From owner-freebsd-questions@freebsd.org  Fri Jan 27 18:35:47 2017
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 00813CC0F80
 for <freebsd-questions@mailman.ysv.freebsd.org>;
 Fri, 27 Jan 2017 18:35:47 +0000 (UTC)
 (envelope-from noeldude@gmail.com)
Received: from mail-yw0-x236.google.com (mail-yw0-x236.google.com
 [IPv6:2607:f8b0:4002:c05::236])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id B29F4ED6
 for <freebsd-questions@freebsd.org>; Fri, 27 Jan 2017 18:35:46 +0000 (UTC)
 (envelope-from noeldude@gmail.com)
Received: by mail-yw0-x236.google.com with SMTP id w75so23308575ywg.1
 for <freebsd-questions@freebsd.org>; Fri, 27 Jan 2017 10:35:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=subject:to:references:from:message-id:date:user-agent:mime-version
 :in-reply-to:content-transfer-encoding;
 bh=ZrgQbMG03HnXEArV5+8hM7ZYwRGzG2yvENtU4t6vJx0=;
 b=YvSheOoDEjQwYmXKQgJeBfarE5Qgg4UcVQFov61LFqUO0CbXSZwkMi+nFYTw+mR3i8
 LiwnApz+q+9ZWS71wDNkIQclWBMzB1/h5OBrMpdPcijVF2ZZkytuShMMYhA8Ok10ysjS
 gFsfC1DFoUsslVtYVZFAvK71j/x5z6JbBjCPf0rDRGeJWkBg9LGcl/Y/VDVd82glV6kI
 BHuOxYPz23QvVSzdls3F3CIpMZwb8z5GdH2Ze1YeU+0KmJqM6GOusekJxacVbdMo07R+
 rqA5opZM+Z9atwL4Hb9WgtMIjj43nyAy5v9rcR0doIVYPURHzEMNhlpkwbIlYFP06icf
 yk1w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:subject:to:references:from:message-id:date
 :user-agent:mime-version:in-reply-to:content-transfer-encoding;
 bh=ZrgQbMG03HnXEArV5+8hM7ZYwRGzG2yvENtU4t6vJx0=;
 b=hdstJik39liKEBXvjihlHV2vq24jVX9D7II/7F8p/4Up83qpjbBEJJhXS/M9g75+c2
 TZ4OZWZBynTO5UXC69NTOaBwSO+CcBnc5I3s/HDzIiB6UkwI0FLhjGFhj7+XdIBfkF3c
 y/a2luM6vg8CAfIOyGnA82ldwGdOuh7jzkMMQgzAHq4lbqCPP6l6+oCn65LW0cXrONYA
 SsdrPcfbB2wysVFJlEwEXZ+Ne5cgWQbYF/LOmGx/NbbL+9w8yD1sBq9L7bH6DHGRfM2j
 k14VurP/GhSA8W4FKAz7YwolqkNl0vgvRzsJEiUGIkRHvy3Txy4Yrs3eKuIWdR53YiwS
 FCIQ==
X-Gm-Message-State: AIkVDXJF/yot9ZpYg8rD56wOap1/EjrL70pdKLVccm5sj6Oyv9RUPRG8oQbf97OcTUEfCg==
X-Received: by 10.13.221.203 with SMTP id g194mr6739976ywe.326.1485542145745; 
 Fri, 27 Jan 2017 10:35:45 -0800 (PST)
Received: from [192.168.170.210] ([97.67.29.226])
 by smtp.googlemail.com with ESMTPSA id w192sm2911099ywd.46.2017.01.27.10.35.44
 for <freebsd-questions@freebsd.org>
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Fri, 27 Jan 2017 10:35:45 -0800 (PST)
Subject: Re: pf log
To: freebsd-questions@freebsd.org
References: <1485539914.4837.6.camel@yandex.com>
From: Noel <noeldude@gmail.com>
Message-ID: <a0d0904b-20c1-f4d7-4497-f96934b1cf7f@gmail.com>
Date: Fri, 27 Jan 2017 12:35:44 -0600
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101
 Thunderbird/45.7.0
MIME-Version: 1.0
In-Reply-To: <1485539914.4837.6.camel@yandex.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Jan 2017 18:35:47 -0000

On 1/27/2017 11:58 AM, Stari Karp wrote:
> Hi!
>
> I am using pf firewall on FreeBSD 11.0-RELEASE (amd64). In /etc/rc.conf
> I have:
>
> pf_enable="YES"
> pflog_enable="YES"
>
> I made a new pf.conf on January 8th and in/var/log I have pflog and
> after that nothing more. The file has just "Ôò¡............t...u..."
>
> Is it normal or is something wrong, please?
>


That's normal.  The pflog is a binary log (not human readable) you
can read with tcpdump.  See the handbook for details.