You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I switched to opnsense at my company. I am using SentiLOG(SiberSAN) as remote log server. SiberSAN company reported missing logs. When I examined in detail in the tests we conducted with SiberSAN company, I saw that opnsense was missing logs in the filter log files.
To Reproduce
To fully understand the issue, I set up a test environment like this:
Could be different things (firewall rules, states not being closed properly, log exhaustion), but likely not really community support. Our forum (https://forum.opnsense.org) might be a better place to discuss use-cases and implementation issues.
Important notices
Before you add a new report, we ask you kindly to acknowledge the following:
Describe the bug
I switched to opnsense at my company. I am using SentiLOG(SiberSAN) as remote log server. SiberSAN company reported missing logs. When I examined in detail in the tests we conducted with SiberSAN company, I saw that opnsense was missing logs in the filter log files.
To Reproduce
To fully understand the issue, I set up a test environment like this:
I wrote a script file on our Debian server:
now=$(date)
curl=$(curl -s -o /dev/null -w "%{http_code}" -k https://10.*.*9.1)
echo "$now - Firewall gui curl http response code: $curl" >> /root/log.ae
I have configured this script file to run every minute with crontab.
After a while, I compared this /root/log.ae file with OPNsense's /var/log/filter/latest.log file and saw that there was a log loss in OPNsense.
We encountered the same problem in external tests by the SiberSAN (SentiLOG) company.
Expected behavior
There should be no log loss.
Describe alternatives you considered
No.
Screenshots
Relevant log files
https://aerkaya.com/log/log.ae
https://aerkaya.com/log/opnsenselog.txt
Additional context
Environment
Software version used and hardware type if relevant, e.g.:
OPNsense 22.7.7.6-amd64
FreeBSD 13.1-RELEASE-p2
OpenSSL 1.1.1q 5 Jul 2022
32 Virtual Core
64GB Virtual Memory
Host Server: Intel(R) Xeon(R) Gold 6348 CPU @ 2.60GHz
The text was updated successfully, but these errors were encountered: