Re: Logging
For example I would do:
$ipt -N LOGDROP
$ipt -A INPUT -p 6 -s 0/0 -d 0/0 --dport 35186 -j LOGDROP
$ipt -A LOGDROP -j LOG --log-level info --lof-prefix "Drop: "
$ipt -A LOGDROP -j DROP
I think your example wont work but this will..
I have a couple of more usefull examples in my webpage under
Sections/Configurations.
-daniel
http://www.debian-gnu.com
<quote who="Eric MacAdie">
> On Thu, 6 Nov 2003, Johannes Resch wrote:
>> James MS Anderson said:
>> >
>> > I'm sure this question's been asked loads of times, but I'm trying
>> > to work out if there's anyway to get *JUST* the firewall logs into
>> > any one file, rather than all the kernel logs and the firewall logs?
>>
>> take a look at ulogd (http://gnumonks.org/projects/ulogd).
>>
>> --jr
>
> If I want to log everything that gets dropped, do I have to make two
> rules? Or can I make just one?
>
> Would I have to use:
> $IPT -A INPUT -p 6 -s 0/0 -d 0/0 --dport 35186 -j DROP
> $IPT -A INPUT -p 6 -s 0/0 -d 0/0 --dport 35186 -j ULOG
>
> Or could I just use:
> $IPT -A INPUT -p 6 -s 0/0 -d 0/0 --dport 35186 -j DROP -j ULOG
>
> The documentation at gnumonks is not very good.
>
> EKMacAdie
>
>
>
> --
> To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
Reply to: