Завожу в системе vlan-ы.
в ndsad.conf:
force_family vlan
тпереь охота для всего семейства поставить фильтр, как это сделать?...
сейчас стоит:
filter vlan0 not proto gre
filter vlan1 not proto gre
filter vlan2 not proto gre
как для всего сеймейства одной строкой?
Спасибо!
ndsad - фильтр на семейтсво интерфейсов - как?
нет...
ndsad[14674]: Applying filter:not proto gre to device:fxp1
ndsad[14674]: pcap_datalink(fxp1) = 1
ndsad[14674]: Set ppp offset = 4
ndsad[14674]: `vlan1' thread started successfully.
ndsad[14674]: `vlan1' thread is preparing for PCAP loop call
ndsad[14674]: pcap_datalink(vlan1) = 1
ndsad[14674]: Set ppp offset = 4
ndsad[14674]: `vlan2' thread started successfully.
ndsad[14674]: `vlan2' thread is preparing for PCAP loop call
ndsad[14674]: pcap_datalink(vlan2) = 1
ndsad[14674]: Set ppp offset = 4
ndsad[14674]: `lo0' thread started successfully.
ndsad[14674]: `lo0' thread is preparing for dummy loop call
как видно фильтра нету!
ndsad[14674]: Applying filter:not proto gre to device:fxp1
ndsad[14674]: pcap_datalink(fxp1) = 1
ndsad[14674]: Set ppp offset = 4
ndsad[14674]: `vlan1' thread started successfully.
ndsad[14674]: `vlan1' thread is preparing for PCAP loop call
ndsad[14674]: pcap_datalink(vlan1) = 1
ndsad[14674]: Set ppp offset = 4
ndsad[14674]: `vlan2' thread started successfully.
ndsad[14674]: `vlan2' thread is preparing for PCAP loop call
ndsad[14674]: pcap_datalink(vlan2) = 1
ndsad[14674]: Set ppp offset = 4
ndsad[14674]: `lo0' thread started successfully.
ndsad[14674]: `lo0' thread is preparing for dummy loop call
как видно фильтра нету!
/netup/utm5/ndsad.cfg:Vovik писал(а):up?
nf_lifetime 30
port 9996
force_family vlan
ignore rl0
hash lo 64
hash all 128
heap 65536
log /tmp/ndsad.log
А вот лог:
ndsad[3390]: `ste0': new device
ndsad[3390]: `rl0': new device
ndsad[3390]: `vlan700': new device
ndsad[3390]: `vlan701': new device
ndsad[3390]: `lo0': new device
ndsad[3390]: `ste0' thread started successfully.
ndsad[3390]: `rl0' thread started successfully.
ndsad[3390]: `rl0' thread is preparing for dummy loop call
ndsad[3390]: `vlan700' thread started successfully.
ndsad[3390]: `vlan700' thread is preparing for PCAP loop call
ndsad[3390]: pcap_datalink(vlan700) = 1
ndsad[3390]: Set ppp offset = 4
ndsad[3390]: `vlan701' thread started successfully.
ndsad[3390]: `vlan701' thread is preparing for PCAP loop call
ndsad[3390]: pcap_datalink(vlan701) = 1
ndsad[3390]: Set ppp offset = 4
ndsad[3390]: `lo0' thread started successfully.
ndsad[3390]: `lo0' thread is preparing for PCAP loop call
ndsad[3390]: pcap_datalink(lo0) = 0
ndsad[3390]: Set ppp offset = 4
ndsad[3390]: `ste0' thread is entering dummy mode due to error:
interface is not configured or down
Все это на FreeBSD 5.2.1
ndsad 1.32.1