On Thursday 30 May 2002 2:13 pm, Damijan Sencar wrote: > Hi! > > I want to log all new ssh connections from Internet to syslogd. I added > chain as follows but it doesn't log anything. > > $IPTABLES -A tcp_packets -p TCP -s 0/0 --dport 22 -m state --state NEW > -j LOG --log-level DEBUG --log-prefix "NEW SSH IN > logged" > $IPTABLES -A tcp_packets -p TCP -s 0/0 --dport 22 -j allowed > > > However it works (logs all packets to syslogd) if I change state from > NEW to ESTABLISHED. What could be wrong there?
Where do you reference your user-defined chain 'tcp_packets' from ? Show us your INPUT or FORWARD rules (whichever are appropriate) including the bit which jumps to 'tcp_packets' and we can probably think of something for you. It might be useful to know what your other user-defined chain 'allowed' does too. Antony.
