Hello, If you construct your firewall like this: - allow what's allow - log and drop everything else. You will have what you need. you can use something like: iptables -N logdrop iptables -A logdrop -j LOG iptables -A logdrop -j DROP and at the end of your chains add: iptables -A FORWARD -j logdrop This is for FORWARD chain, change it to whatever you need. Regards, Maciej Soltysiak
