• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Interactive rules

Scheduled Pinned Locked Moved Firewalling
6 Posts 4 Posters 3.3k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • K
    kosmocronos
    last edited by Mar 23, 2006, 4:54 PM

    Hello,
    are there any ways to built  an "interactive rules"?. I would like to have a rules that , when a specific (or a range) wan  Ip is trying  to connect to the server of my internal lan, permit me to block or permit (as I want in that moment) the access request.
    Many thanks to all for the help, and excuse me my bad english.

    Regards,
    Claudio

    1 Reply Last reply Reply Quote 0
    • S
      sullrich
      last edited by Mar 23, 2006, 5:09 PM

      Sorry,  not sure what you are asking…

      1 Reply Last reply Reply Quote 0
      • H
        hoba
        last edited by Mar 23, 2006, 6:10 PM

        I think I understand what you mean, however that won't work and you probably would have a lot of questions to handle with todays internettraffic hitting your ports. Check your firewall logs for connection attempts at status>system logs, tab firewall. Not doable nor useful imo.

        1 Reply Last reply Reply Quote 0
        • K
          kosmocronos
          last edited by Mar 24, 2006, 7:51 AM

          Many thanks to all for the replies,
          That I would want is this. I have four  remote  clients that acess my internal lan server (WIN 2003) by terminal server. The rules in the firewall permit traffic of these  four Ip addresses. I would like to receive a message on my pc when one of this ip is connetting to my internal lan server and decide in that moment what to do : block or permit.

          I hope in your help,
          regards,
          Claudio

          1 Reply Last reply Reply Quote 0
          • L
            Leoandru
            last edited by Mar 24, 2006, 12:15 PM

            The best solution at the moment is to install a personal firewall on the your server, one that prompts you on incoming connection attempts. Then open a terminal window to your server from your pc.

            1 Reply Last reply Reply Quote 0
            • H
              hoba
              last edited by Mar 24, 2006, 2:13 PM

              Other solution:

              • enable remote syslog server at the pfsense and create a block rule with "log" enabled
              • disable logging of default deny rule
              • install syslog deamon at your client that sends you a mail on receiving this alert or plays a beep or a popup or whatever (depends on the tool you use)
              • create a rule in the webgui for this connection to pass above the logging rule and disable it (you can quickenable/disable this rule by clicking the small pass icon in front of the rule and hitting apply)

              It's not like a popup and only clicking an allow or deny button but might work depending on how often you need it.

              1 Reply Last reply Reply Quote 0
              6 out of 6
              • First post
                6/6
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                This community forum collects and processes your personal information.
                consent.not_received