I'm hoping someone can steer me toward some specific documentation about setting up kernel options for maximum flexibility with iptables. Googling I see piles of discussions about that but I've been unable to pull out a clear idea of what needs to be set. Going thru the make menuconfig dialog there seems to be quite a herd of Netfilter related settings. So many as to make it really confusing what does what and which are important. My general aim is to setup a small somewhat hardened Gentoo Linux OS that will receive rejected traffic from an upstream Netgear router/firewall. It will NOT be routing traffic to the lan so not a true DMZ but the netgear has an option to send rejected traffic to what they call a `DMZ'. So this machines' job is to reject and log analyze sift etc etc. I want to study the traffic... not create a honey pot.. just have a good look at what is coming at me. - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
