logging iptables

sang_froid · 05-19-2009, 09:44 AM

Hi

I have a rule in iptables which says:

ACCEPT tcp -- 192.168.4.253 anywhere tcp dpt:ssh

How do I log all the entries that match this rule to system log ??

unixfool · 05-19-2009, 10:46 AM

You'd do it similar to this:

Code:

-A INPUT -s 118.0.0.0/8 -j LOG
-A INPUT -s 118.0.0.0/8 -j DROP

First use the log statement, then the action statement (log/drop, log/accept).

Yours would read:

Code:

LOG tcp -- 192.168.4.253 anywhere tcp dpt:ssh
ACCEPT tcp -- 192.168.4.253 anywhere tcp dpt:ssh