#!/bin/bash
#Copyright 2004 William Stearns <wstearns@pobox.com>
#Released under the GPL
#Automatically generated by Modwall, http://www.stearns.org/modwall/

#==== Iptables modules required ==== recent
#==== Brick specific help ====
#	The scrutinizesrc module is a helper module.  If a rule in some other part
#of the firewall identifies something suspicious, it can choose to "-j
#scrutinizesrc".  For two minutes from that point, all packets from that
#IP address get logged to userspace, where ulogd can save the complete
#packets to a pcap/bpf file, or to a MySQL or Postgresql database.

/usr/bin/sudo /sbin/iptables -N scrutinizesrc
/usr/bin/sudo /sbin/iptables -A scrutinizesrc -m recent --name scrutinize --rsource --set -j ULOG