I can't believe this isn't a FAQ; I apologize if I missed something in my searches. Is there a way to log connections along with all of their NAT translation data? I am using a Debian (Sarge) system to SNAT guest users from private address space to the Internet, and I need to keep a record that includes both their internal and external addresses. Simply logging before the SNAT rule leaves out the external address, leaving me only with the original RFC1918 source address. /proc/net/ip_conntrack has the information I need, but no way to send it to the log it at the beginning and/or end of the session. There HAS to be an easy way to do this! Right? Thank you... -- ...Craig
