/var/log/iptables/debug.log {
    size 10M
    rotate 1
    missingok
    notifempty
    copytruncate
}