Jonathan Gazeley wrote: > My NAT solution is implemented in iptables and works fine. The logging > partially works but the problem is this: I am logging pre NAT, and my > log shows the internal IP and port, and the destination IP and its port. > But it does not show the port used by the NAT box to talk to the > external IP. Logging post NAT would never detect any packets. If I was > able to long pre and post NAT I would be able to log all the information > I need. conntrack netlink events have the information you want. Look at either ulogd2 flow logging, or the conntrack tool with the -E option. - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
