Notification when a firewall rule is used



  • Hi,
    I'd like to be able to get an email notification when a specific block rule is activated.  Is there a way to do this?



  • Not on pfSense directly.  It's possible you could configure your own syslog server and build something based on that.


  • Rebel Alliance Global Moderator

    Wow that is asking for just flood of your mailbox..

    But sure you could send your firewall log to syslog and then setup stream to send you email on hits.  This will also allow for rules so you don't get 1000's emails in 20 minutes when something comes banging on your door.



  • Thx for the feedback.  BTW - it isn't for WAN activity, it is for LAN activity.



  • @DennisT:

    Thx for the feedback.  BTW - it isn't for WAN activity, it is for LAN activity.

    Just the same.  I would first extract the msg to another file so I can see at the end of the day how much of these hits I get before configuring the email, and ideally a way to "stop it" (emailing) remotely like throwing a graphite rod to the reactor. :)