[SATLUG] Nulog
Tom Weeks
tweeksjunk2 at theweeks.org
Sun Jul 10 00:03:25 CDT 2005
On Wednesday 06 July 2005 01:32, Ed Coates wrote:
> Is there anyone on the list using ulogd along with Nulog to log
> firewall entries to a MySQL database then display them?
Not me.. but I have a cohort at Rackspace who has had his firewall running
regular syslog into MySQL. But I think that was a totally custom table he
did for himself.. Just a DIY setup... Nothing really "standard".
> I've
> downloaded Nulog and installed it, but it seems to be trying to access
> a table called conntrack_ulog that doesn't seem to be created anywhere
> that I can see. Just wondering if anyone else is using it.
Have you just tried creating the table? Do you know what schema it's
expecting? Have you consulted google on the expected schema?
My first google hit + string searching reveals:
"The Nulog 1.1.0 release has a bug.
The mysql dumpfile does not contain the conntrack_ulog table.
This has been reported to the nulog email account."
Reference from the netfilter mail list here:
http://lists.netfilter.org/pipermail/netfilter/2005-July.txt
Looks like you need to rebuild your database from a non buggy ulogd.mysqldump
sql input file. Maybe you can get a good one from v 1.0.2.
http://www.inl.fr/article.php3?id_article=36
Tweeks
>
> Ed
> _______________________________________________
> SATLUG mailing list
> SATLUG at satlug.org
> http://alamo.satlug.org/mailman/listinfo/satlug
More information about the SATLUG
mailing list