I have configured iptables on my server, and now now I get output going
to my text windows (in the GUI, do a ctrl+alt+F1 to get to one of them).
This text pops up whenever a packet of some type is intercepted. These
packets also seem to be logged, as logwatch reports on them. The problem
is, I can't do any work from these text windows, because the 2+line long
strings overwrite what I am working on. This is very annoying.
Can anyone tell me how to redirect this output to /dev/null or someplace
else?
This is a sample:
Invalid packet: IN=eth0 UT=
SRC=10.1.4.238
DST=224.0.0.1 LEN=36 TS=0x00 PREC=0x00 TTL=225 ID=5592 PRT=ICMP
TYPE=9 CDE=0
(I transcribed this from the terminal window, so it may not be exact,
but you should get the idea)
Any ideas?
Thanks!
Bill Tangren

Bill Tangren wrote:
I have configured iptables on my server, and now now I get output going
to my text windows (in the GUI, do a ctrl+alt+F1 to get to one of them).

Can anyone tell me how to redirect this output to /dev/null or someplace
else?

Any ideas?

Check your /etc/syslog.conf
You probably have a line that says: kern.*/dev/console
and maybe *.emerg*

Look at your /etc/sysconfig/iptables file.
you probably have a LG target (-j LG)
you can set on that line in /etc/sysconfig/iptables

I think those things are what you are looking for.
-Ben.

Bill Tangren wrote:
I have configured iptables on my server, and now now I get output going
to my text windows (in the GUI, do a ctrl+alt+F1 to get to one of them).

Can anyone tell me how to redirect this output to /dev/null or someplace
else?

Any ideas?

Check your /etc/syslog.conf
You probably have a line that says: kern.*/dev/console
and maybe *.emerg*

Look at your /etc/sysconfig/iptables file.
you probably have a LG target (-j LG)
you can set on that line in /etc/sysconfig/iptables

I think those things are what you are looking for.
-Ben.

Ben Russo wrote:
Bill Tangren wrote:

>I have configured iptables on my server, and now now I get output
>going to my text windows (in the GUI, do a ctrl+alt+F1 to get to one
>of them).


>Can anyone tell me how to redirect this output to /dev/null or
>someplace else?
>>


>>
>Any ideas?
>>
Check your /etc/syslog.conf
You probably have a line that says: kern.* /dev/console
and maybe *.emerg *

Look at your /etc/sysconfig/iptables file.
you probably have a LG target (-j LG)
you can set on that line in /etc/sysconfig/iptables

I think those things are what you are looking for.
-Ben.

The line in /etc/syslog.conf is commented out, so it appears that
/dev/console is the default (man syslog.conf doesn't seem to say).

Does anyone know if sending non critical errors to /dev/null harm anything?

kern.info;kern.!err /dev/null

Thanks,
Bill

Why not just send them to a file? better yet, don't log broadcast
messages from IPTables.

6/13/05, Bill Tangren <bjt (AT) aa (DOT) usno.navy.milwrote:
Ben Russo wrote:
Bill Tangren wrote:
>
>I have configured iptables on my server, and now now I get output
>going to my text windows (in the GUI, do a ctrl+alt+F1 to get to one
>of them).
>

>
>Can anyone tell me how to redirect this output to /dev/null or
>someplace else?
>>

>
>>
>Any ideas?
>>
Check your /etc/syslog.conf
You probably have a line that says: kern.* /dev/console
and maybe *.emerg *

Look at your /etc/sysconfig/iptables file.
you probably have a LG target (-j LG)
you can set on that line in /etc/sysconfig/iptables

I think those things are what you are looking for.

-Ben.

The line in /etc/syslog.conf is commented out, so it appears that
/dev/console is the default (man syslog.conf doesn't seem to say).

Does anyone know if sending non critical errors to /dev/null harm anything?

kern.info;kern.!err /dev/null

Thanks,
Bill

Joe Hood wrote:
Why not just send them to a file? better yet, don't log broadcast
messages from IPTables.
Well, duh!
Thanks.
Bill

Joe Hood wrote:
Why not just send them to a file? better yet, don't log broadcast
messages from IPTables.

6/13/05, Bill Tangren <bjt (AT) aa (DOT) usno.navy.milwrote:

>>Ben Russo wrote:
>>
Bill Tangren wrote:

I have configured iptables on my server, and now now I get output
going to my text windows (in the GUI, do a ctrl+alt+F1 to get to one
of them).

Can anyone tell me how to redirect this output to /dev/null or
someplace else?

Any ideas?

Check your /etc/syslog.conf
You probably have a line that says: kern.* /dev/console
and maybe *.emerg *

Look at your /etc/sysconfig/iptables file.
you probably have a LG target (-j LG)
you can set on that line in /etc/sysconfig/iptables

I think those things are what you are looking for.

Ben.

>>
>>The line in /etc/syslog.conf is commented out, so it appears that
>>/dev/console is the default (man syslog.conf doesn't seem to say).
>>
>>Does anyone know if sending non critical errors to /dev/null harm anything?
>>
>>kern.info;kern.!err /dev/null
>>
>>
>>Thanks,
>>Bill
>>

I tried creating a log for the output by altering the /etc/syslog.conf
file. I changed :

#kern.* /dev/console

to

kern.* /var/log/iptables

This put the output into /var/log/iptables, but the output is STILL
going to /dev/console as well. Notice that the appropriate line in
syslog.conf was commented out initially.

I don't know how to stop the output going to /dev/console except for
stopping the logging of iptables output.

Anyone know what might be wrong?

Bill