27 May
2001
27 May
'01
17:51
ipchains -A INPUT -p tcp -d 0.0.0.0/0 23 -j LOG --log-level warning --log-prefix "Telnet connect!" ipchains -A INPUT -p tcp -d 0.0.0.0/0 23 -j DROP
If you have a default policy of drop, you can simply have rules for what you allow, and finally a catch all logging rule last, before the packets are dropped off the end of the chain. It seems to be more in tune with the philosophy of logging everything that get's through the rules. Rob