I need to create PF (NAT) log file.
Daniel Bye
dan at slightlystrange.org
Mon Jul 9 17:47:35 UTC 2007
chamnan chaladpat wrote:
> About Network Address Translation.
>
> I need to create PF log file that has external and local IP address
> mapping.
>
> I need log file that has result like pfctl -ss command.
>
> How to create it?
>From a bit of googling in the archives, I think the easiest way to do
this is using packet tags:
nat on $ext_if from !($ext_if) to any tag NAT_TRAFFIC -> ($ext_if)
pass log on $ext_if tagged NAT_TRAFFIC keep state
Note I have only done very cursory testing, but it seems to work. You
can follow the logs in the normal way, using tcpdump(1).
HTH
Dan
More information about the freebsd-questions
mailing list