Menu
What's new
By:
Filters Better Search

Firewall log location

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

jeff288

jeff288

Regular Contributor
Is there some way to change this to store on my onboard microsd card? And holy crap, I turned on the firewall for dropped packets and I never noticed just how many devices/people come knocking at your door uninitiated.
 
I know. I decided to turn on logging the other day and it's unreal, multiple attemps every second from random IPs knocking at the door, mostly telnet attempts. Is there an easy way of just blocking all non-American inbound uninitiated IPs and not log them so it's not filling up the log qeue?
 
Kim Puleston said:
Good question, I would personally prefer thall all logs be stored on my USB stick plugged in my router.
Click to expand...

I'll update in case someone has the same question. Copy this and name it post-mount, put it in /jffs/scripts and chmod +x to make it executable. Also might want to use notepad++ and save as unix file or use the now embedded nano editor to make sure it saves in compatible format:

Code: 
#!/bin/sh
killall syslogd
rm /tmp/syslog.log
syslogd -O /mnt/Router/syslogs/syslog.log -s 256 -l 7

Last line is usb, change as appropriate for your location. -s is the file size before rotation and -l is the verbosity. The -b option for # of logs doesn't allow for more than one, it seems. And unfortunately you won't see the syslog in the GUI but you can add:

Code: 
ln -s /mnt/Router/syslogs/syslog.log /tmp/syslog.log

This thread was of help. Sorry to bump this thread again, thought it might be helpful to someone else.
 
Last edited:
I wonder of it would be possible to install failtoban on these routers?
I've used it on several Tor servers over the years and it's a great program to help keep the bad guys out.
 
fail2ban requires Python, which is a pretty large environment. You'd have to see if all the necessary dependencies could be installed from Optware.
 
It looks like python 3.5.1-4 is available.
"This package contains the (almost) full Python install. It's python3-light + all other packages."
Fail2ban just requires > 2.6
Then it seems to be just a matter of downloading the tarball and installing it.

"The code has been completely rewritten since 0.6.x. Fail2ban is entirely written in Python and thus should work on most of the *nix systems."
I think I'll give it a go.
 
jeff288 said:
I'll update in case someone has the same question. Copy this and name it post-mount, put it in /jffs/scripts and chmod +x to make it executable. Also might want to use notepad++ and save as unix file or use the now embedded nano editor to make sure it saves in compatible format:

Code: 
#!/bin/sh
killall syslogd
rm /tmp/syslog.log
syslogd -O /mnt/Router/syslogs/syslog.log -s 256 -l 7

Last line is usb, change as appropriate for your location. -s is the file size before rotation and -l is the verbosity. The -b option for # of logs doesn't allow for more than one, it seems. And unfortunately you won't see the syslog in the GUI but you can add:

Code: 
ln -s /mnt/Router/syslogs/syslog.log /tmp/syslog.log

This thread was of help. Sorry to bump this thread again, thought it might be helpful to someone else.
Click to expand...

Thanks for posting this. Still I wonder what's the use to you doing it this way?
Log rotation doesn't work, you said. And through my findings, nor does increasing the log size.
So compared to the original situation there are not more logs to view this way.
Or did you find a way (Without running opt ware) to accumulate all logs until the given size of your usb drive is reached and make it rotate in any way?
Thanks
 
Last edited:
rotorbudd said:
It looks like python 3.5.1-4 is available.
"This package contains the (almost) full Python install. It's python3-light + all other packages."
Fail2ban just requires > 2.6
Then it seems to be just a matter of downloading the tarball and installing it.

"The code has been completely rewritten since 0.6.x. Fail2ban is entirely written in Python and thus should work on most of the *nix systems."
I think I'll give it a go.
Click to expand...
Please, did you manage to install it? It works also for port 21 FTP? Many thanks!
 
So maybe Merlin can add this feature into future releases? :)
The implementation could be quite similar to traffic stats logs.
 
You must log in or register to reply here.

Similar threads

B
Firewall lan - vpn?
Replies
0
Views
511
blast
B
Tyrfing
Asus RT-AX88U Stuck on Merlin Firmware 388.1
Replies
9
Views
1K
Tyrfing
Tyrfing
J
Assign Device Names in System-Wireless Log specifically for AIMesh Nodes? And change AIMesh Host Name
Replies
19
Views
1K
jksmurf
J
RMerlin
  • Locked
Beta Asuswrt-Merlin 3004.388.7 beta is now available
5 6 7
Replies
123
Views
17K
RMerlin
RMerlin
E
Question about DDNS forced update interval RT-AX86U
Replies
3
Views
300
eibgrad
eibgrad
Similar threads
Thread starter Title Forum Replies Date
G Feature request: firewall url filter log Asuswrt-Merlin 0
Z Dual WAN + Dual Firewall Asuswrt-Merlin 11
K Asus router as adblock/firewall server (but not acting as a router) between modem and mesh routers Asuswrt-Merlin 7
M wan dhcpv6 blocked by firewall Asuswrt-Merlin 2
L is enabling firewall necessary (same for upnp) when on a provider with cgnat? Asuswrt-Merlin 5
M Advance firewall rules Asuswrt-Merlin 5
fffddd URL filtering in the firewall does not take effect Asuswrt-Merlin 7
B Firewall lan - vpn? Asuswrt-Merlin 0
John Tetreault How to open ipv6 firewall to a port on the router? Asuswrt-Merlin 7
C Port Forwarding and Firewall - not working as I expect Asuswrt-Merlin 4

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 829 (members: 22, guests: 807)
Top