Firestarter dumping blocked events to console
On Wed, Apr 09, 2008 at 08:24:40PM -0700, Amit Uttamchandani wrote:
> Hi there,
> I installed firestarter on Debian Etch. From my understanding it is pretty much a front end to the ipstarter firewall. Everything has been going great except for one minor annoyance...
> Anyways, as soon as the laptop boots..i see all the dmesgs and everything is fine...when the iptables starts ... it starts dumping everything to the console. Thus, I don't know when start up has completed and the login prompt has been displayed (I don't use an X login manager). I just blindly type my username and password and hope that it works.
> So is there anyway to redirect the output of the blocked connections for iptables?
> Here is the tail of dmesg by the way...
> Inbound IN=eth2 OUT= MAC=ff:ff:ff:ff:ff:ff:xx:xx:xx:xx:xx:xx:xx:xx SRC=184.108.40.206 DST=220.127.116.11 LEN=78 TOS=0x00 PREC=0x00 TTL=128 ID=27327 PROTO=UDP SPT=137 DPT=137 LEN=58
> Inbound IN=eth2 OUT= MAC=ff:ff:ff:ff:ff:ff:xx:xx:xx:xx:xx:xx:xx:xx SRC=18.104.22.168 DST=22.214.171.124 LEN=229 TOS=0x00 PREC=0x00 TTL=128 ID=40118 PROTO=UDP SPT=138 DPT=138 LEN=209
look at /etc/sysctl.conf, there is a line you can uncomment to reduce
low level kernel messages on the console:
kernel.printk = 4 4 1 7
also, look at the log level you are using in your firestarter
config. I'm not familiar with firestarter, but shorewall lets you set
the log level of different kinds actions the firewall performs. I'm
confident there is a way to do it through firestarter as well.