D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: primaxx on January 30, 2012, 01:54:51 PM

Title: My webserver behind a DFL-210 only logs local gateway address [Solved]
Post by: primaxx on January 30, 2012, 01:54:51 PM

Hello forum,

I hope you can help me out here.

As said in the subject, I'm having a problem with logging. Even though I know the visitors to my website comes from the Internet, the log on the webserver only report the local gateway-address (the local address of the DFL-210), instead of my visitors public ip.

To be honest, I'm not very good at networking, so I can't figure this out. I suspect though, that this is related to the NAT-rule somehow? (Because there I notice the options "Use Interface Address, Specify Sender Address or Use NATPool".)
It this where I fix my problem, and if yes, what exactly should I choose?

Thank you very much for any help!

Regards,
Primaxx

Title: Re: My webserver behind a DFL-210 only logs local gateway address
Post by: danilovav on January 30, 2012, 06:36:59 PM

Originally, you've setup like below

SAT any/all-nets core/wan_ip http, SAT: ...
NAT any/all-nets core/wan_ip http

Of cource, NAT "maskarades" all client IP to lan_ip
You need to change

# external requests
SAT wan/all-nets core/wan_ip http, SAT: ...
Allow wan/all-nets core/wan_ip http
# internal requests from LAN
SAT lan/lannet core/wan_ip http, SAT: ...
NAT lan/lannet core/wan_ip http

Title: Re: My webserver behind a DFL-210 only logs local gateway address
Post by: primaxx on January 30, 2012, 10:48:31 PM

Ah, danilovav, thank you VERY MUCH!
Not only did it solve my problem, but now I do believe I understand a little bit more about how this works.

Again; thank you!
 :)