Port for NAT'd firewall logs



  • I run an OpenVPN server on UDP 1194 and I have various other ports (53, 123, etc.) NAT'd to 1194 UDP for the OpenVPN server to get around restrictive firewalls.

    When looking at the firewall logs for allowed connections the log shows UDP 1194. Is there a way to see what port the original connection came in on?



  • It's already translated when it hits the filter. The NAT state will show the original, Diag>States.



  • @cmb:

    It's already translated when it hits the filter. The NAT state will show the original, Diag>States.

    Thats what I was afraid of. And there isn't any log for the states is there? So in order to see the NAT state I need to be watching the states in real time?



  • Correct, the NAT translations aren't logged.


Log in to reply