Page MenuHomeVyOS Platform
Create Task
Maniphest T4282

show log command does not match documentation - showing firewall logs, or tailing <x> lines
Closed, InvalidPublicBUG
Actions

Description

I am currently running "VyOS 1.4-rolling-202201240317".

I am trying to run some of the commands in https://docs.vyos.io/en/latest/configuration/system/syslog.html, and hitting some odd behaviour.

For example, I am trying to show the firewall logs.

If I use "show log firewall", it says it's an incomplete command:

vyos@vyos:~$ show log firewall

  Incomplete command: show log firewall

The command completion (using tab) implies I need to add the firewall name:

vyos@vyos:~$ show log firewall
Possible completions:
  ipv6-name     Show log for a specified firewall (IPv6)
  name          Show log for a specified firewall (IPv4)

I do this, and it tells me it's an invalid command?

vyos@vyos:~$ show log firewall WAN-LAN

  Invalid command: show log firewall [WAN-LAN]

Secondly, I am trying to tail the last <x> lines - but its ays "<x>" is an invalid file:

vyos@vyos:~$ show log all | tail 100
tail: cannot open '100' for reading: No such file or directory

Running "tail" with no argument does work:

vyos@vyos:~$ show log all | tail
Mar  2 19:35:08 vyos kernel: [575591.286423] [WAN-LOCAL-default-D] IN=eth0 OUT= MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=223.64.177.54 DST=202.130.198.41 LEN=134 TOS=0x00 PREC=0x00 TTL=45 ID=19908 DF PROTO=UDP SPT=5285 DPT=18626 LEN=114
Mar  2 19:35:08 vyos kernel: [575591.744424] [WAN-LOCAL-default-D] IN=eth0 OUT= MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=37.166.184.239 DST=202.130.198.41 LEN=132 TOS=0x00 PREC=0x00 TTL=112 ID=21807 PROTO=UDP SPT=59994 DPT=18626 LEN=112
Mar  2 19:35:08 vyos kernel: [575591.943691] [WAN-LAN-default-D] IN=eth0 OUT=eth1 MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=110.174.136.128 DST=10.5.1.7 LEN=217 TOS=0x00 PREC=0x00 TTL=56 ID=54926 PROTO=UDP SPT=8211 DPT=8211 LEN=197
Mar  2 19:35:08 vyos kernel: [575591.948436] [WAN-LAN-default-D] IN=eth0 OUT=eth1 MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=110.174.136.128 DST=10.5.1.7 LEN=343 TOS=0x00 PREC=0x00 TTL=56 ID=54927 PROTO=UDP SPT=8211 DPT=8211 LEN=323
Mar  2 19:35:08 vyos kernel: [575592.191692] [WAN-LOCAL-default-D] IN=eth0 OUT= MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=82.64.116.223 DST=202.130.198.41 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=41050 DF PROTO=TCP SPT=64309 DPT=18626 WINDOW=64240 RES=0x00 SYN URGP=0
Mar  2 19:35:09 vyos kernel: [575592.717450] [WAN-LOCAL-default-D] IN=eth0 OUT= MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=77.81.139.82 DST=202.130.198.41 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=44603 DF PROTO=TCP SPT=37587 DPT=18626 WINDOW=64860 RES=0x00 SYN URGP=0
Mar  2 19:35:10 vyos kernel: [575593.761470] [WAN-LOCAL-default-D] IN=eth0 OUT= MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=77.81.139.82 DST=202.130.198.41 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=44604 DF PROTO=TCP SPT=37587 DPT=18626 WINDOW=64860 RES=0x00 SYN URGP=0
Mar  2 19:35:10 vyos kernel: [575593.774723] [WAN-LOCAL-default-D] IN=eth0 OUT= MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=92.75.85.71 DST=202.130.198.41 LEN=129 TOS=0x00 PREC=0x00 TTL=48 ID=0 DF PROTO=UDP SPT=7062 DPT=18626 LEN=109
Mar  2 19:35:10 vyos kernel: [575593.896964] [WAN-LOCAL-default-D] IN=eth0 OUT= MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=82.64.116.223 DST=202.130.198.41 LEN=132 TOS=0x00 PREC=0x00 TTL=116 ID=41051 PROTO=UDP SPT=15756 DPT=18626 LEN=112
Mar  2 19:35:10 vyos kernel: [575593.968700] [WAN-LOCAL-default-D] IN=eth0 OUT= MAC=80:a2:35:7f:de:e3:f0:4a:02:ff:e3:95:08:00 SRC=223.109.186.43 DST=202.130.198.41 LEN=132 TOS=0x00 PREC=0x00 TTL=43 ID=37931 PROTO=UDP SPT=5280 DPT=18626 LEN=112

Details

Difficulty level
Unknown (require assessment)
Version
VyOS 1.4-rolling-202201240317
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Bug (incorrect behavior)

Event Timeline

victorhooi created this task.Mar 2 2022, 7:36 PM
pasik added a subscriber: pasik.Mar 3 2022, 7:52 AM
SrividyaA claimed this task.Mar 3 2022, 8:20 AM
SrividyaA added a comment.Mar 3 2022, 10:16 AM

@victorhooi

Syntax for the executed commands are incorrect, please try with the following commands:

For ipv4 firewall rule:

vyos@vyos:~$ show log firewall name WAN-LAN

For ipv6 firewall rule:

vyos@vyos:~$ show log firewall ipv6-name WAN6-LAN6

Use "-n" for specifying number of lines:

vyos@vyos:~$ show log all | tail -n 100
n.fort closed this task as Invalid.Mar 4 2022, 3:04 PM