How to log redirected packets

All of lore.kernel.org
 help / color / mirror / Atom feed

* How to log redirected packets
@ 2004-09-08 22:42 Khoa Nguyen
  2004-09-09 12:04 ` Abdul-Wahid Paterson
  2004-09-09 16:41 ` Jose Maria Lopez
  0 siblings, 2 replies; 3+ messages in thread
From: Khoa Nguyen @ 2004-09-08 22:42 UTC (permalink / raw)
  To: netfilter

Hi,

I have the following in the nat table:

[root@jungle log]# iptables -t nat -L -v
Chain PREROUTING (policy ACCEPT 6 packets, 547 bytes)
 pkts bytes target     prot opt in     out     source
destination         
    2   120 REDIRECT   tcp  --  any    any     anywhere
anywhere           tcp dpt:http redir ports 8081 
    0     0 REDIRECT   tcp  --  any    any     anywhere
172.16.6.5         tcp dpt:rtsp redir ports 8081 
    0     0 REDIRECT   tcp  --  any    any     172.16.6.5
anywhere           tcp spt:rtsp redir ports 8081 
    0     0 REDIRECT   tcp  --  any    any     anywhere
172.16.6.6         tcp dpt:rtsp redir ports 8081 
    0     0 REDIRECT   tcp  --  any    any     172.16.6.6
anywhere           tcp spt:rtsp redir ports 8081 


Now I would like to log all redirected packets to a file. How do I do
that? I did try the following but it didn't work:

iptables -t nat -A PREROUTING -j LOG --log-level debug

It only logged message destined to its local interface.

Thanks,

Khoa Nguyen


^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: How to log redirected packets
  2004-09-08 22:42 How to log redirected packets Khoa Nguyen
@ 2004-09-09 12:04 ` Abdul-Wahid Paterson
  2004-09-09 16:41 ` Jose Maria Lopez
  1 sibling, 0 replies; 3+ messages in thread
From: Abdul-Wahid Paterson @ 2004-09-09 12:04 UTC (permalink / raw)
  To: Khoa Nguyen, Netfilter List

You need to add in the same matches as your redirect statements...So
one for each with the first one being:

iptables -t nat -A INSERT 1 -p tcp --dport 80 -j LOG --log-level debug

I have put this as an INSERT as it has to go above the redirect line.
Following this example you can make a LOG line for each of your
redirects.


Abdul-Wahid


On Wed, 8 Sep 2004 18:42:47 -0400, Khoa Nguyen <knguyen@megisto.com> wrote:
> Hi,
> 
> I have the following in the nat table:
> 
> [root@jungle log]# iptables -t nat -L -v
> Chain PREROUTING (policy ACCEPT 6 packets, 547 bytes)
>  pkts bytes target     prot opt in     out     source
> destination
>     2   120 REDIRECT   tcp  --  any    any     anywhere
> anywhere           tcp dpt:http redir ports 8081
>     0     0 REDIRECT   tcp  --  any    any     anywhere
> 172.16.6.5         tcp dpt:rtsp redir ports 8081
>     0     0 REDIRECT   tcp  --  any    any     172.16.6.5
> anywhere           tcp spt:rtsp redir ports 8081
>     0     0 REDIRECT   tcp  --  any    any     anywhere
> 172.16.6.6         tcp dpt:rtsp redir ports 8081
>     0     0 REDIRECT   tcp  --  any    any     172.16.6.6
> anywhere           tcp spt:rtsp redir ports 8081
> 
> Now I would like to log all redirected packets to a file. How do I do
> that? I did try the following but it didn't work:
> 
> iptables -t nat -A PREROUTING -j LOG --log-level debug
> 
> It only logged message destined to its local interface.
> 
> Thanks,
> 
> Khoa Nguyen
> 
>


^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: How to log redirected packets
  2004-09-08 22:42 How to log redirected packets Khoa Nguyen
  2004-09-09 12:04 ` Abdul-Wahid Paterson
@ 2004-09-09 16:41 ` Jose Maria Lopez
  1 sibling, 0 replies; 3+ messages in thread
From: Jose Maria Lopez @ 2004-09-09 16:41 UTC (permalink / raw)
  To: netfilter@lists.netfilter.org

El jue, 09 de 09 de 2004 a las 00:42, Khoa Nguyen escribió:
> Hi,
> 
> I have the following in the nat table:
> 
> [root@jungle log]# iptables -t nat -L -v
> Chain PREROUTING (policy ACCEPT 6 packets, 547 bytes)
>  pkts bytes target     prot opt in     out     source
> destination         
>     2   120 REDIRECT   tcp  --  any    any     anywhere
> anywhere           tcp dpt:http redir ports 8081 
>     0     0 REDIRECT   tcp  --  any    any     anywhere
> 172.16.6.5         tcp dpt:rtsp redir ports 8081 
>     0     0 REDIRECT   tcp  --  any    any     172.16.6.5
> anywhere           tcp spt:rtsp redir ports 8081 
>     0     0 REDIRECT   tcp  --  any    any     anywhere
> 172.16.6.6         tcp dpt:rtsp redir ports 8081 
>     0     0 REDIRECT   tcp  --  any    any     172.16.6.6
> anywhere           tcp spt:rtsp redir ports 8081 
> 
> 
> Now I would like to log all redirected packets to a file. How do I do
> that? I did try the following but it didn't work:
> 
> iptables -t nat -A PREROUTING -j LOG --log-level debug
> 

Try inserting the rule above the REDIRECT rules.
iptables -t nat -I PREROUTING -j LOG --log-level debug

This will log all your connections, so maybe you can insert
one identical rule for each REDIRECT rule you already have,
that would be better so you just have logs from the rules
you really want.


> It only logged message destined to its local interface.
> 
> Thanks,
> 
> Khoa Nguyen
-- 
Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
jkerouac@bgsec.com
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA

The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
                -- Jack Kerouac, "On the Road"



^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2004-09-09 16:41 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-09-08 22:42 How to log redirected packets Khoa Nguyen
2004-09-09 12:04 ` Abdul-Wahid Paterson
2004-09-09 16:41 ` Jose Maria Lopez

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.