Enabling logs for section rules records information on packets for all of the rules in a section. Depending on the number of rules in a section, a typical firewall section will generate large amounts of log information and can affect performance.

Logs are stored in the /var/log/dfwpktlogs.log file on vSphere ESXi and KVM hosts.


  1. Select Security > Distributed Firewall from the navigation panel.
  2. Click the General tab for L3 rules or the Ethernet tab for L2 rules.
  3. Click the menu icon in the first column of the section and select Enable Logs or Disable Logs.
  4. Click Publish.