First figure out which iptables rule is logging the DNS packets, then add to
that chain a "-j DROP" for port 53. This assumes you don't want to change
what the firewall is doing with the packets, just get rid of the logging.

-----Original Message-----
From: Dave Harry [mailto:dharry-xgr+/***@public.gmane.org]
Sent: Monday, October 25, 2010 6:20 PM
To: ipcop-user-5NWGOfrQmneRv+***@public.gmane.org
Subject: [IPCop-user] How to stop DNS (53) in Firewall logs?

I have a public DNS in my Orange.

This creates a huge number of DNS entries in the firewall logs. I'm sure it
must be easy to prevent them.

I know how to use iptables to log a certain connection. E.g., I have this in

rc.local:
/sbin/iptables -A CUSTOMFORWARD -m state --state NEW -p tcp --dport 3389 -j
LOG --log-prefix "Remote Desktop"


But how can I turn logging OFF for DNS?


TIA
--
Dave Harry



----------------------------------------------------------------------------
--
Nokia and AT&T present the 2010 Calling All Innovators-North America contest
Create new apps & games for the Nokia N8 for consumers in U.S. and Canada
$10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing
Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store
http://p.sf.net/sfu/nokia-dev2dev
_______________________________________________
IPCop-user mailing list
IPCop-user-5NWGOfrQmneRv+***@public.gmane.org
https://lists.sourceforge.net/lists/listinfo/ipcop-user