Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to navigate disk inside Netgate appliance from GUI?

    Official Netgate® Hardware
    6
    20
    1.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      SteveITS Rebel Alliance @rloeb
      last edited by

      @rloeb said in How to navigate disk inside Netgate appliance from GUI?:

      download a file if your know it's full path

      I stand corrected, guess I never used that page for that. :)

      Try 'find / -name "*.pcap"' if you know the extension, perhaps limited to /var instead of /. Or "find / -type f -mtime -1" for files in the last day.

      Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
      When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
      Upvote 👍 helpful posts!

      R 1 Reply Last reply Reply Quote 0
      • R
        rloeb @SteveITS
        last edited by

        @teamits Thank you.

        R 1 Reply Last reply Reply Quote 0
        • R
          rloeb @rloeb
          last edited by

          @rloeb Note: If you use WinSCP to navigate the disk in a Netgate pfsense appliance, you cannot download the files that are captured by the process I was using. Access is denied when you attempt to download. I don't understand why access is denied, although I can appreciate why "write" or "modify" access would be denied.

          GertjanG 1 Reply Last reply Reply Quote 0
          • GertjanG
            Gertjan @rloeb
            last edited by Gertjan

            Strange.

            Just tested WinSCP myself.
            When packet capturing from this web page https://pfsense.local.net/diag_packet_capture.php ( it tells me where the captured file is kept ) :

            $fp = "/root/";
$fn = "packetcapture.cap";

            I could load the /root/packetcapture.cap file with a click :

            6a439b01-b69a-4ce8-9298-6c1c9b9d0aea-image.png

            No "help me" PM's please. Use the forum, the community will thank you.
            Edit : and where are the logs ??

            R 1 Reply Last reply Reply Quote 0
            • R
              rloeb @Gertjan
              last edited by

              @gertjan .../diag_packet_capture.php is the page displayed from the pfsense menu: Diagnostics|Packet Capture. I do not find any information there about where the captured packet is stored. (However, there may be such information if packets are captured using the packet capture capabilities on that page, which I didn't attempt.)

              The packets captured from Services|Snort|Edit Interface|LAN|Alert Settings|Enable Packet Captures are stored in a directory: /var/log/snort/snort_igbnnnnnn (nnnnnn = 6 digits; new directory created each time instantiated) as a .log file. If "Enable Unified2 Logging" is also checked, then a .U2 file is also created in the same directory.

              That directory cannot be opened by WinSCP (permission denied). The only way I have found to display or download either file is by using Diagnostics|Command Prompt within Snort.

              GertjanG 1 Reply Last reply Reply Quote 0
              • GertjanG
                Gertjan @rloeb
                last edited by

                @rloeb

                Didn't know you were using snort.

                Thought it was :

                3cbc6f63-2684-4946-ab03-e5ee029b442a-image.png

                No "help me" PM's please. Use the forum, the community will thank you.
                Edit : and where are the logs ??

                R 1 Reply Last reply Reply Quote 0
                • R
                  rloeb @Gertjan
                  last edited by

                  @gertjan Regardless, your help has been invaluable. I learned a bunch!

                  1 Reply Last reply Reply Quote 0
                  • stephenw10S
                    stephenw10 Netgate Administrator
                    last edited by

                    You can just browse (and open) files in Diag > Edit File. Often easiest.

                    Steve

                    R 1 Reply Last reply Reply Quote 0
                    • R
                      rloeb @stephenw10
                      last edited by

                      @stephenw10 My issue was finding the file to view/edit :-)

                      1 Reply Last reply Reply Quote 0
                      • stephenw10S
                        stephenw10 Netgate Administrator
                        last edited by stephenw10

                        Right but you can click browse there and look for it if you have some vague idea.

                        Screenshot from 2021-03-29 15-12-14.png

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.