Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

iptables Frage zum LOG
 View unanswered posts
View posts from last 24 hours
View posts from last 7 days

 
Reply to topic    Gentoo Forums Forum Index Deutsches Forum (German)
View previous topic :: View next topic  
Author Message
mc-max
Guru
Guru


Joined: 22 Feb 2005
Posts: 305
Location: Frankfurt
PostPosted: Thu Aug 24, 2006 12:06 pm    Post subject: iptables Frage zum LOG Reply with quote
Hallo zusammen,

ich habe folgende Zeilen fürs Loggen im iptables Script:
Code:

$iptables -A INPUT -i eth0 -p tcp -m limit --limit 1/m --dport 0:1024 -j LOG --log-prefix "tcp connection: "
$iptables -A INPUT -i eth0 -p udp -m limit --limit 1/m --dport 0:1024 -j LOG --log-prefix "udp connection: "

Auf dem PC läuft unter anderem Samba und wenn von dem Rechner über Samba eine große Datei gezogen wird erscheinen sehr viele Einträge im log. Und jetzt die Preisfrage ;) ...
Wie kann ich die oberen Zeilen ergänzen, so dass keine log-Einträge von einer bestimmten IP erscheinen?

danke.
max
Back to top
View user's profile Send private message
schmutzfinger
Veteran
Veteran


Joined: 26 Oct 2003
Posts: 1287
Location: Dresden/Germany
PostPosted: Thu Aug 24, 2006 12:19 pm    Post subject: Reply with quote
Code:
 ! -s x.x.x.x
?
Back to top
View user's profile Send private message
mc-max
Guru
Guru


Joined: 22 Feb 2005
Posts: 305
Location: Frankfurt
PostPosted: Thu Aug 24, 2006 12:26 pm    Post subject: Reply with quote
äähhhmmm? einfach anhängen?
Back to top
View user's profile Send private message
schmutzfinger
Veteran
Veteran


Joined: 26 Oct 2003
Posts: 1287
Location: Dresden/Germany
PostPosted: Thu Aug 24, 2006 12:56 pm    Post subject: Reply with quote
Nein irgendwo in die Mitte rein. Alles was hinter -j LOG kommt wird zu LOG zugeordnet.

Code:
$iptables -A INPUT -i eth0 ! -s x.x.x.x -p tcp -m limit --limit 1/m --dport 0:1024 -j LOG --log-prefix "tcp connection: "


Das sollte es tun. Kann aber auch sein das man es nicht "! -s" sondern "-s !" schreibt. Bin grad zu fault die manpage zu lesen. Vielleicht bist du ja motivierter ;) ...
Back to top
View user's profile Send private message
mc-max
Guru
Guru


Joined: 22 Feb 2005
Posts: 305
Location: Frankfurt
PostPosted: Thu Aug 24, 2006 3:30 pm    Post subject: Reply with quote
Quote:

-s, --source [!] address[/mask]
.....

also gehört "!" hinter das "-s"

danke.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Deutsches Forum (German) All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy