OPNsense Forum
Archive => 20.7 Legacy Series => Topic started by: yeraycito on June 28, 2020, 01:47:48 pm
-
System: OPNsense 20.7.b_181-amd64
FreeBSD 12.1-RELEASE-p5-HBSD
OpenSSL 1.1.1g 21 Apr 2020
Suricata 5 in WAN
I find it strange that in 24 hours the firewall hasn't blocked anything. However, Suricata does block.
-
It seems to be a problem related to syslog-ng not being active. I just restarted opnsense and syslog-ng has been activated and the firewall has started working.
-
The firewall works as long as syslog-ng is active but seems to block a lot of traffic on the lan but only on the wan.
-
the firewall is always active whether or not syslog-ng is active or not. You just won't see it in the logs if syslog-ng is not active.
-
Thank you for the information. It still seems to block little traffic in the wan when suricata is active in the wan as well. When you restart opnsense and before suricata is activated the firewall blocks many more ips on the wan. Once suricata is active along with the firewall, the firewall blocks almost nothing on the wan.
-
That said, very little blocking in the wan by the firewall.
-
Widget traffic graph not working
-
Your tone in your posts sounds very aggressive, doesnt really motivate ppl to help.
When syslog is not running, blocked packets are not logged, but they are still blocked. You can check rules and stats via CLI with pfctl -s all