Is there a way to log all firewall rules I’ve created without having to add “log enable” to each individual rule (i.e., is there a global setting that will automatically log each rule without having to explicitly state log enable)?
enable-default-log option on the firewall ruleset. For example:
set firewall name LAN-OUT enable-default-log
@artooro I do not believe that is for capturing all rules.
That option will only log the default rule, ie rule 10000 when all the other rules are checked.
You will have to add logging to every rule afaik.
Thanks everyone. I ended up going back and re-adding it to each of our firewall rules. We have a good amount, hence why I was trying to find an easier way, but no worries.