Originally posted by: QLUnix
Is there a way that ipsec can log only new requests?
In iptables, I do the following.
iptables -N logandset
iptables -A logandset -j LOG
iptables -A logandset -m recent --name mydaily --set
iptables -A INPUT -m recent --name mydaily ! --rcheck ! --seconds 86400 -j logandset -p tcp
iptables -A INPUT -m recent --name mydaily ! --rcheck -j logandset -p tcp
It writes a new connection from a host once an hour.
#AIX-Forum