My router sends out multicast packets in regular intervals that are blocked by UFW's standard policies. These events are harmless but spam my syslogs
and ufwlogs
. I can't change the router's behaviour as that would require installing a modified firmware and thus void the warranty.
So my question is: Is there any way I can prevent UFW from logging this particular event without changing the blocking policies? And, as a possible follow-up: If I can't define a custom logging policy, would allowing this incoming traffic pose a possible security risk?
Best Answer
Base on this answer from ServerFault,
All you have to do is create a UFW deny rule to match those multicast packets.