On Sun, 6 Oct 2002, JCS wrote: > > LOG doesn't terminate processing. You still need to describe how to dispose of > the message. eg: > # Create a chain for dropping trojans and flooders > #------------------------------------------------- > iptables -N drop-trojan > iptables -t filter -A drop-trojan -j LOG --log-prefix "Drop - trojan-flooder: > " > iptables -t filter -A drop-trojan -j DROP > >
Hi Sir It was quite simple for me to rewrite each rule, two by two, first with a LOG target, second with a DROP target. Otherwise, I should have been obliged to build as many rules as targets processings. Actually, I'm in the process of rewriting my intrusion accounting program ( with AWK and Bash ), maybe this will be all right soon. Many thanks. Best regards. Jean Francois Ortolo
