On Sun, Oct 06, 2002 at 02:55:27PM +0200, Michael Schwendt wrote: > On Sat, 5 Oct 2002 22:20:56 -0400, Hal Burgiss wrote: > > > > LOG doesn't terminate processing. > > > > Of course not ... > > Why "of course"? With ipchains a LOG target is the end of a chain.
"Of course", because there was no implication otherwise, and because it is clearly documented as such. > With netfilter it is different. There was no LOG *target* with ipchains. Just a command line option, that could be combined with other options and/or Targets. Targets are a different concept altogether, and even with ipchains, only one Target per rule is allowed. This much is no different. What is distinctly different is that logging with ipchains was activated with a command line option, and with iptables it is only via a Target. The LOG target does not terminate a _chain_, as some (most?) other Targets do. -- Hal Burgiss
