Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    GUI services in the system log are filled with nginx messages

    webGUI
    8
    21
    811
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      moelassus @willemb last edited by

      @willemb I'm seeing the same thing. I would love to know how to dial back the nginx logging. I have pfSense configured to rotate up to 10 log files and I'm estimating all 10 nginx logs are rotating several times per day.

      S 1 Reply Last reply Reply Quote 0
      • S
        SteveITS @moelassus last edited by SteveITS

        @moelassus I think it's only while logged in? The dashboard for instance will make a lot of update calls.

        Edit: it doesn't seem to be different than 21.05.x.

        Steve

        Only install packages for your version, or risk breaking it. If yours is older, select it in System/Update/Update Settings.
        When upgrading, let it finish; do not reboot early. Allow 10-15 minutes, or more depending on packages and device speed.

        M 1 Reply Last reply Reply Quote 0
        • T
          troysjanda last edited by

          I have the same issue on 22.01 and the log is the largest by far than any other log.

          Dell Poweredge r210 II, Intel(R) Xeon(R) CPU E31240 @ 3.30GHz RAM: 16GB
          Dell Enterprise HHD x2 5000gb (ZFS-Mirror)
          Pfsense: 2.6.0 (amd64)
          Installed Pkg's: Cron, Nmap, System_Patches.

          1 Reply Last reply Reply Quote 0
          • M
            moelassus @SteveITS last edited by

            @steveits Are you aware of a way to dial back the logging? I don't need to see anything but error logging from the WebUI.

            willemb 1 Reply Last reply Reply Quote 0
            • areckethennu
              areckethennu @willemb last edited by

              @willemb Same thing here. Fresh install of pfSense 22.01.

              I'm just a home user with pfSense 23.01-RELEASE (amd64) on a Protecli VP2410

              1 Reply Last reply Reply Quote 0
              • willemb
                willemb @moelassus last edited by

                I wish I knew, I hope some pfsense guru can tell me.

                fireodo 1 Reply Last reply Reply Quote 0
                • fireodo
                  fireodo @willemb last edited by fireodo

                  @willemb said in GUI services in the system log are filled with nginx messages:

                  I wish I knew, I hope some pfsense guru can tell me.

                  Hi,

                  I am no pfsense Guru :-) but you can disable the logging by modificating this file: /etc/inc/system.inc.
                  But be careful and make a backup before. Beside that you have to make this modification each time pfsense gets updated.
                  With this file open in editor you search for "access_log"
                  You will find this: "access_log syslog:server=unix:/var/run/log,facility=local5 combined;"
                  Replace it with this: "access_log off;
                  #syslog:server=unix:/var/run/log,facility=local5 combined;"
                  After that do a "Restart webConfigurator" and you should be done.

                  Nice weekend,
                  fireodo

                  Kettop Mi4300YL, CPU: i5-4300Y @ 1.60GHz, RAM: 8GB, 4Ports
                  SanDisk pSSD-S2 16GB (ZFS), WLE200NX (WiFi)
                  Pfsense 2.6.0
                  PKGs: Apcupsd, Cron, Iftop, Iperf, LCDproc, Nmap, pfBlockerNG-devel, RRD_Summary, Shellcmd, Snort, Speedtest, System_Patches.

                  willemb M T 3 Replies Last reply Reply Quote 1
                  • willemb
                    willemb @fireodo last edited by

                    @fireodo
                    I tried, but after the adjustment the login screen through the browser wouldn't start at all. So put it back.
                    Thanks but this isn't working for me.

                    fireodo 1 Reply Last reply Reply Quote 0
                    • fireodo
                      fireodo @willemb last edited by fireodo

                      @willemb said in GUI services in the system log are filled with nginx messages:

                      Thanks but this isn't working for me.

                      OK. Works here on 3 machines very well ...(two with 2.6.0 and one with 22.01) maybe you made a mistake in the modifications ...

                      Kettop Mi4300YL, CPU: i5-4300Y @ 1.60GHz, RAM: 8GB, 4Ports
                      SanDisk pSSD-S2 16GB (ZFS), WLE200NX (WiFi)
                      Pfsense 2.6.0
                      PKGs: Apcupsd, Cron, Iftop, Iperf, LCDproc, Nmap, pfBlockerNG-devel, RRD_Summary, Shellcmd, Snort, Speedtest, System_Patches.

                      willemb 1 Reply Last reply Reply Quote 0
                      • willemb
                        willemb @fireodo last edited by

                        @fireodo Did it again, now with no typo and nginx log notifications are disabled.
                        Thanks fireodo.

                        fireodo 1 Reply Last reply Reply Quote 0
                        • fireodo
                          fireodo @willemb last edited by

                          @willemb said in GUI services in the system log are filled with nginx messages:

                          Thanks fireodo.

                          Glad you made it!

                          Kettop Mi4300YL, CPU: i5-4300Y @ 1.60GHz, RAM: 8GB, 4Ports
                          SanDisk pSSD-S2 16GB (ZFS), WLE200NX (WiFi)
                          Pfsense 2.6.0
                          PKGs: Apcupsd, Cron, Iftop, Iperf, LCDproc, Nmap, pfBlockerNG-devel, RRD_Summary, Shellcmd, Snort, Speedtest, System_Patches.

                          1 Reply Last reply Reply Quote 0
                          • M
                            moelassus @fireodo last edited by

                            @fireodo That worked perfectly! Thanks!

                            1 Reply Last reply Reply Quote 0
                            • T
                              troysjanda @fireodo last edited by

                              @fireodo So this is the line I see

                              access_log syslog:server=unix:/var/run/log,facility=local5 combined;

                              I should change it to

                              access_log off; #syslog:server=unix:/var/run/log,facility=local5 combined;

                              Dell Poweredge r210 II, Intel(R) Xeon(R) CPU E31240 @ 3.30GHz RAM: 16GB
                              Dell Enterprise HHD x2 5000gb (ZFS-Mirror)
                              Pfsense: 2.6.0 (amd64)
                              Installed Pkg's: Cron, Nmap, System_Patches.

                              fireodo 1 Reply Last reply Reply Quote 0
                              • fireodo
                                fireodo @troysjanda last edited by

                                @troysjanda said in GUI services in the system log are filled with nginx messages:

                                should change it to
                                access_log off; #syslog:server=unix:/var/run/log,facility=local5 combined;

                                Looks OK

                                Kettop Mi4300YL, CPU: i5-4300Y @ 1.60GHz, RAM: 8GB, 4Ports
                                SanDisk pSSD-S2 16GB (ZFS), WLE200NX (WiFi)
                                Pfsense 2.6.0
                                PKGs: Apcupsd, Cron, Iftop, Iperf, LCDproc, Nmap, pfBlockerNG-devel, RRD_Summary, Shellcmd, Snort, Speedtest, System_Patches.

                                1 Reply Last reply Reply Quote 1
                                • Referenced by  S SteveITS 
                                • Referenced by  S SteveITS 
                                • Referenced by  S SteveITS 
                                • Referenced by  S SteveITS 
                                • Referenced by  S SteveITS 
                                • Referenced by  S SteveITS 
                                • areckethennu
                                  areckethennu last edited by areckethennu

                                  I've kept this log activated. I just filtered it on "newsyslog" for the process. Over the last 2 days, my default (500k) sized logs have "turned over" 10 times:

                                  20220221 -- Status System Logs System GUI Service NewSysLog.png

                                  In all my other logs, I've got two of them where they've turned over twice (each).

                                  I'm just a home user with pfSense 23.01-RELEASE (amd64) on a Protecli VP2410

                                  S M 2 Replies Last reply Reply Quote 0
                                  • S
                                    SteveITS @areckethennu last edited by

                                    @areckethennu said in GUI services in the system log are filled with nginx messages:

                                    Over the last 2 days, my default (500k) sized logs have "turned over" 10 times:

                                    5 times? newsyslog is always listed twice in a row, looking at the times, not sure why and haven't looked into it.

                                    Do you leave your dashboard page visible? The web server logs all HTTP requests so the dashboard will generate a lot as it updates widgets.

                                    Looking at a few routers we manage the log file turnover seems to range between a few days to a week, to several months, so I would think it just depends on how busy the router's web GUI is. As I mentioned above this log existed in prior versions as well. I suppose it's possible the dashboard or GUI makes more web requests in this version but that seems unlikely to be a significant difference to me, especially if the web GUI isn't being used a lot.

                                    Steve

                                    Only install packages for your version, or risk breaking it. If yours is older, select it in System/Update/Update Settings.
                                    When upgrading, let it finish; do not reboot early. Allow 10-15 minutes, or more depending on packages and device speed.

                                    areckethennu 1 Reply Last reply Reply Quote 0
                                    • areckethennu
                                      areckethennu @SteveITS last edited by

                                      @steveits I was actually using the WebGUI yesterday and the day ended with that log turning over 10 times for that day, alone. And, yes, I don't usually use the WebGUI all that much, but there seems to be an awful lot more entries than I remember.

                                      Anyway, I opened a bug report on it:

                                      https://redmine.pfsense.org/issues/12833

                                      But, they explained that it was necessary for security logging and closed it. I understand that perfectly. It's just a bit bothersome.

                                      I'm just a home user with pfSense 23.01-RELEASE (amd64) on a Protecli VP2410

                                      Gertjan 1 Reply Last reply Reply Quote 0
                                      • Gertjan
                                        Gertjan @areckethennu last edited by

                                        Other solutions :

                                        Instead of looking at the dashboard page, look somewhere else, like the logs files page.
                                        The dashboard page takes a lot of resource to create.

                                        Also : consider sending the logs to a remote syslog server, create one on your LAN.

                                        Another solution :
                                        Instead of disabling the logging, read what is proposed here :
                                        Enabling Conditional Logging
                                        The example shows how to excludes requests with HTTP status codes 2xx (Success) and 3xx (Redirection).
                                        So the ordinary page requests will not get logged, but errors etc will.

                                        No "help me" PM's please. Use the forum.

                                        T 1 Reply Last reply Reply Quote 0
                                        • T
                                          troysjanda @Gertjan last edited by

                                          @gertjan how to deploy this in pfsense

                                          map $status $loggable {
                                              ~^[23]  0;
                                              default 1;
                                          }
                                          
                                          access_log /path/to/access.log combined if=$loggable;
                                          

                                          Dell Poweredge r210 II, Intel(R) Xeon(R) CPU E31240 @ 3.30GHz RAM: 16GB
                                          Dell Enterprise HHD x2 5000gb (ZFS-Mirror)
                                          Pfsense: 2.6.0 (amd64)
                                          Installed Pkg's: Cron, Nmap, System_Patches.

                                          1 Reply Last reply Reply Quote 0
                                          • M
                                            madfuzker @areckethennu last edited by madfuzker

                                            @areckethennu said in GUI services in the system log are filled with nginx messages:

                                            I've kept this log activated. I just filtered it on "newsyslog" for the process. Over the last 2 days, my default (500k) sized logs have "turned over" 10 times:

                                            In all my other logs, I've got two of them where they've turned over twice (each).

                                            That answer to keeping these out of syslog is to go to System Logs > Setting, and then uncheck "Everything" at the bottom in the section called "Remote Syslog Contents". You can check everything else, but having Everything checked drops all the GUI to syslog.

                                            Seems there should be a checkbox for GUI service.

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post