Re: lug-bg: Logging of ip traffic
- Subject: Re: lug-bg: Logging of ip traffic
- From: nikky@email.domain.hidden (Nickola Kolev)
- Date: Tue, 15 Jul 2003 18:45:30 +0300
Çäðàñòè,
[ êðúö ]
: iptables -N $CHAIN_NAME
: iptables -N $CHAIN_NAME"_smtp"
: iptables -N $CHAIN_NAME"_pop"
: #and then add rules for example this one:
: #iptables -A $CHAIN_NAME -p tcp --dport 80 -j ACCEPT
: iptables -A $CHAIN_NAME -p tcp -j ACCEPT
Åòî òóê òè ïàäàò âñè÷êè tcp ïàêåòè è íèùî íå ñòèãà äî ñëåäâàùèòå âåðèãè.
: iptables -A $CHAIN_NAME"_smtp" -p tcp --dport 25 -j ACCEPT
: iptables -A $CHAIN_NAME"_pop" -p tcp --dport 110 -j ACCEPT
:
: iptables -A FORWARD -s $CHAIN_IP -p tcp --dport 25 -j $CHAIN_NAME"_smtp"
: iptables -A FORWARD -s $CHAIN_IP -p tcp --dport 110 -j $CHAIN_NAME"_pop"
: iptables -A FORWARD -s $CHAIN_IP -p tcp -j $CHAIN_NAME
[ êðúö ]
Àêî èñêàø ñàìî äà ìåðèø òðàôèê, íå ñëàãàé ACCEPT íàêðàÿ, à íàïèøè
íåùî òàêîâà:
iptables -A $CHAIN_NAME"_smtp" -p tcp --dport 25
iptables -A $CHAIN_NAME"_pop" -p tcp --dport 110
iptables -A $CHAIN_NAME"_pop" -j RETURN
È ñëåä òîâà ñ awk, sed è ò.í. ñè ñúâïàäàø íåîáõîäèìèòå ïîëåòà îò èçõîäà íà
iptables -Lnvx
--
________________________________________________________________________
So long, and thanks for all the fish!
Nickola
============================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
============================================================================
<hr> Attachment:
part
Description: PGP signature
|