Lines Matching full:log

12 to do extra actions when it sees a specific log entry from the kernel.
24 attempts to match every line with every log record received.  It does
38 match { type = ipf; } do { save("file:///var/log/ipf-log"); };
49 the current log entry.
51 The lines above would save all ipf log entries to /var/log/ipf-log, send
53 to root for each log entry from the state tables.
56 the type of log entry generated.  The full list of fields that can be
60 This option is used to match on log records generated for packets going
69 This option is used to match against the destination port in log entries.
75 actioned in response to an otherwise matching log record from the kernel.
86 These tags are set with "set-tag(log=100)" appended to filter rules.
95 result <pass|block|nomatch|log>
97 kernel.  If a packet is logged, using a \fBlog\fR rule in \fBipf.conf\fR
98 then it will match "log" here.  The "nomatch" option is for use with
99 matching log records generated for all packets as the default.
112 This option is used to match against the source port in log entries.
126 Write out the log record to the filename given.  This file will be closed
128 binary log data, as read from the kernel, is written out rather than a
129 text log record. The filename should be an absolute target, including
130 the root directory. Thus, saving to /var/log/ipmon.log would be, as an
131 example, save("file:///var/log/ipmon.log").
136 To log a text record via syslog, the \fBsyslog\fP action word is used.
145 facility/priority value for each log entry or to choose to replace
151 action runs the specified command each time the log entry matches
152 and feeds the log entry, as text, to the command being executed.
157 file about doing nothing for a particular log record.
161 to use externally supplied modules to save log entries with.
195 # log everything to syslog local4, regardless
201 match { srcport = 80; } do { save("file:///var/log/web"); };
202 match { dstport = 80; } do { save("file:///var/log/web"); };