On Sun, Oct 06, 2002 at 09:42:53AM +0800, JCS wrote: > On Saturday 05 October 2002 20:41, Hal Burgiss wrote: > > LOG and DROP are both 'targets'. You can only have one target per > > statement. > > LOG doesn't terminate processing.
Of course not ... > You still need to describe how to dispose of the message. eg: > # Create a chain for dropping trojans and flooders > #------------------------------------------------- > iptables -N drop-trojan > iptables -t filter -A drop-trojan -j LOG --log-prefix "Drop - trojan-flooder: > " > iptables -t filter -A drop-trojan -j DROP This is essentially his first example, dressed up a bit. -- Hal Burgiss
