Nulog is a PHP interface that offers support for the MySQL plugin of ulogd netfilter log daemon and NuFW SQL logging, improving logging capabilities for increased network security.
To get started with Nulog, the first step is to set up the database by creating a MySQL database called ulogd and populating it with ulogd.mysqldump. Users will need to enter their user and password in the include/require.inc file. It is important to note that this database is not the standard MySQL database for ulogd, as it adds a few tables and indexes to ensure optimal performance.
Once the database is set up, users will need to configure their netfilter installation if they are not using EdenWall or NuFW. Logging bad packets requires the use of ULOG, which can be done through the following command: iptables -A FORWARD -j ULOG --ulog-nlgroup 1 --ulog-prefix "badif".
The latest release of Nulog allows for MySQL triggers to be used instead of PHP code to compute statistical data. With its user-friendly interface and helpful features, Nulog is a reliable choice for analyzing firewall logs.
Version 1.2.14: N/A