[fitzjj]

I've been playing around with iptables recently, however one line that appears when running "iptables -L" is the following:

Code:

target  prot  opt  source      destination
LOG     tcp    --   anywhere   anywhere     limit: avg 6/hour burst 5 tcp flags:SYN,RST,ACK/SYN LOG level alert prefix `Intrusion -> '

It appears in both my INPUT and FORWARD chains, but can anyone explain what it is actually for and also what command i would use to apply this rule again if i were to flush the tables?

thanks

[horndude]

its for dumping and logging intrusion attempts using ack/syn packets

dont remember off the top of my head which command you'd use to set it up again, but it should be in the man pages or FAQ's/How-to's either on your system or at http://www.tldp.org