Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Firewall Logs with Unavailable Matched Rule and Empty Tracker ID

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 2 Posters 194 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      aarontry1
      last edited by

      Since upgrading from version 2.7.2 to 2.8.0, I have occasionally been seeing deny logs where the matched rule is listed as "unavailable" and Tracker ID is empty. All of these log entries are for UDP traffic on the WAN interface. I have disabled logging for all default firewall rules in the Logging Preferences, and I can confirm these logs are not related to any recently deleted rules. Is this a bug? How do I fix this?

      The rule detail shows the following:
      Action: block
      Reason: short
      Tracker ID:
      Matched Rule: unavailable

      Here is a screenshot of the log view:
      firewall.png firewall1.png

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        That happens if the rule is no longer present in the ruleset when the log page is displayed. So commonly for old logs if it was something dynamically created like a UPnP rule or a scheduled rule.

        Those look like reply traffic though so it could just be an expired state and the ruleset changed since.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.