system error log

[tudou]

OPNsense 20.7.4-amd64
FreeBSD 12.1-RELEASE-p10-HBSD
OpenSSL 1.1.1h 22 Sep 2020
Updates   Click to check for updates.
CPU Type   AMD FX-9800P RADEON R7, 12 COMPUTE CORES 4C+8G (4 cores)
CPU usage   
0
100
0
100
Load average   1.57, 1.59, 1.51
Uptime   04:24:32
Current date/time   Sun Nov 15 18:24:26 CST 2020
Last config change   Sun Nov 15 14:05:38 CST 2020
State table size   
0 % ( 339/1578000 )
MBUF Usage   
0 % ( 1780/983846 )
Memory usage   
26 % ( 4170/15780 MB )
Disk usage   
2% / [ufs] (3.2G/217G)


2020-11-15T18:19:01   configd.py[24146]   unable to sendback response [OK ] for [sensei][periodicals][None] {ef8a7db5-db0a-491e-b1e0-b759d1c3a0e7}, message was Traceback (most recent call last): File "/usr/local/opnsense/service/modules/processhandler.py", line 202, in run self.connection.sendall(('%s\n' % result).encode()) BrokenPipeError: [Errno 32] Broken pipe


2020-11-15T18:19:00   configctl[83343]   error in configd communication Traceback (most recent call last): File "/usr/local/opnsense/service/configd_ctl.py", line 68, in exec_config_cmd line = sock.recv(65536).decode() socket.timeout: timed out
2020-11-15T18:17:36   /send_heartbeat.py[55752]   unexpected result from https://opnsense.emergingthreats.net/api/v1/telemetry (http_code 403)
2020-11-15T18:09:00   configctl[68845]   error in configd communication Traceback (most recent call last): File "/usr/local/opnsense/service/configd_ctl.py", line 68, in exec_config_cmd line = sock.recv(65536).decode() socket.timeout: timed out
2020-11-15T18:09:00   configctl[53986]   error in configd communication Traceback (most recent call last): File "/usr/local/opnsense/service/configd_ctl.py", line 68, in exec_config_cmd line = sock.recv(65536).decode() socket.timeout: timed out
2020-11-15T18:02:00   configctl[17350]   error in configd communication Traceback (most recent call last): File "/usr/local/opnsense/service/configd_ctl.py", line 68, in exec_config_cmd line = sock.recv(65536).decode() socket.timeout: timed out
2020-11-15T18:02:00   configctl[61985]   error in configd communication Traceback (most recent call last): File "/usr/local/opnsense/service/configd_ctl.py", line 68, in exec_config_cmd line = sock.recv(65536).decode() socket.timeout: timed out
2020-11-15T17:59:00   configctl[95376]   error in configd communication Traceback (most recent call last): File "/usr/local/opnsense/service/configd_ctl.py", line 68, in exec_config_cmd line = sock.recv(65536).decode() socket.timeout: timed out
2020-11-15T17:59:00   configctl[90731]   error in configd communication Traceback (most recent call last): File "/usr/local/opnsense/service/configd_ctl.py", line 68, in exec_config_cmd line = sock.recv(65536).decode() socket.timeout: timed out
2020-11-15T17:58:05   syslog-ng[9596]   syslog-ng starting up; version='3.29.1'
2020-11-15T17:58:05   syslogd   kernel boot file is /boot/kernel/kernel
2020-11-15T17:58:04   syslogd   exiting on signal 15
2020-11-15T17:58:04   syslog-ng[53888]   Configuration reload finished;
2020-11-15T17:58:04   syslog-ng[53888]   Configuration reload request received, reloading configuration;


suricata   Intrusion Detection could not running very well

2020-11-15T18:26:47   suricata[68475]   [100451] <Notice> -- This is Suricata version 5.0.4 RELEASE running in SYSTEM mode
2020-11-15T18:25:10   suricata[57041]   [100662] <Error> -- [ERRCODE: SC_ERR_NETMAP_CREATE(263)] - opening devname netmap:re0/R failed: Device busy
2020-11-15T18:25:10   suricata[57041]   [100988] <Error> -- [ERRCODE: SC_ERR_INVALID_SIGNATURE(39)] - Unable to find the sm in any of the sm lists
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 2016763: SYN-only to port(s) 22:22 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 50919: SYN-only to port(s) 8009:8009 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 5323: SYN-only to port(s) 37:37 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 5322: SYN-only to port(s) 37:37 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 5321: SYN-only to port(s) 37:37 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 620: SYN-only to port(s) 8080:8080 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 618: SYN-only to port(s) 3128:3128 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 615: SYN-only to port(s) 1080:1080 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 504: SYN-only to port(s) 0:1023 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 503: SYN-only to port(s) 0:1023 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:17   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_POOR_RULE(276)] - rule 249: SYN-only to port(s) 15104:15104 w/o direction specified, disabling for toclient direction
2020-11-15T18:20:14   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_FLOWBIT(306)] - flowbit 'file.zip|file.apk' is checked but not set. Checked in 29382 and 1 other sigs
2020-11-15T18:20:14   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_FLOWBIT(306)] - flowbit 'itunes.serverinfo.request' is checked but not set. Checked in 13899 and 0 other sigs
2020-11-15T18:20:14   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_FLOWBIT(306)] - flowbit 'kindle.request' is checked but not set. Checked in 23617 and 0 other sigs
2020-11-15T18:20:14   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_FLOWBIT(306)] - flowbit 'smb.small.packet' is checked but not set. Checked in 17127 and 0 other sigs
2020-11-15T18:20:14   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_FLOWBIT(306)] - flowbit 'zip_in_uri_java' is checked but not set. Checked in 27740 and 0 other sigs
2020-11-15T18:20:14   suricata[57041]   [100988] <Warning> -- [ERRCODE: SC_WARN_FLOWBIT(306)] - flowbit 'RTMP.sysMemCall' is checked but not set. Checked in 22067 and 0 other sigs

[PaulWen]

The entire system log can be unloaded by clicking on the link "Save all events as ..." so it is more convenient. Information for those who still don't know how to save.