On Mon, 2002-10-21 at 22:28, linux power wrote: > > iptables -N firewall > iptables -A firewall -m limit --limit 15/minute -j LOG > --log-prefix "/var/log/firewall"
That will fail on older iptables versions, where the maximum length of the log-prefix is 14 characters. The log-prefix isn't a file or directory where messages are logged, it's a message that appears at the beginning of every entry that's logged *in syslog* because of that rule. Those exact commands worked on a RHL 8.0 machine on which I tested. What versions of iptables and kernel do you have installed? Does rpm report any size or md5 differences when you do: rpm -V iptables kernel-`uname -r` > iptables -A firewall -j DROP > And the dir /var/log/firewall excist. > It has worked before this way. If you had messages in /var/log/firewall, then you'd set up syslog to do so. The kernel's packet filters (whether ipchains or iptables) always logs through syslog, never directly to files. -- redhat-list mailing list unsubscribe mailto:redhat-list-request@;redhat.com?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
