From 5cb9b84bd9ce909460d8da7f039d9371143ede6c Mon Sep 17 00:00:00 2001 From: l0crian1 Date: Tue, 21 May 2024 09:35:29 -0400 Subject: T6375: Fix/Update NAT logging Fixed broken logging for "show log nat" Added the following commands: show log nat source show log nat source rule show log nat destination nat show log nat destination nat rule show log nat static show log nat static rule --- interface-definitions/nat.xml.in | 1 + op-mode-definitions/show-log.xml.in | 50 ++++++++++++++++++++++++++++++++++--- python/vyos/nat.py | 6 ++--- 3 files changed, 51 insertions(+), 6 deletions(-) diff --git a/interface-definitions/nat.xml.in b/interface-definitions/nat.xml.in index 0a639bd80..73a748137 100644 --- a/interface-definitions/nat.xml.in +++ b/interface-definitions/nat.xml.in @@ -141,6 +141,7 @@ #include + #include Translation address or prefix diff --git a/op-mode-definitions/show-log.xml.in b/op-mode-definitions/show-log.xml.in index e13270364..c3aa324ba 100644 --- a/op-mode-definitions/show-log.xml.in +++ b/op-mode-definitions/show-log.xml.in @@ -464,12 +464,56 @@ journalctl --no-hostname --boot --unit lldpd.service - + Show log for Network Address Translation (NAT) - egrep -i "kernel:.*\[NAT-[A-Z]{3,}-[0-9]+(-MASQ)?\]" $(find /var/log -maxdepth 1 -type f -name messages\* | sort -t. -k2nr) - + + + + Show NAT destination log + + journalctl --no-hostname --boot -k | egrep "\[DST-NAT-[0-9]+\]" + + + + Show NAT destination log for specified rule + + journalctl --no-hostname --boot -k | egrep "\[DST-NAT-$6\]" + + + + + + Show NAT source log + + journalctl --no-hostname --boot -k | egrep "\[SRC-NAT-[0-9]+(-MASQ)?\]""" + + + + Show NAT source log for specified rule + + journalctl --no-hostname --boot -k | egrep "\[SRC-NAT-$6(-MASQ)?\]" + + + + + + Show NAT static log + + journalctl --no-hostname --boot -k | egrep "\[STATIC-(SRC|DST)-NAT-[0-9]+\]" + + + + Show NAT static log for specified rule + + journalctl --no-hostname --boot -k | egrep "\[STATIC-(SRC|DST)-NAT-$6\]" + + + + + journalctl --no-hostname --boot -k | egrep "\[(STATIC-)?(DST|SRC)-NAT-[0-9]+(-MASQ)?\]" + Show log for Neighbor Discovery Protocol (NDP) Proxy diff --git a/python/vyos/nat.py b/python/vyos/nat.py index 2ada29add..e54548788 100644 --- a/python/vyos/nat.py +++ b/python/vyos/nat.py @@ -300,12 +300,12 @@ def parse_nat_static_rule(rule_conf, rule_id, nat_type): output.append('counter') - if translation_str: - output.append(translation_str) - if 'log' in rule_conf: output.append(f'log prefix "[{log_prefix}{log_suffix}]"') + if translation_str: + output.append(translation_str) + output.append(f'comment "{log_prefix}"') return " ".join(output) -- cgit v1.2.3