[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] Firewall and apache logs?

Subject: [ale] Firewall and apache logs?
From: Robert.L.Harris at rdlg.net (Robert L. Harris)
Date: Thu, 9 Aug 2001 10:40:07 -0600



I've got a IPMasqing firewall up,  Apache behind it and I'm using "rinetd"
to forward ports from the firewall:80 to my web server.  I can see in my
log where I've been scanned:

192.168.0.1 - - [05/Aug/2001:22:40:26 -0600] "GET /default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Note the problem.  It doesn't give an actual IP.  Anyone know any thoughts
on either getting rinetd to keep the IP's somehow or another way of
forwarding the ports that will?

Robert


:wq!
---------------------------------------------------------------------------
Robert L. Harris                |  Micros~1 :  
Senior System Engineer          |    For when quality, reliability 
  at RnD Consulting             |      and security just aren't
                                \_       that important!
DISCLAIMER:
      These are MY OPINIONS ALONE.  I speak for no-one else.
FYI:
 perl -e 'print $i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);'

--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.

Prev by Date: [ale] Code Red Worm Statistics
Next by Date: [ale] Server Side includes
Previous by thread: [ale] Server Side includes
Next by thread: [ale] Browsing MS Network
Index(es):
- Date
- Thread