Score:0

Why is Ip6tables message filtering not giving me any logs

ae flag

I am trying to log all messages with dst=2a03:2880:f11c:8183:face:b00c::25de in the IPv6 in ICMPv6 header part. My target packet looks like this

IN=eth0 OUT=tun0 MAC=0e:0a:90:fa:2b:d5:0e:c1:68:fa:ba:b6:86:dd SRC=2620:0107:4000:cfff:0000:0000:f200:f198 DST=fddd:1194:1194:1194:0000:0000:0000:1000 LEN=160 TC=0 HOPLIMIT=62 FLOWLBL=109562 PROTO=ICMPv6 TYPE=3 CODE=0 [SRC=fddd:1194:1194:1194:0000:0000:0000:1000 DST=2a03:2880:f11c:8183:face:b00c:0000:25de LEN=112 TC=0 HOPLIMIT=1 FLOWLBL=0 PROTO=ICMPv6 TYPE=128 CODE=0 ID=1 SEQ=1166 ]

I have added this rule which does not seem to work

sudo ip6tables -I FORWARD -j LOG -p icmpv6 -m ipv6header --header dst --dst 2a03:2880:f11c:8183:face:b00c::25de --log-prefix '** DST-FORWARD **'
Michael Hampton avatar
cz flag
Your rule doesn't match because that packet does not have the destination address you specified. What are you actually trying to do here? I have already asked you this, but you did not answer. You should do so.
mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.