Logging nat



  • Hi,

    I have already tried your search, but did not find the answer, although it might be simple (…).

    I need to log all NAT traffic.
    Activating logging at "Firewall->Rules" is no problem.
    But activating logging at "Firewall->NAT->Outbound" (Manual Outbound NAT rule generation) is not possible.

    Is there a reason why the logging option cannot be enabled at NAT-Outbound-rules?
    Unfortunately I am not familiar with pf or ipfw, but only with iptables. Can you help me how to enable logging via command line? I already failed by entering "ipfw list", because I received the message:
    "ipfw: getsockopt(IP_FW_GET): Protocol not available"

    Thanks a lot for your kind answer

    Thomas


  • Rebel Alliance Developer Netgate

    It's not currently possible, but it's on the list to happen in the future.
    See http://redmine.pfsense.org/issues/2118