Não há logs do UFW no syslog

Navegue suas respostas
0

Estou usando aqui o UFW como uma proteção básica. Quando estou usando o wi-fi da faculdade eu recebo algum bloco UFW (o que é normal, porque o firewall está ON).

Mas, estranhamente, não estou recebendo nenhum log UFW em casa (costumava ser um pouco, mas agora não há blocos).

Aqui estão algumas informações sobre ufw status verbose 

Status: active
Logging: on (low)
Default: reject (incoming), allow (outgoing), disabled (routed)
New profiles: skip

Há algo errado com meu roteador ou PC?

EDIT: Estou incluindo alguns logs de blocos do UFW do syslog: 

Mar 21 10:45:16 IBM-5100 kernel: [   98.436052] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=33520 DF PROTO=TCP SPT=80 DPT=52722 WINDOW=530 RES=0x00 ACK FIN URGP=0 
Mar 21 10:45:16 IBM-5100 kernel: [   98.449193] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=49314 DF PROTO=TCP SPT=80 DPT=52721 WINDOW=645 RES=0x00 ACK FIN URGP=0 
Mar 21 10:45:17 IBM-5100 kernel: [   98.570999] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=58273 DF PROTO=TCP SPT=80 DPT=52723 WINDOW=619 RES=0x00 ACK FIN URGP=0 
Mar 21 10:45:17 IBM-5100 kernel: [   98.802973] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=58274 DF PROTO=TCP SPT=80 DPT=52723 WINDOW=619 RES=0x00 ACK FIN URGP=0 
Mar 21 10:45:17 IBM-5100 kernel: [   98.837751] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=47387 DF PROTO=TCP SPT=80 DPT=52725 WINDOW=491 RES=0x00 ACK FIN URGP=0 
Mar 21 10:45:17 IBM-5100 kernel: [   98.899208] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=18711 DF PROTO=TCP SPT=80 DPT=52724 WINDOW=492 RES=0x00 ACK FIN URGP=0 
Mar 21 10:45:17 IBM-5100 kernel: [   98.916786] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=33521 DF PROTO=TCP SPT=80 DPT=52722 WINDOW=530 RES=0x00 ACK FIN URGP=0 
Mar 21 10:45:17 IBM-5100 kernel: [   98.926664] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=49315 DF PROTO=TCP SPT=80 DPT=52721 WINDOW=645 RES=0x00 ACK FIN URGP=0 
Mar 21 10:45:17 IBM-5100 kernel: [   99.035012] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=58275 DF PROTO=TCP SPT=80 DPT=52723 WINDOW=619 RES=0x00 ACK FIN URGP=0 
    Mar 21 10:45:17 IBM-5100 kernel: [   99.500770] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=23.216.171.218 DST=192.168.0.136 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=58276 DF PROTO=TCP SPT=80 DPT=52723 WINDOW=619 RES=0x00 ACK FIN URGP=0
Mar 21 01:04:26 IBM-5100 kernel: [ 2282.633953] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=91.189.92.10 DST=192.168.0.136 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=29648 DF PROTO=TCP SPT=443 DPT=34955 WINDOW=0 RES=0x00 RST URGP=0
Mar 21 01:04:26 IBM-5100 kernel: [ 2282.714411] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=91.189.92.11 DST=192.168.0.136 LEN=40 TOS=0x00 PREC=0x00 TTL=46 ID=27150 DF PROTO=TCP SPT=443 DPT=45527 WINDOW=0 RES=0x00 RST URGP=0 
Mar 21 01:04:26 IBM-5100 kernel: [ 2282.633953] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=91.189.92.10 DST=192.168.0.136 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=29648 DF PROTO=TCP SPT=443 DPT=34955 WINDOW=0 RES=0x00 RST URGP=0 
Mar 21 01:04:26 IBM-5100 kernel: [ 2282.714411] [UFW BLOCK] IN=eth0 OUT= MAC=1c:6f:65:ae:63:5e:00:24:01:97:d7:32:08:00 SRC=91.189.92.11 DST=192.168.0.136 LEN=40 TOS=0x00 PREC=0x00 TTL=46 ID=27150 DF PROTO=TCP SPT=443 DPT=45527 WINDOW=0 RES=0x00 RST URGP=0

Obrigado por me ajudarem.

    
por Nori-chan 31.03.2015 / 22:34

1 resposta

0

Praticamente estes são os mesmos registros.

Tente com o comando 

sudo ufw logging high

Depois disso, a verificação será registrada em /var/log/ufw.log

    
por 2707974 01.04.2015 / 14:15
32 bits vs 64 bits [duplicado] Problemas do Google Docs em 12.04