Re: Log with iptables

To: debian-firewall@lists.debian.org
Subject: Re: Log with iptables
From: Michael Wood <mwood@its.uct.ac.za>
Date: Wed, 10 Apr 2002 17:06:19 +0200
Message-id: <[🔎] 20020410150619.GA28765@marmite.its.uct.ac.za>
Mail-followup-to: Michael Wood <mwood@its.uct.ac.za>, debian-firewall@lists.debian.org
In-reply-to: <[🔎] 01de01c1e09c$30077680$7aa01bac@prolan.com.br>
References: <[🔎] 01de01c1e09c$30077680$7aa01bac@prolan.com.br>

On Wed, Apr 10, 2002 at 11:29:51AM -0300, Eduardo Gon?alves wrote:
[snip]
> with ipchains:
> #ipchains -A input -p icmp -j ACCEPT -l    --> accept and log
> 
> with iptables, to do the same job:
> #iptables -A INPUT -p icmp -j LOG
> #iptables -A INPUT -p icmp -j ACCEPT
> 
> 
> Is this the correct?!
[snip]

Yes, but you can also do something like this:

# Create a new chain called LOGACCEPT
iptables -N LOGACCEPT

# Make it log and then accept everything
iptables -A LOGACCEPT -j LOG
iptables -A LOGACCEPT -j ACCEPT

# Send stuff to the LOGACCEPT chain
iptables -A INPUT -p icmp -j LOGACCEPT

-- 
Michael Wood <mwood@its.uct.ac.za>


-- 
To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: Log with iptables
  - From: Eduardo Gonçalves <egsilva@prolan.com.br>

References:
- Log with iptables
  - From: Eduardo Gonçalves <egsilva@prolan.com.br>

Prev by Date: RE: Log with iptables
Next by Date: Re: Log with iptables
Previous by thread: Log with iptables
Next by thread: Re: Log with iptables
Index(es):
- Date
- Thread