I am quite familiar with firewalls having been one of the original Smoothwall users in the late 90’s with version 1. I used SmoothWall for years until migrating to OpnSense about five years ago. OpnSense has become increasingly complex and the web UI is slow. So I thought it was time to give something else a try with IPFire in a VM. It all seems very familiar, however I’m finding the logs very difficult for troubleshooting. Is there no way, for example, to filter the logs by IP address and whether or not it’s allowed or blocked? This business of first, old, and newer, last is rather confusing. Is there an add-on that provides a more user friendly interface to the logs? Or can I just view them via sftp. I looked but couldnt find any ?
Thank you for the quick reply that makes life a little better. I have set to high however cant see allowed incoming. Is there no way of showing successful incoming on the red which is passed through to orange/green. I’m trying to troubleshoot various virtual machines with archived copies of websites. The problems probably lie with the VM/networking but I would like to confirm that the firewall is passing the traffic to the relevant interface OK.
Then you can find the main IPFire logs in
IPFire system, firewall, ipblocklist /var/log/messages
Squid /var/log/squid/access.log
URL Filter /var/log/squidGuard/squidGuard.log
Suricata /var/log/suricata/fast.log
