From: Don Cohen (cohen@maine.rr.com)
Date: Mon Jul 17 2000 - 05:25:26 PDT
On Mon, 17 Jul 2000, you wrote:
> On 16-Jul-2000 James Nessen wrote:
>
> > Try:
> >
> > $IPCHAINS -a input -p udp -s $REMOTENET -d $REMOTENET 2301 -j REJECT
> >
> > Put this at the bottom of your pmfirewall.rules.local file and restart it
>
> Thanks for the suggestion. This is the easy solution yes, but I would
> prefer to keep using DENY.
>
> There must be some way of instructing ipchains to "log A but do not log B"
> (Without writing a complex set or rules that treats every possible
> type of package seperately by source)
>
> Alexander
>
>
Before the rule that logs it try creating a rule substituting $REMOTENET with
the ip range that you don't want logged, without the -l.
The rules are applied in order so if the ip adress matches this rule it won't
be logged, otherwise it will.
-- Don Cohen cohen@maine.rr.com http://usmcug.usm.maine.edu/~cohen **************************************************************************** * To UNSUBSCRIBE from the list, send a message with "unsubscribe pmfirewall" * in the message body to majordomo@pointman.org. Please direct other * questions, comments, or problems to pmfirewall-owner@pointman.org. * * Need answers fast? Check the list archive located at: * http://www.pointman.org/PMFirewall/list-archive/ *
This archive was generated by hypermail 2b29 : Sun Jun 10 2001 - 02:35:25 PDT