Firewall: NAT: Destination NAT: created rules with label not filled in ive log

rolsch · February 10, 2026, 08:19:09 PM

Hi.

I see that a "Firewall: NAT: Destination NAT" rule with description "abcd" is not presented in the "Firewall: Log Files: Live View" Label section.
Only the label "rdr rule" is shown was complicated the analyse/finding the correct rule.

- bug/feature or what?

OPNenthu · February 10, 2026, 09:08:15 PM

Quote from: rolsch on February 10, 2026, 08:19:09 PMOnly the label "rdr rule" is shown

Yes, DNAT rules get logged with 'rdr rule'. Some context on that: https://forum.opnsense.org/index.php?topic=45348.msg226752#msg226752

If you have a separate rule to pass the associated traffic and enable logging on that, then you'll see that label. For example this is what a couple NTP redirects looks like ('rdr' followed by 'pass'):

You cannot view this attachment.

Do you have associated pass rules for your DNAT rules? I don't remember off the top of my head but I'd imagine that if you are using implicit pass on the NAT rule then you'll only see the 'rdr' logged.

Firewall: NAT: Destination NAT: created rules with label not filled in ive log

rolsch

February 10, 2026, 08:19:09 PM

OPNenthu

February 10, 2026, 09:08:15 PM #1 Last Edit: February 10, 2026, 09:25:31 PM by OPNenthu