iptables -A INPUT -j LOG does not log anything

iptables -A INPUT -j LOG does not log anything

[Alexandre Rouillac]

Hi all,

I set my iptables with policy "-P INPUT DROP" and my last line of INPUT 
chains to "-A INPUT -j LOG".

So everything packets not matching my INPUT rules will be LOG and DROP.

My problem is that iptables does not log anything to my syslog file.

I checked the syslogd configuration (debian default):

*.*;auth,authpriv.none          -/var/log/syslog

kern.*                          -/var/log/kern.log

*.=info;*.=notice;*.=warn;\
         auth,authpriv.none;\
         cron,daemon.none;\
         mail,news.none          -/var/log/messages


I checked counters of INPUT chains :
20       3   144 LOG        all  --  *      *       0.0.0.0/0 
  0.0.0.0/0           LOG flags 0 level 4

But nothing on my logfiles (syslog, messages, kern.log).

Does someone can help ?

Best Regards,
Alexandre

Re: iptables -A INPUT -j LOG does not log anything

[Alexandre Rouillac]

dmesg command give the DROPed packet.

Someone can help ?

Thanks for help.

Alexandre Rouillac wrote:
> Hi all,
> 
> I set my iptables with policy "-P INPUT DROP" and my last line of INPUT 
> chains to "-A INPUT -j LOG".
> 
> So everything packets not matching my INPUT rules will be LOG and DROP.
> 
> My problem is that iptables does not log anything to my syslog file.
> 
> I checked the syslogd configuration (debian default):
> 
> *.*;auth,authpriv.none          -/var/log/syslog
> 
> kern.*                          -/var/log/kern.log
> 
> *.=info;*.=notice;*.=warn;\
>         auth,authpriv.none;\
>         cron,daemon.none;\
>         mail,news.none          -/var/log/messages
> 
> 
> I checked counters of INPUT chains :
> 20       3   144 LOG        all  --  *      *       0.0.0.0/0 
>  0.0.0.0/0           LOG flags 0 level 4
> 
> But nothing on my logfiles (syslog, messages, kern.log).
> 
> Does someone can help ?
> 
> Best Regards,
> Alexandre
> 
> 
>