netfilter/iptables TRACE filling up syslog
I recently ran out of diskspace on my file server and in the investigation found that /var/log/firewall was the culprit, it is full of entries such as this:
Jan 4 16:46:55 myserver kernel: TRACE: filter:OUTPUT:rule:1 IN= OUT=eth0 SRC=192.168.178.2 DST=192.168.178.20 LEN=1300 TOS=0x00 PREC=0x00 TTL=64 ID=18942 DF PROTO=TCP SPT=139 DPT=1303 SEQ=4008826297 ACK=2671083022 WINDOW=12864 RES=0x00 ACK URGP=0 UID=0
These entries appear several times per second, so it doesn't take long for the log file to fill up the disk.
It appears to be some sort of debugging info of netfilter, or at least it looks like it, but I have not enabled anything of the sort.
I have tried to find information on netfilter and TRACE, but the results were not so informative. At least I found out that in recent kernels there is a TRACE target for netfilter that can be enabled. However, in my system, this is a loadable module called xt_TRACE, and it is not even loaded!
And even if I completely shut down the firewall:
# Generated by iptables-save v1.3.6 on Fri Jan 4 17:59:22 2008
:INPUT ACCEPT [1046:56056]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [1831:2199470]
# Completed on Fri Jan 4 17:59:22 2008
the syslog still clogs up like crazy.
Can anyone tell me what is going on here? And how I can get rid of it?
My kernel is 2.6.23, iptables is used as a local firewall, no complicated setup.