iptables problem
peter at hackertarget.com
peter at hackertarget.com
Fri Apr 12 12:07:52 UTC 2013
Could it be that the incoming connections are reaching your router, but not
reaching your Ubuntu machine due to it being a NAT based setup and there is
no forwarding rules to pass the traffic into your local network / machine?
The other possibility could be that your LOG rule is below your DROP rule.
You will need to insert the LOG rule above the DROP rule of the INPUT chain.
sudo iptables -I INPUT 5
On Wed, Apr 10, 2013 at 6:40 AM, JD <jd1008 at gmail.com> wrote:
> Hi all iptables gurus,
>
> In /etc/iptables, I only allow in established connections(whicih I connect
> to
> from my machine to the internet at large).
>
> All others:
>
> # Log and drop the rest
> #
> -A INPUT -j LOG --log-level 7 --log-prefix "Dropped by firewall: "
>
> But, I do not see the log of dropped connectionrequests,
> even though, my router's log shows numerous incoming
> connections from ip addresses from all over the world.
> When I dig these ip addresses, most of them do not map
> onto a domain name.
>
> When I run
> iptables -L -n
>
> it indeed shows the rules I have in /etc/iptables
>
> So, what do I need to do to force the kernel to log DROPPED
> incoming requests?
>
>
> --
> ubuntu-users mailing list
> ubuntu-users at lists.ubuntu.com
> Modify settings or unsubscribe at: https://lists.ubuntu.com/**
> mailman/listinfo/ubuntu-users<https://lists.ubuntu.com/mailman/listinfo/ubuntu-users>
>
--
Regards,
Peter
--------------------------------------------------
Security Scanning Tools On-line
Web: http://hackertarget.com/
--------------------------------------------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20130412/10e7b9dc/attachment.html>
More information about the ubuntu-users
mailing list