pfSense » pfSense Docs

For context: https://forum.netgate.com/topic/189410/ipv6-still-logging-despite-rule/2?_=1722379601543

Reason: Firewall logs were being filled by IPv6 default blocking rules. At first i treated this similar to my IGMP/Options rule where i block IGMP but don't log. I was still seeing IPv6 drops in the log. Turns out there are a few ways of dealing with this and documentation or GUI is not clear

Option 1: Under system > advanced > network
Under IPv6 Options , uncheck the 'Allow IPv6' checkbox.
Then go under System Logs > Settings, uncheck 'Log packets matched from the default block rules in the ruleset.

Option 2:
Create a rule under LAN interface (or floating) that blocks and not log all IPv6 traffic.
Then go under System Logs > Settings, check'Log packets matched from the default block rules in the ruleset.

Its confusing to say the least. I would prefer a clearer GUI explanation under System > Adanced > Network > IPv6 options that states something along the lines of 'All IPv6 traffic will be blocked if unchecked but not logged. NOTE: To log IPv6 traffic go to System Logs > Settings and adjust there...' or something along those lines otherwise this is just a messy way of handling something that should be straight forward.