It's often useful to put the last rule in a chain to log anything that
falls through that far. LOG rules don't trap packets, so you can put
them transparently anywhere you want in your rule chains.
John Madden wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>> On (24/02/05 16:49), Sean O Sullivan didst pronounce:
>>>I have very little experience with iptables, and from what I can tell
>>the following *should* work ( in the way I want it to :) )
>>If any of you have suggestions/improvements please do tell.
>> <snip rest of script>
>>>#Block Rest of traffic
>>iptables -A OUTPUT -i eth1 -j REJECT
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!