am Sun, dem 11.01.2004, um 12:03:57 +0100 mailte Romain Moyne folgendes: > Andreas Kretschmer a écrit : > >>iptables -t nat -A PREROUTING -d MyIP -p tcp --dport 80 -j DNAT > >>--to-destination 192.168.0.3:80 > >> > >> > > > >With this rule you make a 'DNAT', the WebServer can only see the > >Source-IP from your router. > > > >You can install a WebServer or an Proxy for your Webserver on the > >router, than you can see the visitor's IP and you can log this. > > > >A other way is to analyse the logged packets on the router. > > > > > >Andreas > > > > > There isn't another possibility ? I must install a proxy ? (a proxy with > a pentium 133Mhz will run bad ?) You can use "... -j ULOG" bevor the PREROUTING-Rule to an userspace-program for logging and analyze the packets. If you have enougt memory, you can also use a proxy without caching. Sorry, but I have no experience with ULOG-target, and I can't say more about the average through a Proxy like Squid, but I think, with 64 MByte RAM this is no problem. Andreas -- Diese Message wurde erstellt mit freundlicher Unterstützung eines freilau- fenden Pinguins aus artgerechter Freilandhaltung. Er ist garantiert frei von Micro$oft'schen Viren. (#97922 http://counter.li.org) GPG 7F4584DA Was, Sie wissen nicht, wo Kaufbach ist? Hier: N 51.05082°, E 13.56889° ;-)
