[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Logging dropped states (max-src-states)

Jeff Wilson <[email protected]> wrote:
> Is there a straightforward way to log these "disallowed" states?  Or
> perhaps a way to log which IPs have hit this ceiling, and when, and for
> how long?
it just doesn't match a rule when it hits the limit, ie. matches the 'block'
rule, if you have it. use 'block log' and then check your pflogd's logs for
packets from your LAN to the outside.
Stanisław Halik :: http://weirdo.ltd.pl