Re: iptables logging
From: Andreas Wilm (wilm_at_biophys.uni-duesseldorf.de)
Date: 03/26/04
- Next message: Daniel James: "Re: encryption programs"
- Previous message: Dave Millen: "iptables logging"
- In reply to: Dave Millen: "iptables logging"
- Next in thread: jack: "Re: iptables logging"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 26 Mar 2004 12:58:59 +0100
Hi,
> However I want to log dropped/rejected connection attempts from certain
> netblocks until I am sure that I have got it right.
>
> /sbin/iptables -A INPUT -p all -i eth1 -s x.x.x.0/24 -j LOG
> /sbin/iptables -A INPUT -p all -i eth1 -s x.x.x.0/24 -j REJECT
>
> I expected this to log to /var/log/messages, but nothing seems to be
> showing up. Have I got the syntax wrong, or does the logging go elsewhere?
The syntax is okay, I think.
Maybe you should insert this rules very early in your rule-set, and not
at the end, where some other (terminating) matches might already have
ended the packet chain traversal.
Regards,
Andreas
-- Andreas Wilm =========================================== Heinrich-Heine-Universitaet Duesseldorf Institut fuer Physikalische Biologie http://www.biophys.uni-duesseldorf.de/ http://www.biophys.uni-duesseldorf.de/~wilm
- Next message: Daniel James: "Re: encryption programs"
- Previous message: Dave Millen: "iptables logging"
- In reply to: Dave Millen: "iptables logging"
- Next in thread: jack: "Re: iptables logging"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
