Source NAT question
Hi,
I do Source NAT on my gateway using netfilter iptables. How do i find out which client in my private LAN is connected to a particular server on the internet. To be precise when i run netstat -na on the gateway machine i will only see the "public IP:Client port" connected to the internet server. I know one way to add a LOG rule before the SNAT rule. Any other method so that my LOG do not go on increasing with too many logging rules. TIA |
Have you tried using iptraf. You can see which ip is connecting to which port on your machine.. hope it helps
|
yes yes i forgot iptraf thanks for reminding :)
Actually I wanted to cap my leased line bandwidth since 5 of my users who are allowedto connect directly without going through my squid proxy cause slowing of net connection by doing to much upload and i wanted to trace that user. Now everything is under control since i have limited upload speed limit using tc/cbq and iptable MARK rules :) |
All times are GMT -5. The time now is 08:00 PM. |