[pve-devel] pve-firewall : can't have log on drop/reject rules

Dietmar Maurer dietmar at proxmox.com
Thu Nov 22 10:19:32 CET 2018


> but I can't get any log for a vm rule with a drop/reject.
> 
> It's only works with default vm drop/reject action.

Yes. We currently try to keep log rate as low as possible.

> I found an old patch about adding log by rules 
> https://pve.proxmox.com/pipermail/pve-devel/2017-September/028816.html
> 
> But I don't see anywhere how to define it in rules.
> 
> any idea ?

There is some code to use it with macros (log, logmsg), but AFAIK there is
currently no way to defile log rules.




More information about the pve-devel mailing list