IPTABLES NOTES
---------------

General Notes:

Packet logging is directed to SysLog and monitored by psad deamon.
psad sends mails to localhost on event triggering.
both psad and iptables are normally running as deamons since boot.
iptables rules change is dynamically executed (i.e. no deamon restart required)


1. Listing Current Rules

> iptables -L




2. Creating (Adding) a Packet Logging Rule


> iptables -A <CHAIN> [-s src] [-d dst] -j LOG


<CHAIN> = INPUT|FORWARD|OUTPUT

src/dst = IP Address or Name (also local names are ok, e.g. router)



3. Deleting a Rule

> iptables -D <CHAIN> <N>

<CHAIN> = INPUT|FORWARD|OUTPUT

<N> = Rule Number in <CHAIN>