Event on block
-
Can pfsense trigger a script or similar on a block event?
Say i want to block all outbound traffic. Anything that tries to get out gets blocked. Then i want to return, "who got blocked and trying to access what" (ie. Mac address & URL/IP:port)
-
Anyone have a thought on this?
-
I am not aware of any such functionality built-in. It's FreeBSD so you could always hack something together.
Perhaps you could setup a syslog server, and then trigger an alert of some type when a specific event rolls in.
-
Not with PF at least since PF has no hooks for triggering any kind of events on rule match. Maybe IPFW has something like that but I'm not too familiar with it.
-
@KOM:
I am not aware of any such functionality built-in. It's FreeBSD so you could always hack something together.
Perhaps you could setup a syslog server, and then trigger an alert of some type when a specific event rolls in.
Thanks for the responses.
For this to work smoothly it would have to be a hook of some sort. I did consider that though.
