Re: how to log iptables

To: debian-firewall@lists.debian.org
Subject: Re: how to log iptables
From: "Gabriele Pongelli" <le0n_84@hotmail.com>
Date: Wed, 29 Mar 2006 15:05:18 +0200
Message-id: <[🔎] BAY108-F56C06CF49A48D3343B988CBD00@phx.gbl>
In-reply-to: <[🔎] 44295E02.3040607@utica.edu>

From: "David A. Parker" <dparker@utica.edu>
To: debian-firewall@lists.debian.org
Subject: Re: how to log iptables
Date: Tue, 28 Mar 2006 11:02:10 -0500

Hello,

# Log all incoming TCP packets
iptables -A INPUT -p tcp -j LOG --log-prefix "---[LOGGED (INPUT)]:--- "

# Log all incoming UDP packets
iptables -A INPUT -p udp -j LOG --log-prefix "---[LOGGED (INPUT)]:--- "

Note that these rules will log EVERY INCOMING PACKET and your syslog logswill get pretty big.


is it possible to save the log in different files?!?
an example:
iptables -A INPUT -p tcp -j LOG --log-prefix "---[LOGGED (INPUT)]:--- "
save log to /var/log/iptables_input_tcp and
iptables -A INPUT -p udp -j LOG --log-prefix "---[LOGGED (INPUT)]:--- "
save log to /var/log/iptables_input_udp

Thanks!

_________________________________________________________________
Scarica gratuitamente MSN Toolbar! http://toolbar.msn.it/

Reply to:

Follow-Ups:
- Re: how to log iptables
  - From: Andrew Kirkpatrick <andykirk@ubermonkey.net>
- Re: how to log iptables
  - From: Micha <codejodler@gmx.ch>

References:
- Re: how to log iptables
  - From: "David A. Parker" <dparker@utica.edu>

Prev by Date: Re: how to log iptables
Next by Date: Re: how to log iptables
Previous by thread: Re: how to log iptables
Next by thread: Re: how to log iptables
Index(es):
- Date
- Thread