The page has been translated by Gen AI.
NAT Logging
To store NAT logs, first create a bucket in Object Storage for the logs and configure that bucket in the NAT Logging repository. Then, when you enable log storage in the NAT detail view, NAT logs will begin to be saved to the Object Storage bucket.
To store NAT logs, you need to configure the following steps in order.
- To store NAT logs, you can create a bucket in Object Storage or use an existing bucket. To create a bucket, refer to Object Storage 생성하기.
- To set the bucket for NAT Logging’s log repository, refer to NAT Logging 로그 저장소 사용하기.
- To set the log storage option to Enabled in the NAT detailed view, refer to Using NAT Log Storage.
Using NAT Logging Log Repository
To set NAT log storage to enabled, you must first configure the log repository in NAT Logging.
Reference
To set up the NAT Logging log repository, you need an Object Storage bucket for log storage. Please create a bucket in the Object Storage service first.
For detailed information, refer to Create Object Storage.
- Click the All Services > Management > Network Logging > NAT Logging menu. You will be taken to the NAT Logging List page.
- NAT Logging List page, click the top Log Storage Settings button. You will be taken to the Log Storage Settings popup.
- Log storage settings In the popup window, select the log storage bucket. When you select a bucket, the log storage path is displayed.
- Log storage settings In the popup window, after checking Log storage bucket and Log storage path, click the Confirm button.
- Notification After reviewing the message in the popup window, click the Confirm button.
Information
After configuring the NAT Logging log repository, you must set the log storage option to Enabled in the NAT detail view for logging to begin.
For more details, refer to Using NAT Log Storage.
NAT Logging list
If you configure the NAT Logging log storage bucket, the NAT Logging list will be displayed.
- Click the All Services > Management > Network Logging > NAT Logging menu. You will be taken to the NAT Logging List page.
Category requiredDetailed description Resource ID Required NAT resource ID Save target Required NAT resource name Save registration date and time Required NAT log repository registration timestamp Table. NAT Logging list items
Reference
After configuring the NAT Logging log repository, you must set the log storage option to Enabled in the NAT detail view for logging to begin.
For more details, see Using NAT Log Storage.
Check NAT Logging content
Refer to the information below to check the saved Log.
Stored log example: 2024-10-11T11:19:03,accept,259,17,192.168.2.173,46937,192.168.0.53,53,100.100.14.52,26937
| Category | Explanation |
|---|---|
| 2024-10-11T11:19:03 | Log date and time (2024-10-11, 11:19:03) |
| accept | Action (deny / accept) |
| 259 | Firewall Rule ID (Policy ID) that generated the log |
| 17 | IP Protocol ID
|
| 192.168.2.173 | Source IP |
| 46937 | Departure Port |
| 192.168.0.53 | Destination IP |
| 53 | Destination Port |
| 100.100.14.52 | NAT-translated IP |
| 26937 | NAT-translated Port |
NAT Logging Do not use log storage
In NAT Logging, you can set the log repository to be unused.
- All Services > Management > Network Logging > NAT Logging Click the menu. You will be taken to the NAT Logging List page.
- On the NAT Logging List page, click the top Log Storage Settings button. It will open the Log Storage Settings popup.
- In the Log storage settings popup, select Log storage bucket as Not used, and click the Confirm button.
Reference
Log storage settings can be changed when no log storage target is configured.
You can change the log storage bucket by selecting it as unused, confirming, and then reconfiguring it.