https://redmine.pfsense.org/https://redmine.pfsense.org/favicon.ico?16780521162015-02-26T00:12:21ZpfSense bugtrackerpfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=175132015-02-26T00:12:21ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Confirmed</i></li><li><strong>Target version</strong> set to <i>2.2.2</i></li></ul><p>I suspect the root issue here is logging of passed traffic with IP options regardless of whether logging is enabled on the matching rule.</p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=175172015-02-26T01:34:04ZPhillip Davisphil@jankaritech.com
<ul></ul><p>Target for 2.2.2 looks good. This does not effect actual firewall functions from a security point of view - packet passing and blocking happen as per the rules. It is just nuisance noise in the firewall log with some rule combinations and traffic.</p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=179702015-04-02T16:35:42ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Target version</strong> changed from <i>2.2.2</i> to <i>2.2.3</i></li></ul> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=182672015-04-23T15:24:00ZBill Crowderbill@crowderfarm.com
<ul></ul><p>I too have ran into this. Very irritating. :)</p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=182822015-04-26T10:22:18ZArion Lawrencearion@arion.net
<ul></ul><p>Just adding a "me too". I have default rule logging turned off, but still seeing lots of entries in firewall log of "Pass" traffic destined to 224.0.0.22 with Proto IGMP.</p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=185262015-05-26T08:45:33ZHollander Hollander
<ul></ul><p>Me too, as I also wrote here: <a class="external" href="https://forum.pfsense.org/index.php?topic=92387.msg511674#msg511674">https://forum.pfsense.org/index.php?topic=92387.msg511674#msg511674</a></p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=187002015-06-07T19:17:54ZErmal Luçieri@pfsense.org
<ul></ul><p>This needs a patching on pf(4) that forces logging on packets with ip options dropped if not allowed and does not check the rule settings.</p>
<p>Line 6332 on pf.c.</p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=187162015-06-08T21:07:23ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Assignee</strong> set to <i>Ermal Luçi</i></li><li><strong>Priority</strong> changed from <i>Normal</i> to <i>High</i></li></ul><p>this makes the firewall logs basically completely useless in some networks. Sounds like it shouldn't be too difficult to fix.</p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=187292015-06-10T12:31:02ZErmal Luçieri@pfsense.org
<ul><li><strong>Status</strong> changed from <i>Confirmed</i> to <i>Feedback</i></li></ul><p>Patched.</p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=187402015-06-10T22:17:38ZPhillip Davisphil@jankaritech.com
<ul></ul><p>2.2.3-DEVELOPMENT (i386)<br />built on Wed Jun 10 19:49:59 CDT 2015<br />FreeBSD 10.1-RELEASE-p11</p>
<p>No more flood of unasked-for IGMP messages in the firewall log. I also tried purposely passing and logging IGMP and that shows up correctly in the Firewall log with the correct associated rule number/description.</p>
<p>Fixed for me.</p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=187412015-06-11T00:52:39ZKill Bill
<ul></ul><p>Hooray! I finally can see something useful in firewall logs on the previously affected site once again! Sanity restored. :-)</p> pfSense - Bug #4383: Firewall log contains IGMP for rules that do not have logging onhttps://redmine.pfsense.org/issues/4383?journal_id=187522015-06-11T09:57:02ZChris Buechlercbuechler@gmail.com
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>Resolved</i></li></ul><p>fixed</p>