Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Report of used ports?

    Scheduled Pinned Locked Moved
    Off-Topic & Non-Support Discussion
    3
    5
    1.5k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      Gr1pen
      last edited by

      I have changed from a non-protected network to routing all VLANs through a pfSense firewall, initially allowing any-any.

      Now I want to start lock down the network, and wonder if there is any tool (like syslog parser or similar) that can give me a report of all ports that have been allowed to ecach IP behind the pfSense? Kind of getting a baseline to create the allow rules from.

      I looked at Kiwi Syslog server, but I wonder if anybody know how to achieve this more easy?

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        You can probably do that with ntop-ng on the firewall.

        https://docs.netgate.com/pfsense/en/latest/monitoring/graphs/bandwidth-usage.html#ntopng

        Steve

        G 1 Reply Last reply Reply Quote 0
        • G
          Gr1pen @stephenw10
          last edited by

          @stephenw10 Cool, I will give it a try. Thanks!

          1 Reply Last reply Reply Quote 0
          • S
            Sapphon
            last edited by

            I tried but it didn't work, maybe I'm doing something wrong?

            1 Reply Last reply Reply Quote 0
            • stephenw10S
              stephenw10 Netgate Administrator
              last edited by

              What exactly did you try?

              Please give details otherwise this just looks like spam and will be treated as such.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post