Page MenuHomeVyOS Platform
Create Task
Maniphest T1105

'Show log nat' command shows nothing
Closed, ResolvedPublic
Actions

Description

Hi:

We got several VyOS configured with lot of NATs (source and destination). We realized the 'show log nat' displays nothing and don't know whether it's a bug or not. Our commands to see the log are:

set system syslog global facility all level 'notice'
set system syslog global facility protocols level 'debug'

Our version is 1.1.7. Is our config wrong?.

Thanks a lot
Regards

Details

Difficulty level
Unknown (require assessment)
Version
1.1.7
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)

Event Timeline

seguridad_tic triaged this task as Normal priority.Dec 14 2018, 9:15 AM
seguridad_tic created this task.
seguridad_tic created this object in space S1 VyOS Public.
dmbaturin closed this task as Resolved.May 29 2021, 6:54 AM
dmbaturin claimed this task.
dmbaturin added a subscriber: dmbaturin.

I can confirm that NAT logging works fine in 1.2.7. So if there was a bug related to it, it's been long fixed.

dmbaturin@syncer-home-rtr# set nat source rule 5 log enable 
[edit]
dmbaturin@syncer-home-rtr# commit

dmbaturin@syncer-home-rtr# run show log | grep NAT-SRC-5
May 29 06:52:32 syncer-home-rtr kernel: [68308.369410] [NAT-SRC-5] IN= OUT=eth10.24 SRC=10.1.45.5 DST=1.1.1.1 LEN=73 TOS=0x00 PREC=0x00 TTL=64 ID=62722 DF PROTO=UDP SPT=38129 DPT=53 LEN=53 
May 29 06:52:34 syncer-home-rtr kernel: [68311.163211] [NAT-SRC-5] IN= OUT=eth10.24 SRC=10.1.45.5 DST=1.1.1.1 LEN=73 TOS=0x00 PREC=0x00 TTL=64 ID=63182 DF PROTO=UDP SPT=55570 DPT=53 LEN=53
dmbaturin added a project: VyOS-1.2.0-GA.May 29 2021, 6:55 AM
dmbaturin set Is it a breaking change? to Unspecified (possibly destroys the router).