> To my knowledge,as the rules transverse you don't have a way to "break" > out of the chain following it.
A read of the man page mentions the RETURN target quite clearly. > Instead if i used David's advice of the following, wouldn't i be back to > the starting? No you wouldn't. > I understand David's logical structure and his advice, but Possibly not. > this still doesn't help me log fewer entries. Yes it does. Using the suggested rules packets with a source port of 22, 80 and 110 will be ACCEPTed, anything else will be LOGged. You don't mean destination port BTW? Read the man page and possibly replace ACCEPT with RETURN in the suggested rules. -- Andrew Heberle
