Hi, I have set up a linux-computer as a router, and I am using the iptables-rules that are given in http://www.tldp.org/HOWTO/IP-Masquerade-HOWTO/firewall-examples.html I want to change to the stronger firewall-ruleset ( http://www.tldp.org/HOWTO/IP-Masquerade-HOWTO/stronger-firewall-examples.html ), but due to some sort of network-traffic, it is logging things almost every second, which causes to log-file to grow way too fast. and as I don't have that much disk-space on that computer, this could cause problems. can anybody tell me which rules I should change? most of the logged traffic looks like this: Sep 18 20:01:05 p311 kernel: IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:00:07:95:58:88:c9:08:00 SRC=134.184.120.131 DST=134.184.120.255 LEN=78 TOS=0x00 PREC=0x00 TTL=128 ID=47832 PROTO=UDP SPT=137 DPT=137 LEN=58 the source changes between IP-s on the campus-network, so I guess that's just some computers doing something which isn't that correct (windows?) I saw in the firewall ruleset the words "drop-it-and-log-it" I guess I should change this. Should I replace it by DROP, or doesn't that work? any ideas? Johan