Suggestion - use rule label not just number

[opnsense-user123]

Hello:

When perusing the firewall logs I like to know (in certain cases) what rule caused a pass or a block action, so I found the setting where I could choose to have that displayed as a second line (the other option was in a column). Now when I go to the firewall log, normal view, I see the pass or block line as usual and a new line just below that which says something like:

Code: [Select]

@9
and that's it. A whole line dedicated to that rule number. But how do I know what that rule number refers to? I googled up a way, login to opnsense on the command line, switch to root, and enter the command:

Code: [Select]

pfctl -vvsr
then scroll through and find the number, or grep for it I suppose. You might find a line like:

Code: [Select]

@79 pass in quick on igb1 inet from (igb1:network:1) to any flags S/SA keep state label "USER_RULE: Default allow LAN to any rule"
In my opinion, this is not the best way for a system which does provide a GUI like opnsense!

I suggest you use the large amount of space available on that line after the @(rule-number) to parse the LABEL and show it to the user there in GUI.

Is this an appropriate place to suggest / request this improvement, so should I also post elsewhere? Thanks.

[fabian]

feature requests are preferred on GitHub. In your case it is the core repository.

[franco]

I think it was posted and answered here:

https://github.com/opnsense/core/issues/2034