search for: bad_packets

...rnet. eth1 - connected to DMZ eth2 - connected to LAN eth0 only accepts SSH (tcp -port 22) and ICMP for pinging.. If it gets anything other than that, I want to create a new chain and log and DROP . what are the suitable rules for it? what about the below rule? iptables -A INPUT -i eth0 -j bad_packets I think I need some more rules as well. Could you pls help me to go ahead. Similary, I need for FORWARD AND OUTPUT. But, If I write for INPUT , I will be able to write for FORAWAD AND OUTPUT chains. ANY IDEA? -- Thank you Indunil Jayasooriya ______________________________________...