iptables and config-securitylevel
Harry Putnam
reader at newsguy.com
Thu Feb 3 14:25:49 UTC 2005
James Kosin <jkosin at beta.intcomgrp.com> writes:
> What you have to do is take a look at the flow of messages. You can't
> LOG and REJECT on the same line. What you have to do is place another
> line just above this line that looks almost identical only you replace
> "-j REJECT --reject-with-icmp-host-prohibited" with "-j LOG" ....
> So as the packet flows along down the path, it will get logged....
> then continue on and get rejected.
Thanks... I think I was confusing iptables syntax with some tinkering
a few mnths ago with openbsd filtering... Thanks again.
More information about the fedora-list
mailing list