I'm not using any SNAT rules at my firewall.

Thanks and Regards,
Abhiram

> > I'm running a web server behind a firewall that forwards its incoming
> > requests for port 80 to its port 80 of the web server. The problem is
> > that all the log entries in the apache's access log are logged as
> > requests coming from the firewall, and I get firewall's ip address for
> > all the log entries.
> >
> > at firewall i'm running iptables as
> >
> > iptables -A PREROUTING -t nat -j DNAT -p tcp -d MYPUBLIC_IP --dport 80
> > --to PRIVATE_IP:80
> >
> > I'm trying to figure out how to properly log clients' ip addresses in
> > apache's access log.
>
> This should not happen since you are changing the destination IP of the
> incoming requests and not the source IP. The only situation in which
> this can happen is when you have some SNAT rule which is changing the
> source IP of the requests to that of the firewall box. And most likely,
> you must be doing SNAT for the requests coming from your own LAN and
> changing their IP to the IP of the firewall box. So when the hosts in
> your LAN access the webserver through its public IP, all the requests
> get logged as coming from the firewall box. Just check your SNAT rules.


_______________________________________________
ilugd mailinglist -- [email protected]
http://frodo.hserus.net/mailman/listinfo/ilugd
Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi 
http://www.mail-archive.com/[email protected]/

Reply via email to