External scripts with PF.
Peter Maxwell
peter at allicient.co.uk
Mon Dec 21 14:57:59 UTC 2009
2009/12/21 Tom Uffner <tom at uffner.com>:
> Gaurav Ghimire wrote:
>>
>> Are there any possibilities that I could run a script (bash, perl) when
>> any rule is matched.
>
> make sure the rule you want to trigger your script includes "log".
>
> have your script tail pflog, and watch for your trigger rule before
> performing its action.
Erm, not to sound completely ignorant but I'm assuming that implies he
has to write a perl script to parse binary output? He can't pipe it
though tcpdump as that would be a seriously bad idea.
More information about the freebsd-pf
mailing list