Feature #8584
closed
Suppress logging of specific firewall rule
0%
Description
I have a number of floating rules that block traffic on my network (such as multicast traffic). Due to the nature of this traffic, the firewall log is flooded with entries for these rules.
Firewall rules have a an option to explicitly log packets that are handled by that rule. Can a second option be added to explicitly suppress/ignore logging of packets that are handled by that rule?
Updated by Jim Pingle over 7 years ago
- Status changed from New to Rejected
If traffic matches a rule with logging set, it will log.
If traffic matches a rule without logging set, it won't log.
If you see traffic in the logs that looks like it should match a rule you have without logging set, it isn't matching the rule you think it's matching, and your original rule needs to be changed in some way to match it (e.g. multicast traffic generally needs ip options set, but it's easy to miss setting that on a rule)
Please post on the forum or the pfSense subreddit to discuss the issue if you have more questions.