Iptables logging on VPS not working [message #1845] |
Tue, 28 February 2006 20:57 |
Martijn
Messages: 9 Registered: December 2005 Location: The Netherlands
|
Junior Member |
|
|
For some extra protection I'd like to have iptables run on the VPS's or the host system. Since the FAQ tells that stateful inspection on the host is "highly not recommended" I'd like to run iptables on the VPS's.
More info on the setup:
Host: CentOS 4.2; 2.6.8-022stab070.1
VPS: CentOS 4.2
Modules loaded with the VPS taken from the configfile:
IPTABLES="iptable_filter iptable_mangle ipt_limit ipt_REJECT ipt_LOG ipt_length "
/etc/sysconfig/iptables part:
...
-A INPUT -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -p tcp --dport 80 -j ACCEPT
-A RH-Firewall-1-INPUT -j LOG --log-prefix "INPUT-DENIED: "
-A RH-Firewall-1-INPUT -j DROP
COMMIT
As you can see, above is just an altertion of a stock firewall with CentOS 4.2.
The iptables is running and working but it doesn't log any dropped packets in syslog. Anybody a clue?
Thanks in advance,
Martijn
[Updated on: Tue, 28 February 2006 20:58] Report message to a moderator
|
|
|