Re: help - log iptables

To: "Flavio A. Reis" <reis.falexandre@gmail.com>
Cc: debian-firewall@lists.debian.org
Subject: Re: help - log iptables
From: Bjoern Meier <bjoern.meier@googlemail.com>
Date: Fri, 1 Apr 2011 15:06:26 +0200
Message-id: <[🔎] AANLkTinuz0QCMx2FMJH+2LCadnWC_dn2QG+gtbLsXU7B@mail.gmail.com>
In-reply-to: <[🔎] AANLkTi=-Eytjse=83DrqGhE2MsQiJGjdCu0weoaNpjJ_@mail.gmail.com>
References: <[🔎] AANLkTi=-Eytjse=83DrqGhE2MsQiJGjdCu0weoaNpjJ_@mail.gmail.com>

hi,

2011/4/1 Flavio A. Reis <reis.falexandre@gmail.com>:
> Hello,
> friends, you can log into all that iptables is being blocked without logging
> rules ACCEPT.
> Example:
> My Firewall has only opened the ports (80, 443, 53).
> You can log all other connection attempts?
> Thanks
> att

sure.
- Set Default Policy for INPUT to DROP
- Create Rule for ACCEPT 80,443,53
- Append logging Rule (if the packets end here, it will be dropped);
maybe with Prefix "DROP:"
- change logrotate rules (you will get a lot of log entries).

Greetings,
Björn

Reply to:

Follow-Ups:
- Re: help - log iptables
  - From: Remzi AKYÜZ <linuxliste@gmail.com>

References:
- help - log iptables
  - From: "Flavio A. Reis" <reis.falexandre@gmail.com>

Prev by Date: help - log iptables
Next by Date: Re: help - log iptables
Previous by thread: help - log iptables
Next by thread: Re: help - log iptables
Index(es):
- Date
- Thread