understanding ipflog

John Murphy jfm at blueyonder.co.uk
Tue Jun 12 14:31:32 BST 2001

I'm trying to understand all the information in ipflog (IPFilter log).
I can't seem to find a www tutorial and I think the ipf mailing list
would find this too basic a question for them.

I've indicated the values I don't understand below:
(Times removed for shorter lines)

ed0 @0:17 b,21 ->,21 PR tcp len 20 40 -SF IN
    ^^^^^                                       ^^            ^^ ^^^

One of the strangest entries I've seen is this:

ed0 @0:11 b -> PR icmp len 20 56 icmp 5/0 for =,21 -,1029 PR tcp is the ISP's "UBR" (always the first hop on a traceroute).


More information about the Ukfreebsd mailing list