Project

General

Profile

Feature #4997

Add setting option to choose default log action for new firewall rules

Added by tall tree almost 4 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Web Interface
Target version:
-
Start date:
08/25/2015
Due date:
% Done:

0%

Estimated time:

Description

When we create a new firewall rule, we enable the Log option (and we nearly always do). When we create NAT rules, we have to visit the automatically generated associated firewall rule to enable logging for the rule. It would be useful to have an option to change the default firewall rule log setting for new firewall rules.

The "Status: System logs: Settings" page seems the appropriate page. In the "General Logging Options" section, between "Log Firewall Default Blocks" and "Web Server Log":

Firewall Rule Log Default [] Enable logging for new firewall rules including generated filter rules.

With the option box ticked:
  • new filter rules generated by NAT would have logging enabled
  • the firewall_rules_edit.php page would have the Log option ticked by default when adding new rules

Also available in: Atom PDF