The source IP from this log line is on the LAN local to the firewall box and I still don't get the MAC address. I don't even get "MAC=" without the MAC address. It just isn't there! Feb 1 13:19:03 Weir-01 kernel: [IPTABLES FORWARD] : IN=eth1 OUT=eth2 SRC=172.16.14.136 DST=x.x.x.x LEN=1500 TOS=0x00 PREC=0x00 TTL=127 ID=56689 DF PROTO=TCP SPT=1485 DPT=3943 WINDOW=32767 RES=0x00 ACK URGP=0 Thanks again for the help... Khanh Tran Network Operations Sarah Lawrence College -----Original Message----- From: Alexander W. Janssen [mailto:yalla@ynfonatic.de] Sent: Saturday, February 01, 2003 6:18 PM To: Khanh Tran Cc: 'netfilter@lists.samba.org' Subject: Re: netfilter/iptables LOG not logging MAC addresses You'll see the MAC only if the source- or destination host are really on the local LAN where the firewall-box is connected iirc. Alex. -- "Mr Data, when I said 'Fire at Will', I didn't mean for you to be so literal." Instructions for use of this post: Insert tounge in cheek. Read as normal.
