Packet Filter (PF) firewall logging

security firewall

Packet filter doesn't log on any file. It does log on a network interface named pflog0 (a special device in Unix-lang), see

man pf.conf

You turn on this interface with:

/usr/bin/sudo ifconfig pflog0 create

You suppress it with:

/usr/bin/sudo ifconfig pflog0 destroy

You can follow what does packet filter logs on this interface with tcpdump or wireshark.

Ex. :

/usr/bin/sudo tcpdump -i pflog0

If you want to go any further with PF and without writing your own configuration files, I highly recommand to test Murus.

Related

iTunes 10.7 on Catalina
Mid-2007 MacBook (MacBook2,1) - Software Restore disks
Why does macOS kept auto correcting z to s?
I installed 2 macOS on APFS. the problem is the macOS-1 relate to the second partition files [duplicate]
How do I restore the audio balance to default?
Mac alternative for Subtitle Edit? [duplicate]
High Sierra partition on Macbook pro 2020
Is there a way to force iphone 5 to 2.4ghz?
What is the fastest external storage supported on Intel 2020 27" iMac?
How to update macOS to latest release of current version?
Browser web page gets sync'd across different macBooks
Crooked Apple iMac M1 Display