The web server gets the source IP address from the packer header and
that header is modified by the proxy on the firewall. In truth the
source for the packet is the IP address of the firewall.
> -----Original Message-----
> From: Pleuger, R.B.W. [SMTP:RPGR @
> Sent: Thursday, September 04, 1997 4:57 AM
> To: 'firewalls @
> Subject: Webserver logging
> Recently we put a webserver behind our firewall (eagle nt 4.0).
> >The problem now is that all hits from the outside world are being
> logged with
> the ip address of the inside interface of our firewall. Do other
> firewall do the same and, if they don't, why does raptor do it?