AIX

AIX

Connect with fellow AIX users and experts to gain knowledge, share insights, and solve problems.


#Power
 View Only

ipsec - logging only new requests

  • 1.  ipsec - logging only new requests

    Posted Tue February 16, 2016 03:28 PM

    Originally posted by: QLUnix


    Is there a way that ipsec can log only new requests?

     

    In iptables, I do the following.

     

    iptables -N logandset
    iptables -A logandset -j LOG
    iptables -A logandset -m recent --name mydaily --set
    iptables -A INPUT -m recent --name mydaily ! --rcheck ! --seconds 86400 -j logandset -p tcp
    iptables -A INPUT -m recent --name mydaily ! --rcheck -j logandset -p tcp

     

    It writes a new connection from a host once an hour.


    #AIX-Forum