« Web server info - Chapter 24 . Implementing Firewalls in SUSE Linux
Web site template - Chapter 24 . Implementing Firewalls in SUSE Linux »

628 Part IV . Implementing Network (Free web host) Services in

628 Part IV . Implementing Network Services in SUSE Linux Logging Dropped Packets When your firewall has been configured to your liking, you will want to log any traffic that has not been explicitly sanctioned by you. To do this, you need a final rule before the packet hits the default policy for the chain that uses a target of LOG. The LOG target interprets the TCP/IP packet and logs it via the syslog facility for you to monitor unauthorized traffic. Just logging raw, unauthorized traffic is quite difficult to manage, and thankfully the LOG target enables you to specify a log prefix to distinguish the entry based on the chain it originated from: bible:~ # iptables A INPUT j LOG - log-prefix=INPUT: bible:~ # iptables A OUTPUT j LOG - log-prefix=OUTPUT: bible:~ # iptables A FORWARD j LOG - log-prefix=FORWARD: In this example, for each chain that a packet traverses, you have appended a rule that will send all packets to the LOG target (-jLOG). The -log-prefix parameter will make sure each packet that is logged is prefixed by INPUT:, OUTPUT:, or FORWARD: (depending on the chain the rule has been appended to). Any traffic that does not get triggered by a rule will be logged using the LOG target before hitting the default policy. For each chain, you are logging the packet details, with a prefix relating to the chain it originated from. Caution The location of the LOG rules is of paramount importance. If the LOG target were inserted at the beginning of the chain, all traffic, whether it is allowed or not, would be logged. You will find your logs filling up very quickly if you make this mistake. Using SuSEfirewall2 SUSE includes its own sysconfig-based firewall script called SuSEfirewall2. The SuSEfirewall script has come a long way since its conception many years ago and provides a robust feature set that can be configured through YaST. For new users who need to set up a quick firewall, this is the perfect option. We would have suggested in years gone by that you should write your own firewall script, but if you do not feel the need to be able to control your rules explicitly, SuSEfirewall produces a robust secure firewall for most environments.
Please visit Domain Name Hosting services for high quality webhost to host and run your jsp applications.

This entry was posted on Sunday, September 30th, 2007 at 2:19 pm and is filed under Domain. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply