Dear All,

I am trying to setup a "honeypot" like using modsecurity and iptables.
I am now able to live redirect connection (DNAT) of an attacker to an internal VHOST...
Now i would like to be able to log all trafic GET/POST to that VHOST.

is there a way to let everything pass for that VHOST but capure all in Audit logs  ?