I have a system with two nat box in front of it..
i use iptables for nat and i would like to know if is possible to log all the connection like a proxy server (es: squid)..
right now i'm able to log the connection using
iptables -t nat -A POSTROUTING -s 10.50.72.0/23 -o eth0 -j LOG --log-level debug --log-prefix "POSTRT: "
iptables -t nat -A POSTROUTING -s 10.50.72.0/23 -o eth0 -j SNAT --to 111.111.111.111
but on my nat.log file i can get only
Aug 11 11:20:53 gw2-709nat kernel: POSTRT: IN= OUT=eth0 SRC="" DST=213.199.150.90 LEN=78 TOS=0x00 PREC=0x00 TTL=126 ID=4530 PROTO=UDP SPT=137 DPT=137 LEN=58
Anyone know if it's possible to see what kind of files the client has requested too ? i need a debug similar to squid..
Any idea ?
Simone Sestini [ SS971-RIPE ]
Plug IT s.p.a. - Technical Office
Via Ernesto Rossi
52100 Arezzo
Fax
Web
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
