Opened 12 years ago

Closed 12 years ago

#30 closed defect (invalid)

DNAT log line shows wrong destination

Reported by: Victor Julien Owned by: Victor Julien
Priority: major Milestone: 0.6
Component: vuurmuur Version: 0.5.74 alpha 1
Keywords: Cc:

Description

Nov 15 20:44:53: DNAT http 74.6.25.212 -> firewall(inet-nic) 'http visit' (in: ppp0 74.6.25.212:36198 -> 80.126.224.247:80 TCP flags: S* len:60 ttl:54)

It should not show 'firewall' as destination, but the real destination after NAT.

Change History (2)

comment:1 Changed 12 years ago by Victor Julien

This is the netfilter log line. The final dest is not shown, so it may be hard to fix this.

Nov 15 20:44:53 sanctorium kernel: vrmr: DNAT http visit IN=ppp0 OUT= MAC= SRC=74.6.25.212 DST=80.126.224.247 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=41206 DF PROTO=TCP SPT=36198 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0

comment:2 Changed 12 years ago by Victor Julien

Resolution: invalid
Status: newclosed

This cannot be fixed by Vuurmuur as it's not really a bug. Luckily, there is an easy workaround. The DNAT rule doesn't accept traffic in itself. It needs an ACCEPT, QUEUE or NFQUEUE rule for that. If logging is enabled on that rule, the source and destination are shown correctly.

Note: See TracTickets for help on using tickets.