A quick question...
William Stearns
wstearns@pobox.com
Fri, 29 Oct 1999 20:06:43 -0400 (EDT)
Good evening, Mike,
On Sat, 30 Oct 1999 Mike.Murray@utoronto.ca wrote:
> A quick question, on something I have yet to find in any of the
> documentation, and haven't been able to "trial and error" my way by...
>
> I'm trying to set IPtables to log packets; however, incoming packets
> from my DNS server aren't something I want to log; ditto, any incoming packets
> from my ICQ server. So, I want that part of my rules to be the following:
>
> Chain INPUT:
> ACCEPT all -- ! {my DNS Server} LOG level...
> ACCEPT all -- ! {my ICQ Server} LOG level...
>
> However, I can't specify both sources in the same line (that I've
> found), and, if I specify them as above, the ICQ server messages still get
> logged.
>
> So... what do I need to do?
How about:
all -J LogChain
and in LogChain:
{DNS Server} -j RETURN
{ICQ Server} -j RETURN
all LOG
Cheers,
- Bill
---------------------------------------------------------------------------
I like cats too, lets exchange recipies.
(Courtesy of John Michael Clemens <clemej@rpi.edu>)
--------------------------------------------------------------------------
William Stearns (wstearns@pobox.com). Mason, Buildkernel, named2hosts,
and ipfwadm2ipchains are at: http://www.pobox.com/~wstearns/
--------------------------------------------------------------------------