Enable logging for an encryption rule to record information about the packets it processes. All sessions matching the rule will be logged.

Logging is disabled by default. On ESXi hosts, logs are stored in the /var/run/log/dnepktlogs.log file. Depending on the number of rules, a typical encryption rule section might generate large amounts of log information, which can affect performance.


  1. From your browser, log in to an NSX Manager at https://nsx-manager-ip-address.
  2. Select Encryption from the navigation panel.
  3. Click the Rules tab if it is not already selected.
  4. Click the rule for which you want to enable or disable logging.
  5. Click the Actions menu and select Enable > Enable Rule Logs or Disable > Disable Rule Logs.
  6. Click Save.
  7. Click Save again to confirm.