Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Intrusion, where could I post logs ?

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 2 Posters 562 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G Offline
      Giki
      last edited by

      Hi,
        I am new to pfsense. 
        In our company it is installed as a virtualized machine on ESXi 6.5
        Since a couple of week I have started having something strange in the log file after I have tried to add another VPN (we have openvpn)
        Also, I did some manuevers like reistalling from a backup to restore previous state but since then I still have the same suspicious log entries after few days after restore.

      Which is the best place in this board to analyze the log file with your help ?

      Thank you,
                    Giki

      1 Reply Last reply Reply Quote 0
      • jimpJ Offline
        jimp Rebel Alliance Developer Netgate
        last edited by

        Whichever log you see the "suspicious" entry in, post it in that section. For example if it's a firewall log, post in the Firewall board. If it's in the OpenVPN log, post in the OpenVPN board, if it's a Snort or Suricata alert log, post in the IDS/IPS Board.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.