pfSense Syslogs
-
Does pfSense generate syslogs when a new firewall rule is created or edited etc. ?
-
Yes. The ruleset is reloaded when that happens so you will see:
Jul 15 14:18:39 check_reload_status Syncing firewall Jul 15 14:18:40 check_reload_status Reloading filter
Do you mean does it log the actual rule changes? Not in the system log but the last 30 configs are stored and can be viewed and diff'd at Diagnostics > Backup & Restore > Config History tab.
Steve
-
@stephenw10
thank you. Is there a way to send these changes over syslogs -
Not by default.
It's not something I've ever tried but you might be able to use the shellcmd option 'afterfilterchangeshellcmd'. If you ran a diff of the current config file against the first backup that would show you the last change. You could redirect that output to the logger. Or export it directly maybe.
The exact syntax for that is left as an exercise.Steve
-
@stephenw10
Thank you for your reply