Logging connection attempts

Discussion in 'Tomato Firmware' started by gawd0wns, Nov 1, 2009.

  1. gawd0wns

    gawd0wns Network Guru Member

    I want the source ip address of all dropped connections, made only to port 80, logged in the router's syslog. Is this possible? You currently have to log all, dropped or allowed, which is way more than I need.

    Thank you
     
  2. Surge

    Surge Guest

    I would filter them at the destination for simplicity...

    But if you really want to, play with the INPUT ipfilter chain to have a separate chain for port 80 packets, that logs (or else a separate chain that does not log for other ports :)). This should be done in the firewall script. Check out the scripts section on the wiki for a sample of adding rules to iptable chains.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice