Teach periodic(8) security output to display information about blocked

packet counts by pf(4). This adds a ``daily_status_security_pfdenied_enable'' variable to periodic.conf, which defaults to ``YES'' as the matching IPF(W) versions. The output will look like this (line wrapped): pf denied packets: > block drop log on rl0 proto tcp all [ Evaluations: 504986 Packets: 0 Bytes: 0 States: 0 ] > block drop log on rl0 all [ Evaluations: 18559 Packets: 427 Bytes: 140578 States: 0 ] Submitted by: clive (thanks a lot!) MFC after: 2 weeks
author: mlaier <mlaier@FreeBSD.org> 2004-11-24 18:41:53 +0000
committer: mlaier <mlaier@FreeBSD.org> 2004-11-24 18:41:53 +0000
commit: 7e3eabcfe72165d20eade8521973655f96812a6a (patch)
tree: 7110aff076e8dfa44c8d370ca5d285e86ff1edd2 /etc/defaults/periodic.conf
parent: b8ce76bac017042a804ba9feeca94a34bf0d5b87 (diff)
download: FreeBSD-src-7e3eabcfe72165d20eade8521973655f96812a6a.zip
FreeBSD-src-7e3eabcfe72165d20eade8521973655f96812a6a.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/etc/defaults/periodic.conf b/etc/defaults/periodic.conf
index 85f2ee7..a1d81a3 100644
--- a/etc/defaults/periodic.conf
+++ b/etc/defaults/periodic.conf
@@ -150,6 +150,9 @@ daily_status_security_ipfwdenied_enable="YES"
 # 510.ipfdenied
 daily_status_security_ipfdenied_enable="YES"
 
+# 520.pfdenied
+daily_status_security_pfdenied_enable="YES"
+
 # 550.ipfwlimit
 daily_status_security_ipfwlimit_enable="YES"
author	mlaier <mlaier@FreeBSD.org>	2004-11-24 18:41:53 +0000
committer	mlaier <mlaier@FreeBSD.org>	2004-11-24 18:41:53 +0000
commit	7e3eabcfe72165d20eade8521973655f96812a6a (patch)
tree	7110aff076e8dfa44c8d370ca5d285e86ff1edd2 /etc/defaults/periodic.conf
parent	b8ce76bac017042a804ba9feeca94a34bf0d5b87 (diff)
download	FreeBSD-src-7e3eabcfe72165d20eade8521973655f96812a6a.zip FreeBSD-src-7e3eabcfe72165d20eade8521973655f96812a6a.tar.gz