After firewall refactor, we have no capabilities for logs when default-action is applied in base chains.
In the past, we used to add a rule at the end of the ruleset for such purpose, and enable log if required. In new implementation, for base chains we use 'policy [accept|drop]', so no extra rule at the end, and no log capabilities.
We need to be able to log when default-action matches in base chains.