Log connections me iptables
V13
v13 at priest.com
Sat Sep 6 15:26:56 EEST 2003
On Saturday 06 September 2003 11:23, Peter Pissias wrote:
> Xairetw th lista.
>
> Sto scriptaki me tous kanones tou iptables exw kanones tou styl :
>
> iptables -A INPUT -i ppp0 -p tcp --destination-port 23 -j DROP
> iptables -A INPUT -i ppp0 -p tcp --destination-port 21 -j DROP
>
> An thelw na kanw log oti prospatheies ginontai gia connections sta ports
> afta, arkei na valw ena :
>
> iptables -A INPUT -i ppp0 -p tcp --destination-port 23 -j LOG
>
> prin apo kathe kanona?
nai...
An prokeitai gia tcp synisto mia syntaksi tis morfis:
iptables -A INPUT -p tcp --dport 23 -m limit --syn --limit 5/second -j LOG
--log-prefix "D-TELNET "
Oste:
a) na soy dinei mono ena msg ana syndesh (an exeis rule accept) (--syn)
b) na min soy gemisei ta logs (rate limit)
c) na mporeis na ksexoriseis eykola poios kanonas einai se kathe log entry
(log-prefix)
> Petros Pissias
<<V13>>
More information about the Linux-greek-users
mailing list