How to detect OS and apply rules?

periko · Sep 20, 2013, 3:02 PM

Hi.

Guys, exist a way to identify a OS device automatically?

I mean, nmap can help us, by u have to run some scripts, I want to know that once a device get connected by our DHCP, pfsense detect the OS and latter run some batch that could kick the device from the network if the OS is from some X company?

Just wondering?

jimp · Sep 23, 2013, 5:22 PM

There is OS detection in firewall rules. It isn't perfect, but it can be reasonably accurate.

Add a block rule, pick the OS you want to block (if it's there), and if it detects them, it will block them.