Advanced GUI application for analyzing OPNsense firewall logs with filtering capabilities.
Load log files exported from OPNsense → Firewall → Log Files → Plain View for advanced filtering and analysis.
- Modern GUI: Clean interface with sortable columns and pagination
- Large file support: Handles multi-GB log files efficiently
- Advanced filtering: Logical operators (AND/OR/NOT), regex, and custom filters
- Interface mapping: Automatic renaming from physical (vtnet0) to logical names (LAN)
- Multi-core processing: Optimized parallel filtering for better performance
- SSH integration: Direct rule label extraction from OPNsense
- Export capabilities: Save filtered results to JSON/CSV
- Download
OPNsense_Log_Viewer.exefrom the release - Double-click to run - no installation required
# Install dependencies
pip install -r requirements.txt
# Run application
python main_app.py# Windows
build_complete.bat
# Or manually
python build_exe.py- Load logs: File → Open log file
- Load config (optional): File → Open XML config for interface mapping
- Apply filters: Use quick filters or advanced filtering
- Analyze: View results in logs tab, details in details tab
- Export: File → Export results
OPNsense filterlog formats:
- RFC3164 with
filterlog[pid]: - RFC5424 structured logs
- Custom CSV format
2025-09-08T20:31:34 filterlog 30,,,cd4617bd680a0a5aa4c5694f2eefa56e,vtnet0,match,pass,out,4,0x0,,62,35294,0,DF,6,tcp,60,10.13.37.2,191.101.31.14,29397,29376,0,S,1162654291,,64240,,mss;sackOK;TS;nop;wscale
For automatic interface renaming, provide XML configuration:
<interfaces>
<lan>
<if>vtnet0</if>
<descr>LAN</descr>
</lan>
<wan>
<if>vtnet1</if>
<descr>WAN</descr>
</wan>
</interfaces>Missing interfaces: Load XML configuration file
Missing Labels: Connect with the SSH Connection
MIT License