iptables problem

peter at hackertarget.com peter at hackertarget.com
Fri Apr 12 12:10:43 UTC 2013 

Just to clarify my previous example, the -I INPUT 5 will insert the rule at
position 5 in the iptables INPUT chain. So you would do this if your DROP
rule is the 6th entry of the INPUT chain.

https://help.ubuntu.com/community/IptablesHowTo


On Fri, Apr 12, 2013 at 10:07 PM, peter at hackertarget.com <
peter at hackertarget.com> wrote:

> Could it be that the incoming connections are reaching your router, but
> not reaching your Ubuntu machine due to it being a NAT based setup and
> there is no forwarding rules to pass the traffic into your local network /
> machine?
>
> The other possibility could be that your LOG rule is below your DROP rule.
> You will need to insert the LOG rule above the DROP rule of the INPUT chain.
>
> sudo iptables -I INPUT 5
>
>
>
> On Wed, Apr 10, 2013 at 6:40 AM, JD <jd1008 at gmail.com> wrote:
>
>> Hi all iptables gurus,
>>
>> In /etc/iptables, I only allow in established connections(whicih I
>> connect to
>> from my machine to the internet at large).
>>
>> All others:
>>
>> # Log and drop the rest
>> #
>> -A INPUT -j LOG --log-level 7 --log-prefix "Dropped by firewall: "
>>
>> But, I do not see the log of dropped connectionrequests,
>> even though, my router's log shows numerous incoming
>> connections from ip addresses from all over the world.
>> When I dig these ip addresses, most of them do not map
>> onto a domain name.
>>
>> When I run
>> iptables -L -n
>>
>> it indeed shows the rules I have in /etc/iptables
>>
>> So, what do I need to do to force the kernel to log DROPPED
>> incoming requests?
>>
>>
>> --
>> ubuntu-users mailing list
>> ubuntu-users at lists.ubuntu.com
>> Modify settings or unsubscribe at: https://lists.ubuntu.com/**
>> mailman/listinfo/ubuntu-users<https://lists.ubuntu.com/mailman/listinfo/ubuntu-users>
>>
>
>
>
> --
> Regards,
>
> Peter
> --------------------------------------------------
> Security Scanning Tools On-line
> Web: http://hackertarget.com/
> --------------------------------------------------
>



-- 
Regards,

Peter
--------------------------------------------------
Security Scanning Tools On-line
Web: http://hackertarget.com/
--------------------------------------------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20130412/f2273ca7/attachment.html>

More information about the ubuntu-users mailing list