yeah, I do realize they are on the same interface, just wanted to make sure it was understood what I have. The very first rule right now in my script: iptables -t filter -A INPUT -i eth1 -p tcp -d 1.1.1.188 --dport 25 -j LOG --log-prefix " SMTP_HERE " --log-level notice eth1 has IP of 1.1.1.189 eth1:0 has IP of 1.1.1.188 But it never does log anything, though ethereal shows the traffic coming in on that interface. Any other way to track these packets? Dan On Thu, 2005-10-06 at 19:03 +0200, Henrik Nordstrom wrote: > On Wed, 5 Oct 2005, Daniel Wittenberg wrote: > > > I think it's late and I've got to be missing something here. I have 2 > > interfaces to different ISP's. The second interface, eth1, responds > > just fine on the primary IP ".189". I have an alias interface .188 that > > when I apply an iptables rule to, gets no traffic at all. > > alias interface? IP aliases all belong to the same interface (eth1), even > if you give them a label. > > What does your rules look like? > > Regards > Henrik >
