DMZ for logging
- From: Harry Putnam <reader@xxxxxxxxxxx>
- Date: Sun, 29 Jan 2012 23:35:05 -0500
I hope to find experienced iptables users here who can tell me if this
idea is something I could setup with iptables.
I'd like to get a real good idea of what is coming at me from the
internet. Is there a technique where all incoming connections are
copied to a separate server that uses iptables to sort categorize and
log incoming traffic, but then drops it. At least the portion that is
at all suspect in any way.
After a while I would start to know what is just taking up log space
for no good reason and what is actually something likely to be
malicious in intent.
I want a first hand look at what comes down the pipe.
.
- Follow-Ups:
- Re: DMZ for logging
- From: Dale Dellutri
- Re: DMZ for logging
- From: J G Miller
- Re: DMZ for logging
- From: Enrico
- Re: DMZ for logging
- Prev by Date: Re: no connection to samba shares
- Next by Date: Re: DMZ for logging
- Previous by thread: no connection to samba shares
- Next by thread: Re: DMZ for logging
- Index(es):
Relevant Pages
|
