E
Ed van Balen
Hi,
I did ask this question on September 12, but did not get any response.
Because I am still confused by this, one more try:
In the WinXP-SP2 firewall log pfirewall.log there are 17 fields on each
line, separated by spaces.
However, in the header of the log file only 16 fields are identified:
#Fields: date time action protocol src-ip dst-ip src-port dst-port size
tcpflags tcpsyn tcpack tcpwin icmptype icmpcode info
Reading KB-article 875357, I guess that the field names in the header are
for the first 16 fields.
But then what is the 17th field, containing for instance "-" or "RECEIVE"?
Is this the direction of the packet, relative to the host?
Anybody?
Thanks,
--
Ed van Balen
Amsterdam, the Netherlands
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Please respond in this newsgroup.
Tired of the spam, my E-mail address is faked.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
I did ask this question on September 12, but did not get any response.
Because I am still confused by this, one more try:
In the WinXP-SP2 firewall log pfirewall.log there are 17 fields on each
line, separated by spaces.
However, in the header of the log file only 16 fields are identified:
#Fields: date time action protocol src-ip dst-ip src-port dst-port size
tcpflags tcpsyn tcpack tcpwin icmptype icmpcode info
Reading KB-article 875357, I guess that the field names in the header are
for the first 16 fields.
But then what is the 17th field, containing for instance "-" or "RECEIVE"?
Is this the direction of the packet, relative to the host?
Anybody?
Thanks,
--
Ed van Balen
Amsterdam, the Netherlands
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Please respond in this newsgroup.
Tired of the spam, my E-mail address is faked.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~