Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
"pflog0: permanently promiscuous mode enabled", safe/normal?
« previous
next »
Print
Pages: [
1
]
Author
Topic: "pflog0: permanently promiscuous mode enabled", safe/normal? (Read 1689 times)
NoncarbonatedClack
Newbie
Posts: 10
Karma: 0
"pflog0: permanently promiscuous mode enabled", safe/normal?
«
on:
July 27, 2023, 08:58:01 am »
I'm coming back to opnsense after not being able to run it for a while, I noticed this entry during boot that I hadn't seen before:
Configuring firewall.... pflog0: permanently promiscuous mode enabled
done.
Checking via cli, and knowing that my WAN interface is VMX0, if I run configctl interface show bpf, I see:
"interface-name":"pflog0","promiscuous":true.
I could see promiscuous mode being a requirement on the inside interface, for VLANs/IDS/IPS or something, but it appears to be on the outside interface only.
I'm just wondering if that's normal, is promiscuous mode a requirement of the pf? Want to make sure before I put this in prod.
Running OPNsense 23.1.11-amd64 in a VM.
Thanks!
Logged
Current
NUC 11 Pro NUC11TNHi50L
i5-1135G7
32 GB DDR4 3200Mhz CL16
1 TB Samsung 970 Evo Plus
2x i225-LM NICs
Running as a VM with 2 vCPU, 2 GB RAM, and on ESXi v8.0
Retired:
HP ML310e G8 v2
Xeon E3-1220 V2
16 GBDDR3 ECC
Intel i350-T4
franco
Administrator
Hero Member
Posts: 17665
Karma: 1611
Re: "pflog0: permanently promiscuous mode enabled", safe/normal?
«
Reply #1 on:
July 27, 2023, 09:33:13 am »
Hi,
pflog is the device where the packet filter sends packages that have been flagged as log in the matching firewall rule. But since the device has no address the promiscuous mode required to read all the packets added there.
We previously only used promiscuous mode in the filterlog utility having to set it each time it was opened but nowadays we set "permanent" promiscuous mode on the device which stops the kernel from producing the disabled/enabled messages when the rules are being reloaded.
Cheers,
Franco
Logged
NoncarbonatedClack
Newbie
Posts: 10
Karma: 0
Re: "pflog0: permanently promiscuous mode enabled", safe/normal?
«
Reply #2 on:
July 28, 2023, 06:07:10 am »
Hi Franco,
Thank you for clearing that up! I appreciate it.
Opnsense is in prod on my home network now again.
Logged
Current
NUC 11 Pro NUC11TNHi50L
i5-1135G7
32 GB DDR4 3200Mhz CL16
1 TB Samsung 970 Evo Plus
2x i225-LM NICs
Running as a VM with 2 vCPU, 2 GB RAM, and on ESXi v8.0
Retired:
HP ML310e G8 v2
Xeon E3-1220 V2
16 GBDDR3 ECC
Intel i350-T4
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
"pflog0: permanently promiscuous mode enabled", safe/normal?