Improving of Firewall Change log
In this topic was mentioned really good way how to log changes on firewall, log_config_write.patch:
Many thanks for it! However, it would be really great to know which rule has been changed or at least on which interface.
Does anybody have an idea how to achieve this funcionality?
You can see that locally on the config history tab already.
Or you can just diff the config files if you are backing them up.
Do you need more than that?
But I can only see, that a firewall rule was changed. I can´t see which one has been changed or at least on which interface.
Or am I looking wrong?
You can see exactly what was changed by diffing the two configs:
You´re right, but when I enable some rule, even from this tab I don´t know, which one I enabled.
Maybe I could find it in config file in highlighted rows but that is not appropriate for next automated evaluation. That is the reason why it would be nice to have this information directly in the log.
The diff is against the current config version so you can see exactly what changed.
That's the only config record there is though. If you need something more you can open a feature request: