I'm trying to build the following chain. I'm only including the relevant
sections.
<chain name="REJECT_INPUT">
<rule name="log_reject_input" target="LOG" cmd-line='--log-prefix "REJECT
I: " --log-level 7 --log-tcp-options --log-ip-options'>all</rule>
<rule name="reject_input" target="REJECT">all</rule>
</chain>
When I build this rule the iptables file looks as follows:
-A REJECT_INPUT --log-prefix "REJECT I: " --log-level 7 --log-tcp-options
--log-ip-options -j LOG
-A REJECT_INPUT -j REJECT
This is wrong since the -j LOG should be added before --log-prefix. It
should look as follows:
-A REJECT_INPUT -j LOG --log-prefix "REJECT I: " --log-level 7
--log-tcp-options --log-ip-options
-A REJECT_INPUT -j REJECT
Do I have a problem in my XML file, or is there a bug in the bwm_firewall
program?
|
