From 112e77dc207570329ec5900c76fea15eef5d3558 Mon Sep 17 00:00:00 2001
From: Girish Ramakrishnan <girish@forwardbias.in>
Date: Wed, 8 Oct 2014 19:35:35 -0700
Subject: [PATCH] Log dropped incoming packages

---
 scripts/initializeBaseUbuntuImage.sh | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/scripts/initializeBaseUbuntuImage.sh b/scripts/initializeBaseUbuntuImage.sh
index 3af8ba887..1ccc1ebcd 100755
--- a/scripts/initializeBaseUbuntuImage.sh
+++ b/scripts/initializeBaseUbuntuImage.sh
@@ -162,6 +162,12 @@ iptables -A INPUT -p icmp --icmp-type echo-request -j ACCEPT
 iptables -A INPUT -p icmp --icmp-type echo-reply -j ACCEPT
 iptables -A INPUT -p udp --sport 53 -j ACCEPT
 
+# log dropped incoming
+iptables -N LOGGING # new chain
+iptables -A INPUT -j LOGGING # last rule in INPUT chain
+iptables -A LOGGING -m limit --limit 2/min -j LOG --log-prefix "IPTables Packet Dropped: " --log-level 7
+iptables -A LOGGING -j DROP
+
 # loopback
 iptables -A INPUT -i lo -j ACCEPT
 iptables -A OUTPUT -o lo -j ACCEPT