Iptqlog is the IPTables Queue LOGger. It produces clean, easy to understand and (optionally) colorized logs of the packets that were sent to the user space using the QUEUE target of iptables. Its key features are the resolving of the ip numbers, port numbers (both system-wide and user settings) and protocol numbers, colorized output, logging to standard output, syslog or both and the possibility of creating your own output format.
Iptqlog can also dump the packets in pcap format, which can be processed by tcpdump, snort, ethereal and others.
You can limit which packets are logged based on their packet mark set by iptables. You can also decide whether you want to drop or accept the packets.
Color terminal output (PNG, 14k)
Syslog output (plain text)
Alternate terminal output (plain text)
Read what's new:
NEWS
Read the documentation:
README
iptqlog.1
ChangeLog
Download the current version:
iptqlog-0.4.tar.gz
QUEUE-enabled Linux kernel and
iptables
(>=2.4.5 and >=1.2.2 should be OK)
Perl 5.6.1
IPTables::IPv4::IPQueue Perl module (aka perlipq)
NetPacket Perl modules
Iptqlog was written by Andras Bali.
The whole package is free software and is distributed under the
GNU General
Public License.
$Date: 2002/03/30 19:44:37 $
