Feature #16092: Separate IDS/IPS and link-local firewall log entries from default block logging - pfSense - pfSense bugtracker

Actions

Copy link

Feature #16092

open

Separate IDS/IPS and link-local firewall log entries from default block logging

Added by Marcos M about 1 month ago. Updated 5 days ago.

Status:

Feedback

Priority:

Normal

Assignee:

Marcos M

Category:

System Logs

Target version:

2.8.0

Start date:

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

25.03

Release Notes:

Default

Description

On systems that use Snort/Suricata and also log the default blocking rules, the firewall logs can be very noisy due to snort2c blocks. Add an option to disable the logging for these without having to disable the logging for all other default blocking rules.

The "Block IPv4 link-local" block rule can be similarly noisy.

Files

clipboard-202504191627-wayqt.png (73.9 KB) clipboard-202504191627-wayqt.png

Jordan G, 04/19/2025 09:27 PM

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Feature #16092

Separate IDS/IPS and link-local firewall log entries from default block logging

Updated by Marcos M about 1 month ago

Updated by Marcos M about 1 month ago

Updated by Marcos M about 1 month ago

Updated by Jim Pingle about 1 month ago

Updated by Jordan G 5 days ago