Hi, I don't know if I'm getting confused, so if someone can clarify whether I'm using the wrong tool for the problem; but basically, I have a webserver behind a firewall (iptables 1.2.8) and the web access packets are filtering in properly. Is it possible to set iptables to drop any packets depending on the content? The thing that comes to mind is this CodeRed/ Nimda crap that comes in. While it doesn't affect my webserver at all, I just don't like it clogging up the dang log. At this point of writing, I'm tending towards the answer of "No, iptables is not the right tool, nor can it do that." Is this correct? Thanks for any clarification in this matter. Edmund
