psad meldet:
Code: Alles auswählen
** The INPUT chain in the iptables ruleset on workstation includes a
default LOG rule for all protocols, but the rule does not have a log
prefix of "DROP". It appears as though the log prefix is set to
"Shorewall:INPUT:REJECT:". psad will not be able to detect scans
without adding --log-prefix "DROP" to the rule.
** The INPUT chain in the iptables ruleset on workstation does not include
a default DROP rule for all protocols.
.. NOTE: IPTables::Parse does not yet parse user defined chains and so it
is possible your firewall config is compatible with psad anyway.