Hi Remy

Thanks for your reply.

I have found a way to do this. Since I am already reading and parsing the
whole TCP and IP headers with the intermediate drivers, I can read that it
is in fact a "SYN" command sent to a http server. I then redirect this
packet to my idMappedTCPPort class listening on pert 9512.

I had to modify Indy's class to do the OnConnect event before it assigns a
"" to the outbound connections host. So in the OnConnect event I can set it.

Then I find the IP in a list containing all the IP's and PORTS which went
through my network monitor class:

(httpGateway is the idTCPMappedPort class)

procedure TdmHttpServer.httpGatewayConnect(AContext: TIdContext);
var
lClient: TIdMappedPortContext;
lsSourceIP: String;
lSourcePort, lDestPort: Integer;
tmpAddreses: TInAddresses;
s_IP: TInAddr;
s_Port, d_Port: Word;
lsMessage: String;
begin

lClient := TIdMappedPortContext(AContext);

lsSourceIP := lClient.Connection.Socket.Binding.PeerIP;
lSourcePort := lClient.Connection.Socket.Binding.PeerPort;
lDestPort := lClient.Connection.Socket.Binding.Port;

s_IP := StrToInAddr(lsSourceIP);
s_Port := htons(lSourcePort);
d_Port := htons(lDestPort);

if FindIP(s_IP.S_addr, s_Port, d_Port, tmpAddreses) then begin

TIdTcpClient(lClient.OutboundClient).Host :=
InAddrToStr(tmpAddreses.OriginalDestIP);
httpGateway.MappedHost := InAddrToStr(tmpAddreses.OriginalDestIP);

end;

end;


I am still fine tuning it but so far it works like a charm. Most (90%) of
the sites I tested loads, but for some reason others don't....

Regards
Hannes