IGMP appearing in Firewall log when rule is not logging

phil.davis

I fixed up the display of logged IGMP packets on the Firewall Log GUI with: https://github.com/pfsense/pfsense/pull/1456
The logs of passed or blocked IGMP packets were already in the real filter.log because the rule had logging on - good.

Then I turned off logging on the rule. But still the IGMP packets are being logged. After unchecking the logging on the rule and saving… I even resorted to rebooting to see if a full reset of pf would help it, but still the packets are logged.

In /tmp/rules.debug the rule is:

pass  in  quick  on $WAN reply-to ( vr1 10.49.111.250 ) inet from 10.49.111.0/24 to any tracker 1418549388 keep state  label "USER_RULE: Allow multicast from ADSL router"

I first had it with destination 224.0.0.0/4 and now tried with destination "any" and the same behavior.
Screenshots attached - the firewall log is matching to rule (1418549388) which is the rule number above, and that rule does NOT have "log" in its definition.
I turned off logging on all WAN rules, and still I get these IGMP in the logs.
What is going on?