Page MenuHomeVyOS Platform

Firewall default-action log
Closed, ResolvedPublicBUG


After firewall refactor, we have no capabilities for logs when default-action is applied in base chains.

In the past, we used to add a rule at the end of the ruleset for such purpose, and enable log if required. In new implementation, for base chains we use 'policy [accept|drop]', so no extra rule at the end, and no log capabilities.

We need to be able to log when default-action matches in base chains.


Difficulty level
Unknown (require assessment)
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Perfectly compatible
Issue type
Improvement (missing useful functionality)