Gqqnbig

Asked: 2021-02-20 05:04:51 +0800 CST2021-02-20 05:04:51 +0800 CST 2021-02-20 05:04:51 +0800 CST

ufw differentiates block-and-log from unmatched log

I insert block rules using this kind of statements

sudo ufw insert 1 deny log from 45.136.228.230/24

I have a few hundreds of such deny-log rules.

ufw will block the IP and log the event. However, another feature that comes with ufw logging low is that ufw will also log packets not matching the defined policy.

I want to separate or differentiate the ones I explicitly set as deny log from the ones because of unmatching.

--log-prefix in /etc/ufw/user.rules looks promising, but once I add new rules to ufw through the ufw interface, my modifications on user.rules are lost.

How do I set up so that for each entry in ufw.log, I can quickly tell if it's blocked by my deny-log rules or because of not matching the defined policy?

ufw differentiates block-and-log from unmatched log

How to install Google Chrome

Is there a command to list all users? Also to add, delete, modify users, in the terminal?

How to delete a non-empty directory in Terminal?

How to unzip a zip file from the Terminal?

How can I copy the contents of a folder to another folder in a different directory using terminal?

How do I install a .deb file via the command line?

How do I run .sh scripts?

How do I install a .tar.gz (or .tar.bz2) file?

How to list all installed packages

Unable to lock the administration directory (/var/lib/dpkg/) is another process using it?

ufw differentiates block-and-log from unmatched log

0 Answers