Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Openvpn logging (too many MANAGEMENT entries)

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 2 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      crumpr
      last edited by

      Hi,

      I'm running openvpn which works pretty flawless but when I try to see who logged in via openvpn the last days I only get tons of the following messages:

      Jun 7 22:53:35 	openvpn[23291]: MANAGEMENT: Client connected from /var/etc/openvpn/server1.sock
Jun 7 22:53:35 	openvpn[23291]: MANAGEMENT: CMD 'status 2'
Jun 7 22:53:35 	openvpn[23291]: MANAGEMENT: CMD 'quit'
Jun 7 22:53:35 	openvpn[23291]: MANAGEMENT: Client disconnected

      "Verbosity level" is still the recommended "3"

      I've seen https://forum.pfsense.org/index.php?topic=70835.0 but I don't know where to look in my 2.2 installation. Is it recommended to turn down the verb to "2" or do I have to live with those messages when I want verb=3?

      As far as I understood the logging of pfsense there is no way to "get me a management list of users that used openvpn and show me when they connected and when they disconnected in the last 7 days"
      Is remote-syslog the only option to achieve this?

      Thanks a bunch!
      Best regards
      Thomas

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        Remote logging is the only way to get it currently.
        Eventually we may have a hook in the OpenVPN auth script to log it elsewhere or do something else with the event.

        As for the management log entries, those would only happen with a higher Verbosity. Are you sure you don't have an advanced option entry with a higher verb number?

        Check the full generated config file in /var/etc/openvpn/ for that server.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • C
          crumpr
          last edited by

          thanks for the hint.
          I don't find anything regarding advanced setting for logging. Would that be the advanced textbox on the openvpn settings page? (vpn_openvpn_server.php?act=edit&id=0)
          That is empty.

          I checked the conf in /var/etc and there is:

          [2.2.2-RELEASE][admin@pfSense.localdomain]/root: grep verb /var/etc/openvpn/server1.conf
verb 3

          perhaps I overlook something? (still pfsense noob)

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.