diff --git a/config/syslog-ng.conf.d/unifi.conf b/config/syslog-ng.conf.d/unifi.conf
index 51fb23a..1155b0d 100644
--- a/config/syslog-ng.conf.d/unifi.conf
+++ b/config/syslog-ng.conf.d/unifi.conf
@@ -3,6 +3,7 @@ filter f_unifi_bash_history { match("bash" value("PROGRAM")); };
 filter f_unifi_fw_lan { match("LAN_" value("PID")); };
 filter f_unifi_fw_wan { match("WAN_" value("PID")); };
 filter f_unifi_fw_dnat { match("DNAT_" value("PID")); };
+filter f_unifi_fw_port_forward_dnat { match("PREROUTING-DNAT" value("PID")); };
 filter f_unifi_fw_guest { match("GUEST_" value("PID")); };
 filter f_unifi_dnsmasq { match("dnsmasq" value("PID")); };
 filter f_unifi_systemd { match("systemd" value("PID")); };
@@ -222,6 +223,16 @@ log {
   flags(final);
 };
 
+log {
+  source(s_network_udp);
+  filter(f_unifi_fw_port_forward_dnat);
+  parser(p_kv);
+  parser(p_fw_src_ip_geoip2_city);
+  parser(p_fw_dst_ip_geoip2_city);
+  destination(d_unifi_firewall);
+  flags(final);
+};
+
 log {
   source(s_network_udp);
   filter(f_unifi_fw_guest);