From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Rby1k-0001CZ-14 for garchives@archives.gentoo.org; Sat, 17 Dec 2011 17:26:28 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 2E0E621C027; Sat, 17 Dec 2011 17:26:14 +0000 (UTC) Received: from homiemail-a44.g.dreamhost.com (caibbdcaaaaf.dreamhost.com [208.113.200.5]) by pigeon.gentoo.org (Postfix) with ESMTP id 8447621C027 for ; Sat, 17 Dec 2011 17:25:08 +0000 (UTC) Received: from homiemail-a44.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a44.g.dreamhost.com (Postfix) with ESMTP id B52FA11805C for ; Sat, 17 Dec 2011 09:25:07 -0800 (PST) DomainKey-Signature: a=rsa-sha1; c=nofws; d=libertytrek.org; h=message-id :date:from:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; q=dns; s= libertytrek.org; b=XhaW9vi9zIugVhZ1qYVDHOqDbB18xptzB9HPTmFDauZlH Gqjb6B7sUNsqBwI8tx5twpwEY5KJHZqMJ6WCnZesfyynR/7V5A73slCYGLTPhrOH JmVMo7+xKgYfu+POOGP+y+mHX+D5Q/VlHSAK6hxAzMo9xSaLQtunXAGJXQj170= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=libertytrek.org; h= message-id:date:from:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; s= libertytrek.org; bh=ii79hG9FGRNVtNt9bk8yPjd/WEk=; b=n9NiXkfnbg0O LFDmwj13udsrHK/mIho6g7PMnISn8rn7xH7kdYfharB1gsWhsXxF4GktwuDcf3lZ my1Q0jXNIN4twUBExkHPlY7uFRhiamIlGw3/WtrQ+G10Q7nL3qH7RlCiv+70BnyX 3wClIl30KTzAlVuOsXSYwh8pXIt0xKA= Received: from [127.0.0.1] (smtp.media-brokers.com [70.43.81.99]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: tanstaafl@libertytrek.org) by homiemail-a44.g.dreamhost.com (Postfix) with ESMTPSA id 8CDC5118058 for ; Sat, 17 Dec 2011 09:25:07 -0800 (PST) Message-ID: <4EECD074.2020407@libertytrek.org> Date: Sat, 17 Dec 2011 12:25:08 -0500 From: Tanstaafl User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:8.0) Gecko/20111105 Thunderbird/8.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] iptables question... References: <4EEB610D.9050309@libertytrek.org> <4EECC48C.2030807@mapits.com> In-Reply-To: <4EECC48C.2030807@mapits.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Archives-Salt: 6ae2d83c-e63b-42d9-b19b-150f141b529e X-Archives-Hash: 291548dab065eee2ae04754228f38ac5 On 2011-12-17 11:34 AM, Hari Purnama wrote: > Did you put the log-prefix rule before or after the LOG rule? After - the log prefix rule is last... > Or why didn't you put it in a 1liner, say: > > -A INPUT -i eth0 -m state --state INVALID -j LOG --log-level 7 > --log-prefix "(>fw-drop): " --log-ip-options --log-tcp-options Well, because I thought the log prefix rule applied to everything that comes before it...?