Hi All I enabled the rule at the end of my INPUT tables, iptables -A INPUT -j LOG --log-prefix "IN-DEfault-drop " I then tail my messages file and get a LOT of the following.... Apr 8 20:25:04 firewall kernel: IN-DEfault-drop IN=ppp0 OUT= MAC= SRC=220.255.12.210 DST=x.x.x.x LEN=60 TOS=0x00 PREC=0x40 TTL=40 ID=20518 PROTO=ICMP TYPE=8 CODE=0 ID=256 SEQ=6625 The SRC address is ofter different. What does this mean? Thanks Stu -----Original Message----- From: netfilter-admin@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx] On Behalf Of Antony Stone Sent: Wednesday, April 07, 2004 10:35 PM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: Re: Logging default drop On Wednesday 07 April 2004 9:29 pm, Stuart Lamble wrote: > Hi All > > Can you LOG a default policy of DROP? Yes. Add the LOG rule as the last one in the chain. Regards, Antony. -- Perfection in design is achieved not when there is nothing left to add, but rather when there is nothing left to take away. - Antoine de Saint-Exupery Please reply to the list; please don't CC me. --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.654 / Virus Database: 419 - Release Date: 4/6/2004 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.654 / Virus Database: 419 - Release Date: 4/6/2004
