root@BL-APP-1:/etc/rsyslog.d# ls
20-ufw.conf 50-default.conf bash.conf iptables.conf log_server.conf
root@BL-APP-1:/etc/rsyslog.d# cat iptables.conf
:msg,contains,"IPTABLES" /var/log/iptables.log
-A INPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A INPUT -p udp -j LOG --log-prefix "IPTABLES UDP-IN: "
-A INPUT -p tcp -j LOG --log-prefix "IPTABLES TCP-IN: "
-A INPUT -j LOG --log-prefix "IPTABLES PROTOCOL-X-IN: "