[ previous ] [ next ] [ threads ]
 
 From:  Bart Smit <bit at pipe dot nl>
 To:  Francisco Reyes <lists at natserv dot com>
 Cc:  M0N0Wall firewall <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] Space requirements and logging
 Date:  Fri, 12 Dec 2003 16:11:41 +0100 (CET)
On Fri, 12 Dec 2003, Francisco Reyes wrote:

> Recently found M0n0Wall and have been going over the archives looking for
> requirements. In particular space for logs.

By design, m0n0wall doesn't keep its logs. It only keeps a small tail to
aid in troubleshooting. If you want real logging, you should log to a
loghost in your LAN, using syslog. This is generally the preferred method
for firewalls anyway, for quite obvious reasons: if the firewall is
somehow compromised, the logs are still safe.

> How can you "wear out" a CF card anyway?

Repeated writing to the same areas will eventually break the card.
Frequent appends to files (as in logging) tend to do this rather quickly,
since the meta information is updated each time, always writing to the
same location in flash memory. This is the reason for mounting the cards
ro.

--B