For example I would do: $ipt -N LOGDROP $ipt -A INPUT -p 6 -s 0/0 -d 0/0 --dport 35186 -j LOGDROP $ipt -A LOGDROP -j LOG --log-level info --lof-prefix "Drop: " $ipt -A LOGDROP -j DROP
I think your example wont work but this will.. I have a couple of more usefull examples in my webpage under Sections/Configurations. -daniel http://www.debian-gnu.com <quote who="Eric MacAdie"> > On Thu, 6 Nov 2003, Johannes Resch wrote: >> James MS Anderson said: >> > >> > I'm sure this question's been asked loads of times, but I'm trying >> > to work out if there's anyway to get *JUST* the firewall logs into >> > any one file, rather than all the kernel logs and the firewall logs? >> >> take a look at ulogd (http://gnumonks.org/projects/ulogd). >> >> --jr > > If I want to log everything that gets dropped, do I have to make two > rules? Or can I make just one? > > Would I have to use: > $IPT -A INPUT -p 6 -s 0/0 -d 0/0 --dport 35186 -j DROP > $IPT -A INPUT -p 6 -s 0/0 -d 0/0 --dport 35186 -j ULOG > > Or could I just use: > $IPT -A INPUT -p 6 -s 0/0 -d 0/0 --dport 35186 -j DROP -j ULOG > > The documentation at gnumonks is not very good. > > EKMacAdie > > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED]
