iptrace

* low-level debugging command
(The trace records are written to the kernel's log buffer with faciility = kernel and priority = warning)

Usage:

        iptrace <iptables/ip6tables match expression>
        noiptrace <iptables/ip6tables match expression>

P.S.

當無入 IP 時會 trace 所有 IP !!

Examaple:

    To trace all packets destinted for IP address 206.124.146.176:

       shorewall iptrace -d 206.124.146.176

    To turn that trace off:

       shorewall noiptrace -d 206.124.146.176

之後 dmesg 會有好多 info 出來 !!