Log connections me iptables
Stelios Bounanos
sb at dial.pipex.com
Sat Sep 6 15:58:12 EEST 2003
>>>>> On Sat, 6 Sep 2003 11:23:01 +0300, Peter Pissias
>>>>> <petrance at di.uoa.gr> was rumoured to have said:
> Xairetw th lista.
> Sto scriptaki me tous kanones tou iptables exw kanones tou styl :
> iptables -A INPUT -i ppp0 -p tcp --destination-port 23 -j DROP
> iptables -A INPUT -i ppp0 -p tcp --destination-port 21 -j DROP
> An thelw na kanw log oti prospatheies ginontai gia connections sta ports
> afta, arkei na valw ena :
> iptables -A INPUT -i ppp0 -p tcp --destination-port 23 -j LOG
> prin apo kathe kanona?
Nai, alla IMHO an prokeitai na exeis polla tetoia tote einai pio
kompso kati toy styl:
#Log and drop chain
iptables -N logdrop
iptables -A logdrop -m limit -j LOG --log-level info --log-prefix "_DROP_"
iptables -A logdrop -j DROP
Opote meta mporeis na kaneis
iptables -A INPUT -i ppp0 -p tcp --destination-port 23 -j logdrop
To pi8ano problhma twra einai oti de mporeis na exeis ksexwristo log
limit gia ka8e rule.
> Thanks
> Petros Pissias
Rgds,
/-sb.
More information about the Linux-greek-users
mailing list