On Thu, May 18, 2006 at 04:10:22PM -0400, Chad M Stewart wrote: > For some reason I'm not seeing every blocked packet logged.
Why do you expect every blocked packet to get logged? Not all your block rules use 'log'. Packets could easily get blocked by a rule without 'log', hence get blocked but not logged. Only the last matching rule matters. If the last matching rule has 'log', the packet is logged. If the last matching rule doesn't, it isn't. Maybe the packet matched another rule, earlier, which had the 'log' option. But that is irrelevant. The flag does not 'stick' when a rule matches, or similar. If you really want every blocked packet logged, add 'log' to every single block rule. Daniel
