iptables comments and preventing iptables.log getting too big

Say, Any comments appreciated as regards my iptable below as regards its security etc. Also how can I prevent the logfile from being flooded and growing too big too quick?
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [42:27102]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 22 -m state --state NEW -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 25 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 1022 -m state --state NEW -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 1023 -m state --state NEW -j ACCEPT
-A RH-Firewall-1-INPUT -d 141.1.39.6 -p tcp -m tcp --dport 5060 -m state --state NEW -j ACCEPT
-A RH-Firewall-1-INPUT -d 141.1.39.6 -p udp -m udp --dport 10000:20000 -m state --state NEW -j ACCEPT
-A RH-Firewall-1-INPUT -d 141.1.39.6 -p udp -m state --state NEW -m udp --dport 4569 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -j LOG --log-prefix "ALERT,NewNotSyn from eth:"
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
-A RH-Firewall-1-INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j LOG --log-prefix "ALERT,NEW FROM eth DROP:"
-A RH-Firewall-1-INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
-A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type 8 -j LOG --log-prefix "ALERT PING DROP:"
-A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type 8 -j DROP
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
-A RH-Firewall-1-INPUT -j LOG --log-prefix "ALERT, REST INPUT DROP:"
-A RH-Firewall-1-INPUT -j DROP
COMMIT
# Completed on Sat Aug 22 23:45:37 2009
# Generated by iptables-save v1.3.5 on Sat Aug 22 23:45:37 2009
*nat
:PREROUTING ACCEPT [1:48]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
COMMIT
# Completed on Sat Aug 22 23:45:37 2009
# Generated by iptables-save v1.3.5 on Sat Aug 22 23:45:37 2009
*mangle
:PREROUTING ACCEPT [31:2417]
:INPUT ACCEPT [31:2417]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [42:27102]
:POSTROUTING ACCEPT [42:27102]
#DSCP Marking
-A OUTPUT -p udp -m udp --sport 4569 -j DSCP --set-dscp 0x2e
-A OUTPUT -p udp -m udp --sport 10000:20000 -j DSCP --set-dscp 0x2e
-A OUTPUT -p udp -m udp --sport 5060 -j DSCP --set-dscp 0x2e
COMMIT