KaarPux Package: ulogd¶
userspace logging daemon for netfilter/iptables related logging.
- Name
- ulogd
- Version
- 2.0.5
- Homepage
- http://www.netfilter.org/projects/ulogd/
- Step
- Bootstrap 8
- Definition
- ulogd.yaml
We configure KaarPux Package: iptables to log dropped packets using the kernel nfnetlink subsystem.
We then start ulogd.service,
which will log dropped packets into
/var/log/iptables_drop.pcap.
Dropped packets can now be analyzed using KaarPux Package: tcpdump, KaarPux Package: wireshark, or similar.
Documentation can be found at ULOGD 2.x - the Netfilter Userspace Logging Daemon.