I put the logging in, and it's logging stuff ... But logging absolutely nothing when I "telnet 80" or "telnet 8080" to this box. ???!! Regards, Michael Martinez ISTM/CSREES United States Department of Agriculture --- This email is signed with my digital signature so that you may verify the authenticity of the sender. --> -----Original Message----- --> From: Antony Stone [mailto:Antony@xxxxxxxxxxxxxxxxxxxx] --> Sent: Wednesday, February 18, 2004 11:22 AM --> To: Netfilter --> Subject: Re: Instructions on how to redirect port 80 to port 8080 --> --> --> On Wednesday 18 February 2004 4:07 pm, Martinez, Michael wrote: --> --> > Antony, --> > --> > Being an iptables newbie ... How would I log all rejected packets? --> --> Just before the line which says --> --> iptables -A RH-Firewall-1-INPUT -j REJECT --reject-with --> icmp-host-prohibited --> --> you insert one which says --> --> iptables -A RH-Firewall-1-INPUT -j LOG --> --> If you want to be a bit sophisticated about it: --> --> iptables -A RH-Firewall-1-INPUT -j LOG --log-level=info --> --log-prefix="Reject:" --> --> That way, the logs will go to /var/log/messages and will --> have "Reject:" in --> them so you can easily identify what they mean. --> --> Regards, --> --> Antony. --> --> -- --> All matter in the Universe can be placed into one of two categories: --> --> 1. Things which need to be fixed. --> 2. Things which need to be fixed once you've had a few --> minutes to play with --> them. --> --> Please --> reply to the list; --> --> please don't CC me. --> --> -->
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
