1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Logging connection attempts

Discussion in 'Tomato Firmware' started by gawd0wns, Nov 1, 2009.

  1. gawd0wns

    gawd0wns Network Guru Member

    I want the source ip address of all dropped connections, made only to port 80, logged in the router's syslog. Is this possible? You currently have to log all, dropped or allowed, which is way more than I need.

    Thank you
  2. Surge

    Surge Guest

    I would filter them at the destination for simplicity...

    But if you really want to, play with the INPUT ipfilter chain to have a separate chain for port 80 packets, that logs (or else a separate chain that does not log for other ports :)). This should be done in the firewall script. Check out the scripts section on the wiki for a sample of adding rules to iptable chains.

Share This Page