Email Alert based on Firewall Rule

Although I believe it is not possible I was wondering if it was possible to trigger an email alert if a Firewall Rule was triggered. Example, I am configuring a Firewall for use inside the network in front of our servers and I want to know when an RDP attempt happens. The RDP attempt would hit a block rule and I want to be notified if that happens. I know Watchguard has that option but I can’t seem to find a away to make Pfsense do it.

Not a feature that I am aware of in pfsense. The way I would to do it is by setting up an external logging server and create a trigger based on that.

2 Likes

I’m a big believer in centralized logging for all things security. Most solutions will let you create monitoring of events that are correlated.