From 128de0b04c771c672ba7b1a1f7e44531ec0f380b Mon Sep 17 00:00:00 2001
From: TG <t31m@cyberstuff.me>
Date: Tue, 12 Jun 2018 01:56:52 +0200
Subject: [PATCH] added iptables logging guide

---
 admin/iptables_logging         | 32 ++++++++++++++++++++++++++++++++
 packages.sh                    |  5 +++++
 shell/.config/fish/config.fish |  1 +
 shell/.vimrc                   |  6 ++++++
 4 files changed, 44 insertions(+)
 create mode 100644 admin/iptables_logging
 create mode 100644 packages.sh
 create mode 100644 shell/.config/fish/config.fish
 create mode 100644 shell/.vimrc

diff --git a/admin/iptables_logging b/admin/iptables_logging
new file mode 100644
index 0000000..dabbaa2
--- /dev/null
+++ b/admin/iptables_logging
@@ -0,0 +1,32 @@
+#log all dropped packages to separate file
+
+#backup
+sudo iptables-save > backup.save
+
+#safety flush cronjob every xx:45h
+sudo crontab -e
+45 * * * * /sbin/iptables -F
+
+#begin
+sudo iptables -N DROP_AND_LOG
+sudo iptables -A DROP_AND_LOG -m limit --limit 1/min -j LOG --log-prefix "[IPTABLES-DROP]: "
+sudo iptables -A DROP_AND_LOG -j DROP
+
+#if old rules exist, save now upated rules
+sudo iptables-save > modded.save
+
+#replace DROP with DROP_AND_LOG chain
+sed -e 's:-j DROP:-j DROP_AND_LOG:g' modded.save > replaced.save
+
+#fix last "-j DROP" to original...
+vim replaced.save
+
+#create custom syslog output log
+vim /etc/rsyslog.d/custom_iptables.conf
+> :msg,contains,"IPTABLES-DROP" /var/log/iptables.log
+
+#flush iptables and restore our modded rules
+sudo iptables -F
+sudo iptables-restore < replaced.save
+
+#see the magic happen... (and dont forget to remove cronjob...)
diff --git a/packages.sh b/packages.sh
new file mode 100644
index 0000000..305c5ab
--- /dev/null
+++ b/packages.sh
@@ -0,0 +1,5 @@
+#!/bin/bash
+
+#Baseline Packages i need (Debian specific...)
+
+sudo apt-get update
diff --git a/shell/.config/fish/config.fish b/shell/.config/fish/config.fish
new file mode 100644
index 0000000..e375e27
--- /dev/null
+++ b/shell/.config/fish/config.fish
@@ -0,0 +1 @@
+set -g -x fish_greeting 'Welcome to FiSH'
diff --git a/shell/.vimrc b/shell/.vimrc
new file mode 100644
index 0000000..f8f8a76
--- /dev/null
+++ b/shell/.vimrc
@@ -0,0 +1,6 @@
+:set mouse=r
+:color desert
+:syntax on
+:set nu
+:set list
+:set listchars=tab:>-