iptables and config-securitylevel

[Harry Putnam]

James Kosin <jkosin at beta.intcomgrp.com> writes:

> What you have to do is take a look at the flow of messages.  You can't
> LOG and REJECT on the same line.  What you have to do is place another
> line just above this line that looks almost identical only you replace
> "-j REJECT --reject-with-icmp-host-prohibited"  with "-j LOG" ....
> So as the packet flows along down the path, it will get logged....
> then continue on and get rejected.

Thanks... I think I was confusing iptables syntax with some tinkering
a few mnths ago with openbsd filtering... Thanks again.