxxxxxxxx>:
> I don’t know whether I’m asking stupid questions, but if someone could
> respond for this post, that will be great.
>
> Thanks & Regards,
>
>
>
>
> On Fri, Jul 27, 2012 at 7:26 PM, Gomathivinayagam Muthuvinayagam
> <sankarmail@xxxxxxxxx> wrote:
>> Hi,
>>
>> I have a RHEL 5 os in my system. I have setup ulogd in my local
>> system. I’m able to do packet capturing.
>> I’m not able to capture flow based logging. What I have found was, in
>> my system I don’t have nf_conntrack_netlink.
>> Instead I have ip_conntrack_netlink. Is that possible I can
>> incorporate nf_conntrack_netlink into RHEL5? And make ulogd to be
>> working one.
>>
>> Your help would be much appreciated.
>>
>> Thanks,
>>
>>
>> Thanks & Regards,
> --
> To unsubscribe from this list: send the line "unsubscribe netfilter" in
> the body of a message to majordomo@xxxxxxxxxxxxxxx
> More majordomo info at  http://vger.kernel.org/majordomo-info.html
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html


Re: ulogd - ip_conntrack_netlink - how to get it working one
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]