Discussion:
packets passed and logged in UI
Mario Ciccarelli
2011-08-31 09:17:21 UTC
Permalink
Hi,

is there any reason why this type of packets are logged in interface gui even if they are passed by firewall ?

they are all ftp connection and via UI this is the void message: "The rule that triggered this action is:" and nothing is displayed.

328050 rule 77.390.2208.0/0(match): pass in on rl0: 213.92.xxx.172.20 > 10.5.1.1.1231: [|tcp]
327482 rule 77.390.2208.0/0(match): pass in on rl0: 213.92.xxx.172.20 > 10.5.1.1.1232: [|tcp]

this on 1.2.3 (nano bsd platform)

Thanks for help.
---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscribe-***@public.gmane.org
For additional commands, e-mail: support-help-***@public.gmane.org

Commercial support available - https://portal.pfsense.org
Jim Pingle
2011-08-31 12:06:17 UTC
Permalink
Post by Mario Ciccarelli
is there any reason why this type of packets are logged in interface gui even if they are passed by firewall ?
they are all ftp connection and via UI this is the void message: "The rule that triggered this action is:" and nothing is displayed.
328050 rule 77.390.2208.0/0(match): pass in on rl0: 213.92.xxx.172.20 > 10.5.1.1.1231: [|tcp]
327482 rule 77.390.2208.0/0(match): pass in on rl0: 213.92.xxx.172.20 > 10.5.1.1.1232: [|tcp]
this on 1.2.3 (nano bsd platform)
That is normal on 1.2.3. The FTP proxy logs the connections it passes to
data ports accessed for FTP transfers.

Jim

---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscribe-***@public.gmane.org
For additional commands, e-mail: support-help-***@public.gmane.org

Commercial support available - https://portal.pfsense.org
Mario Ciccarelli
2011-08-31 16:18:09 UTC
Permalink
Hi,

thanks for help, but is there any chance to avoid this ? It's not so usefull for me to have webUI flooded with all this messages ?
Post by Jim Pingle
Post by Mario Ciccarelli
is there any reason why this type of packets are logged in interface gui even if they are passed by firewall ?
they are all ftp connection and via UI this is the void message: "The rule that triggered this action is:" and nothing is displayed.
328050 rule 77.390.2208.0/0(match): pass in on rl0: 213.92.xxx.172.20 > 10.5.1.1.1231: [|tcp]
327482 rule 77.390.2208.0/0(match): pass in on rl0: 213.92.xxx.172.20 > 10.5.1.1.1232: [|tcp]
this on 1.2.3 (nano bsd platform)
That is normal on 1.2.3. The FTP proxy logs the connections it passes to
data ports accessed for FTP transfers.
Jim
---------------------------------------------------------------------
Commercial support available - https://portal.pfsense.org
---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscribe-***@public.gmane.org
For additional commands, e-mail: support-help-***@public.gmane.org

Commercial support available - https://portal.pfsense.org
Jim Pingle
2011-08-31 16:24:56 UTC
Permalink
Post by Mario Ciccarelli
Post by Jim Pingle
That is normal on 1.2.3. The FTP proxy logs the connections it passes to
data ports accessed for FTP transfers.
thanks for help, but is there any chance to avoid this ? It's not so usefull for me to have webUI flooded with all this messages ?
Not on 1.2.3. On 2.0 the proxy does not log such connections, so you
might just consider letting this go until 2.0 releases Really Soon Now.

Jim

---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscribe-***@public.gmane.org
For additional commands, e-mail: support-help-***@public.gmane.org

Commercial support available - https://portal.pfsense.org
Mario Ciccarelli
2011-08-31 16:49:34 UTC
Permalink
Yeah, thanks a lot.

So i will wait the stable 2.0 because i have 3 pfsense with 3 ipsec channel each other far away many kilometers and i don't want to have beta problems ! :-)

MC
Post by Jim Pingle
Post by Mario Ciccarelli
Post by Jim Pingle
That is normal on 1.2.3. The FTP proxy logs the connections it passes to
data ports accessed for FTP transfers.
thanks for help, but is there any chance to avoid this ? It's not so usefull for me to have webUI flooded with all this messages ?
Not on 1.2.3. On 2.0 the proxy does not log such connections, so you
might just consider letting this go until 2.0 releases Really Soon Now.
Jim
---------------------------------------------------------------------
Commercial support available - https://portal.pfsense.org
---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscribe-***@public.gmane.org
For additional commands, e-mail: support-help-***@public.gmane.org

Commercial support available - https://portal.pfsense.org
Vick Khera
2011-09-01 11:23:31 UTC
Permalink
On Wed, Aug 31, 2011 at 12:49 PM, Mario Ciccarelli
Post by Mario Ciccarelli
So i will wait the stable 2.0 because i have 3 pfsense with 3 ipsec channel each other far away many kilometers and i don't want to have beta problems ! :-)
You're still better off with 2.0. The only issue I have (and not
tested against latest releases) is that mobile IPsec clients will not
get replies back from the fixed IPsec endpoint. For me the easy
workaround was to hard-wire the mobile client's IP which is a rarely
changing DHCP address as a fixed endpoint as well.

Everything else works great in 2.0 -- load balance, regular filtering, etc.

---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscribe-***@public.gmane.org
For additional commands, e-mail: support-help-***@public.gmane.org

Commercial support available - https://portal.pfsense.org

Loading...