Logging would probably also be useful.
How do I do that?
the 'LOG' or 'ULOG' targets. 'LOG' is easier to use initially, and the iptables manual page covers it.
It writes messages about packets that match that rule to your kernel message log, which feeds into syslog.
Could I do it like this:
# Default rules iptables -P INPUT LOG DROP iptables -P FORWARD LOG DROP iptables -P OUTPUT ACCEPT
Thanks, Jacob
