pf log

krad kraduk at gmail.com
Fri Jan 27 23:09:25 UTC 2017 

you also need log statements in your ruleset. This is all explained in
detail in the man pages.

On 27 January 2017 at 22:44, Mario Lobo <lobo at bsd.com.br> wrote:

> On Fri, 27 Jan 2017 14:32:27 -0500
> Stari Karp <starikarp at yandex.com> wrote:
>
> > On Fri, 2017-01-27 at 12:35 -0600, Noel wrote:
> > > On 1/27/2017 11:58 AM, Stari Karp wrote:
> > > >
> > > > Hi!
> > > >
> > > > I am using pf firewall on FreeBSD 11.0-RELEASE (amd64). In
> > > > /etc/rc.conf
> > > > I have:
> > > >
> > > > pf_enable="YES"
> > > > pflog_enable="YES"
> > > >
> > > > I made a new pf.conf on January 8th and in/var/log I have pflog
> > > > and after that nothing more. The file has just
> > > > "Ôò¡............t...u..."
> > > >
> > > > Is it normal or is something wrong, please?
> > > >
> > >
> > > That's normal.  The pflog is a binary log (not human readable) you
> > > can read with tcpdump.  See the handbook for details.
> > >
> > >
> > >
> > tcpdump -v -r /var/log/pflog
> > reading from file /var/log/pflog, link-type PFLOG (OpenBSD pflog
> > file).
> >
> > I have nothing in log as I update 10.3 release to FreeBSD-11.0-RELEASE
> >
> > I forgot to say that I use FreeBSD as a desktop.
> > _______________________________________________
> > freebsd-questions at freebsd.org mailing list
> > https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to
> > "freebsd-questions-unsubscribe at freebsd.org"
>
> From "man pflog"
>
> EXAMPLES
>      Create a pflog interface and monitor all packets logged on it:
>
>            # ifconfig pflog1 up
>            # tcpdump -n -e -ttt -i pflog1
>
> --
> Mario Lobo
> http://www.mallavoodoo.com.br
> FreeBSD since 2.2.8 [not Pro-Audio.... YET!!]
>
> "UNIX was not designed to stop you from doing stupid things,
> because that would also stop you from doing clever things."
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> unsubscribe at freebsd.org"
>

More information about the freebsd-questions mailing list