Remote logging format



  • I've setup syslog to send to a Windows box on my LAN side.  I'm using WallWatcher to collect the logs.  Recently I updated to pfSense 1.2-rc2.  It appears the logging format has changed?  I'm getting additional information in the remote IP field.  It makes reviewing the logs a bit difficult.  Is this something I can remedy?

    Here is a snippet of the log when the change occured (yes I obscured my IP).  Note:  I have changed the TAB characters to 4 spaces.

    
    2007/09/02    07:22:45.86    I    tcp    209.123.109.177    i.dslr.net    80    ##.###.29.38    56515
    2007/09/02    07:25:09.13    I    udp    38.102.233.57        4679    ##.###.29.38    60006
    2007/09/02    07:26:03.22    I    udp    66.190.172.189        137    ##.###.29.38    137
    2007/09/02    07:26:05.22    I    udp    66.190.172.189        137    ##.###.29.38    137
    2007/09/02    07:26:06.23    I    udp    66.190.172.189        137    ##.###.29.38    137
    2007/09/02    07:37:45.55    I    tcp    209.85.165.104    eo-in-f104.google.com    80    ##.###.29.38    61681
    2007/09/02    07:38:52.67    I    tcp    65.207.183.49    xml.weather.com    80    ##.###.29.38    56929
    2007/09/02    08:01:37.70    I    tcp    tos 0x0, ttl 124, id 8496, offset 0, flags [df], proto: tcp (6), length: 48) 96.226.0.8        50071    ##.###.29.38    445
    2007/09/02    08:01:40.70    I    tcp    tos 0x0, ttl 124, id 50472, offset 0, flags [df], proto: tcp (6), length: 48) 96.226.0.8        50071    ##.###.29.38    445
    2007/09/02    08:03:50.70    I    tcp    tos 0x0, ttl 114, id 41938, offset 0, flags [df], proto: tcp (6), length: 48) 84.166.148.19        3503    ##.###.29.38    33775
    2007/09/02    08:03:53.72    I    tcp    tos 0x0, ttl 114, id 9191, offset 0, flags [df], proto: tcp (6), length: 48) 84.166.148.19        3503    ##.###.29.38    33775
    
    


  • Hmm, 0 responses?  Oh well it's no longer relevant (to me).  I was forced by another decision to use a different router.  :'(


Log in to reply