Skip to main content

Thread: Logging for IPTABLES not working?

-

hi folks,

need little bit of help. i've switched on iptables (dropping input connections default) on ubuntu install , having trouble trying identify why crashplan client wasnt working.

when tailed /var/log/messages file, i'm not seeing getting logged there.

politely ask guidance on working through why logging busted iptables? i'm guessing busted further down in ubuntu install

below how have logging setup on iptables:

thanks,

-boris

root@bridget:/var/www# iptables -l
chain input (policy accept)
target prot opt source destination
accept -- x.y.0.0/16 anywhere
accept -- w.x.y.z anywhere
accept tcp -- anywhere anywhere tcp dpt:ssh
accept tcp -- anywhere anywhere tcp dpt:www
accept tcp -- anywhere anywhere tcp dpt:https
log -- anywhere anywhere log level warning

chain forward (policy accept)
target prot opt source destination

chain output (policy accept)
target prot opt source destination

your input chain default policy accept, not drop text suggested be. set policy with:
code:
sudo iptables -p input drop
i suggest add unique prefix log statement, make easier find or extract information later on. example:
code:
sudo iptables -a input -j log --log-prefix "icatch:" --log-level warning
before going off , looking why couldn't find log entries, suggestion know there should have been entries. looking @ packet counters, know sure.
code:
sudo ipables -v -x -n -l
, yes, default entries should in /var/log/messages, in /var/log/kern.log , /var/log/syslog


Forum The Ubuntu Forum Community Ubuntu Specialised Support Ubuntu Servers, Cloud and Juju Server Platforms [ubuntu] Logging for IPTABLES not working?


Ubuntu

Comments

Post a Comment

Popular posts from this blog

how to devide a circle into equal parts

-
how devide circle equal parts reggie,   depending on version, may able use free divide (length) script available here, setting number,   http://park12.wakwak.com/~shp/lc/et/en_aics_script.html   or may (smart guides friends):   1) use polar grid tool right size of circle, 0 concentric dividers , desired number of radial dividers, , ungroup; 2) extend radial dividers; 3) select circle , use scissors tool @ intersections (smart guides intersect ), may need select remaining parts underway.   or may (smart guides friends):   1) create vertical line through top , bottom (or left , right) anchor points line tool; 2) rotate copies @ relevant angles (to half number of cuts division); 3) select circle , use scissors tool @ intersections (smart guides intersect ), may need select remaining parts underway. More discussions in Illustrator adobe
Read more

"Could not fill because there are not enough opaque source pixels" - not solved by any other thread

-
i'm getting error posted in thread's title , have no idea why.  working image not transparent in way. 100% opacity.  in fact, doesn't matter work with, every time try fill selection on layer in doc, error.  ideas???  thanks   scott probably see screen shot of photoshop layers panel open. at point guess can make wrong layer selected, once see screen, else may pop out @ me, or else reading thread. More discussions in Photoshop for Beginners adobe
Read more

Why can't I change the billing info for my account?

-
hi all,   about 3 weeks ago issued new corporate cc number. have been trying since find way update in website. everytime try load billing info message 'there has been error on our side, please try again later.' has been happening weeks now. decided, if they're not going fix it, i'll call support.   i reported bug support, no response.   i called support , sat on hold update cc. hung on when should have been answered. happened twice (i'm persistent).   i registered call-back. got call-back, , told needed go person. got warm transfer because of above problem.   this person told me needed talk yet different team, , schedule call me in 1-2 hours.   it has been on week, maybe week , half since supposed receive call-back, , ticket updated yesterday; they've tried reach me no success (yeah, right), them do? left note: call me @ number within next 4 hours, , can settle this. guess got pacific time support team, because called 16 hours later (i'm gmt, way; company u...
Read more