I have looked at the other posts on this forum mainly http://forum.mikrotik.com/viewtopic.php?f=2&t=41261
but can not find a solution for the following simple srcnat-masquerade example:
internal router ip 192.168.1.1/24
external router ip 10.1.1.1 (public ip with internet access)

I have to log all ip/port pairs involved in a connection from inside to internet and those are:
192.168.1.10:1111 -> 10.1.1.1:2222 -> 8.8.8.8:53

The first pair (192.168.1.10:1111 -> 8.8.8.8:53) can easily be logged by
/ip firewall nat add chain=srcnat action=log
but I'm having a problem how to log the second pair (10.1.1.1:2222 -> 8.8.8.8:53) of the same connection ?

All of this is ofcourse being sent to a syslog server as these logs will grow a lot.

Thanks
Igor