> This can be optimised to: > > -A +fw2net -m condition --condition fw2net_log_ssh_related -m set > --match-set ssh-local-hosts dst -j LOG --log-tcp-options > --log-ip-options --log-macdecode --log-tcp-sequence --log-uid > --log-level 6 --log-prefix "Shorewall:fw2net:ACCEPT:" > > and the whole %ALOG10 chain (plus the additional jump to it) wiped out. Please ignore this - I just realised that ALOG is not inline...
------------------------------------------------------------------------------ Free Next-Gen Firewall Hardware Offer Buy your Sophos next-gen firewall before the end March 2013 and get the hardware for free! Learn more. http://p.sf.net/sfu/sophos-d2d-feb _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
