[Dshield] 'iptables' config for WRT54G running Sveasoft Alchemy-pre5.4a
ejay.hire at isdn.net
Fri May 6 06:52:40 GMT 2005
To do this you need to load the iptables logging module and
add --log to your deny rule(s).
> -----Original Message-----
> From: list-bounces at lists.dshield.org
> [mailto:list-bounces at lists.dshield.org] On Behalf Of David
> Sent: Thursday, May 05, 2005 8:15 PM
> To: list at lists.dshield.org
> Subject: [Dshield] 'iptables' config for WRT54G running
> Sveasoft Alchemy-pre5.4a
> I'm planning on setting up Dshield log submissions using
> 'iptables' logging from my Linksys WRT54G running Sveasoft
> Alchemy-pre5.4a (i.e. Linux). I'm forwarding the
> messages to my CentOS 4 (RHEL 4) Linux system and the
> are getting recorded nicely.
> I downloaded 'iptables.tar.gz' from the "Linux 2.4x
> link on the "Linux and UNIX 'Framework' Clients" page. I
> nifty Perl script for parsing the logged 'iptables'
> entries and sending them to Dshield.org.
> What I don't see are the 'iptables' commands for
> connection and probe logging in the kernel. Seems like a
> major omission. At present the 'iptables' setup on the
> doesn't log anything but invalid state connection
> I need are 'iptables' entries for logging the WAN side
> connection attempts. Makes no sense to log anything from
> LAN side or any outbound connection requests. I've
> current 'iptables' to this message.
> Any help would be appreciated.
More information about the list