Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Raw Filter Log Format

    Scheduled Pinned Locked Moved
    Documentation
    1
    1
    58
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      Peter Pann
      last edited by

      I am looking at a GRE attack agains my system (https://nvd.nist.gov/vuln/detail/CVE-2022-20946), my entry looks like this:

      4,,,1000000103,mvneta0,match,block,in,4,0x0,,50,50087,0,DF,47,gre,1090,59.127.81.214,192.168.2.11,datalength=1070

      I can see that IP 59.127.81.214 is probing the sytem, I just do not know the other fields is there any documentation, https://docs.netgate.com/pfsense/en/latest/monitoring/logs/raw-filter-format.html doesn't show any.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post