[ previous ] [ next ] [ threads ]
 
 From:  "Molle Bestefich" <molle dot bestefich at gmail dot com>
 To:  "Chris Buechler" <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] problem when using VLANs and NAT
 Date:  Mon, 12 Jun 2006 20:48:01 +0200
Molle Bestefich wrote:
> As far as I'm concerned, a firewall should log all packets it's
> dropping, regardless of cause.  Therefore my personal attitude towards
> this is that m0n0wall is missing a hook into the OS somewhere,
> allowing it to log this stuff.  Or maybe the OS is missing a feature
> that would enable it to log such events to the syslog by itself.

To put it another way, "black holes in a firewall is a bad thing."