To enable logging, first enable logging for the firewall. Next, enable Oracle Cloud Infrastructure Logging for the Network Firewall service. Finally, configure log information like log category, location, and retention.
Enable logging for the firewall:
On the navigation menu, select Identity & Security. Go to Firewalls, select Network Firewalls.
Locate the firewall in the list, select the Actions menu (), and then select View Details.
Select Logs.
In the Logs list, find the log, and select the Enable switch.
Enable the Oracle Cloud Infrastructure Logging for the Network Firewall Service:
Open the navigation menu and go to Observability & Management. Under Logging, go to Logs.
Select Enable Service Log.
Under Select Resource, Resource Compartment, select a compartment you have permission to work in.
Select Network Firewall from the Service list.
Select the firewall from the Resource list.
Configure the log:
In Log Category select a log category to specify the type of log to create.
Note
You can only have one log for any combination of service, resource, and log category.
In Log Name, type a name for the log. Select Enable Legacy Archival Logs to automatically create a bucket in your compartment, and place a copy of your log there.
Specify the log location (select Show Advanced Options if necessary):
In Compartment, select the compartment for the log.
Tip
You can type in the list box to perform a filtered search of all compartments in the tenancy.
In Log Group, select a log group for the log.
Tip
To create a log group, select Create New Group.
Specify the log retention:
1 month (the default)
2 months
3 months
4 months
5 months
6 months
Apply any tagging-related information in the Tag Namespace, Tag Key, and Value fields.
Select Enable Log.
The Log detail page is displayed, and the log is in the process of being created (a "Creating log" message is displayed).
), and then select View Details.