Endian criando log gigantesco

1. Endian criando log gigantesco

fabiosouzati
(usa Outra)

Enviado em 18/11/2013 - 09:51h

Pessoal, bom dia.

Sou novo no uso do linuz e do endian e desde sexta me deparei com o meu firewall endian gerando um arquivo de log gigantesco chegando ao ponto de parar a maquina e a navegação.

A maquina para devido ao alto consumo de recursos da mesma e a navegação devido a partição /var/log encher em 100%

o Sistema tem gerado um arquivo chamado firewall que cresce em média 10 Mb por minuto.

Segue as linhas geradas.

00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l2 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l2 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l2 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l2 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l3 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l3 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l3 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l3 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l3 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l2 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l2 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l2 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l2 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l2 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l3 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l3 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000
Nov 18 09:37:14 fw-to ulogd[2626]: INPUTFW:ACCEPT:17:l3 IN=br0 OUT= MAC=ff:ff:ff:ff:ff:ff:c8:3a:35:2e:82:68:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=68 DPT=67 LEN=556 MARK=2000

Alguém já viu isso e saberia nos orientar como resolver??

Se o post estiver no local errado, me perdoem.

0 0

Quote

2. Re: Endian criando log gigantesco

foxbit3r
(usa Solaris)

Enviado em 18/11/2013 - 11:45h

No seu Endian deve estar configurado para log regras de firewall.
Vc pode primeiramente parar o serviço de log ( syslogd, syslog-ng ou outro ).

Depois desabilitar a opção de logar regras de firewall.

0 0

Quote

3. Re: Endian criando log gigantesco

rgrube
(usa Outra)

Enviado em 19/11/2013 - 10:03h

Estou com o mesmo problema, mas não consegui achar nenhuma opção para desabilitar outros logs que não sejam os do proxy.

Acredito que é porque não seja por interface gráfica e sim no console. Sabe me dizer como posso desabilitar estes logs?

Obrigado desde já!

0 0

Quote