Remote logging format
-
I've setup syslog to send to a Windows box on my LAN side. I'm using WallWatcher to collect the logs. Recently I updated to pfSense 1.2-rc2. It appears the logging format has changed? I'm getting additional information in the remote IP field. It makes reviewing the logs a bit difficult. Is this something I can remedy?
Here is a snippet of the log when the change occured (yes I obscured my IP). Note: I have changed the TAB characters to 4 spaces.
2007/09/02 07:22:45.86 I tcp 209.123.109.177 i.dslr.net 80 ##.###.29.38 56515 2007/09/02 07:25:09.13 I udp 38.102.233.57 4679 ##.###.29.38 60006 2007/09/02 07:26:03.22 I udp 66.190.172.189 137 ##.###.29.38 137 2007/09/02 07:26:05.22 I udp 66.190.172.189 137 ##.###.29.38 137 2007/09/02 07:26:06.23 I udp 66.190.172.189 137 ##.###.29.38 137 2007/09/02 07:37:45.55 I tcp 209.85.165.104 eo-in-f104.google.com 80 ##.###.29.38 61681 2007/09/02 07:38:52.67 I tcp 65.207.183.49 xml.weather.com 80 ##.###.29.38 56929 2007/09/02 08:01:37.70 I tcp tos 0x0, ttl 124, id 8496, offset 0, flags [df], proto: tcp (6), length: 48) 96.226.0.8 50071 ##.###.29.38 445 2007/09/02 08:01:40.70 I tcp tos 0x0, ttl 124, id 50472, offset 0, flags [df], proto: tcp (6), length: 48) 96.226.0.8 50071 ##.###.29.38 445 2007/09/02 08:03:50.70 I tcp tos 0x0, ttl 114, id 41938, offset 0, flags [df], proto: tcp (6), length: 48) 84.166.148.19 3503 ##.###.29.38 33775 2007/09/02 08:03:53.72 I tcp tos 0x0, ttl 114, id 9191, offset 0, flags [df], proto: tcp (6), length: 48) 84.166.148.19 3503 ##.###.29.38 33775
-
Hmm, 0 responses? Oh well it's no longer relevant (to me). I was forced by another decision to use a different router. :'(