Howdy, I have a few pfSense firewalls. I am looking for reliably logging some connections. I have a few rules setup to log connections, and I have logging to a syslog server setup. My syslog server isn't getting the data that I expect. For one thing, all I see is something like this:
Sep 5 14:39:07 pf: 00:01:20.816680 rule 1/0(match): block in on sk0: (tos 0x0, ttl 127, id 21268, offset 0, flags [DF], proto TCP (6), length 48) That's not quite what i was expecting. I searched the wiki a little. Does anyone else have an idea about this? Do I need to use ntop or something? Sincerely, Joshua _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
