Absent firewall log entry comments in gateway fire...

Perttu · ‎08-25-2021

Hi,

I enabled logging with comments for a firewall rule in gateway firewall, but for some reason the comment part is absent from corresponding log entry. Is this a feature or a bug?

I get entries like this into edge syslog, but without comments it's hard to pop them up in log analytics.

2021-08-24T17:47:19.647Z nsx-edge2 NSX 7939 FIREWALL [nsx@6876 comp="nsx-edge" subcomp="datapathd" s2comp="firewallpkt" level="INFO"] ❤️ e2dcbef4195a4bcb:8806aeba5e96f060>INET reason-match PASS 2049 IN 60 TCP x.y.z.w/12345->a.b.c.d/443 S

Perttu · ‎08-31-2021

I reply to myself. I confused Log Label and Comments attributes. Seemingly the former is not present at all in Gateway Firewall and the comment is just for describing the rule for other admins.

However this log label to GWF would be really useful and supposedly not a big thing to implement. Is there a feature request about it already placed?

All

Absent firewall log entry comments in gateway firewall (NSX-T 3.1.3)