diff --git a/11-pfsense.conf b/11-pfsense.conf
index 658c398d6d30c6b36bdce64085eb0c4628e87e57..9f2ae40b3a10e46f70d12230d98983c764ba7ac1 100644
--- a/11-pfsense.conf
+++ b/11-pfsense.conf
@@ -45,8 +45,8 @@ if [prog] =~ /^filterlog$/ {
     grok {
       patterns_dir => "/etc/logstash/conf.d/patterns"
       match => [ "message", "%{PFSENSE_LOG_DATA}%{PFSENSE_IP_SPECIFIC_DATA}%{PFSENSE_IP_DATA}%{PFSENSE_PROTOCOL_DATA}",
-                 "message", "%{PFSENSE_LOG_DATA}%{PFSENSE_IPv4_SPECIFIC_DATA_ECN}%{PFSENSE_IP_DATA}%{PFSENSE_PROTOCOL_DATA}",
-                 "message", "%{PFSENSE_LOG_DATA}%{PFSENSE_IPv6_SPECIFIC_DATA}"]
+                 "message", "%{PFSENSE_LOG_DATA}%{PFSENSE_IPv4_SPECIFIC_DATA}%{PFSENSE_IP_DATA}%{PFSENSE_PROTOCOL_DATA}",
+                 "message", "%{PFSENSE_LOG_DATA}%{PFSENSE_IPv6_SPECIFIC_DATA}%{PFSENSE_IP_DATA}%{PFSENSE_PROTOCOL_DATA}"]
     }
     mutate {
       lowercase => [ 'proto' ]