On Tue, 2010-05-25 at 16:19 -0700, Rick Stevens wrote: > If you want to log ALL new connections from box6 (remember that the > "-s" bit is specifying connections coming FROM box6), use the "-I" > version.
Yes, and you certainly want any logging rules before any ignoring rules, because not only will such connections be ignored (not connecting), they'll never get logged, either. On the other hand, if you want to log things that got past your firewall, then you do want logging rules set after firewall rules. -- [...@localhost ~]$ uname -r 2.6.27.25-78.2.56.fc9.i686 Don't send private replies to my address, the mailbox is ignored. I read messages from the public lists. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
