Date: Mon, 28 Aug 2000 10:29:04 -0500 From: "Daryl Chance" <dchance@valuedata.net> To: "FreeBSD IPFW" <freebsd-ipfw@freebsd.org> Subject: ipfw add exec(blah).... Message-ID: <005f01c01104$b382a980$0200000a@development1>
next in thread | raw e-mail | index | archive | help
Hi, Has there ever been any type of discussion about adding something to ipfw to execute a certain command if a fw rule is triggered? There could be a little use for this, but the only couple I can really think of is: a) if a deny rule is triggered you could run tcpdump for a little, the rule could possibly pass on some variables to the script (ip address:port denied) so you could pipe tcpdump through grep for the ip addie/port, watching for any other attemps. b) you could setup a script to email you or play a sound wav or some visual type of alert. Thoughts? I don't know much about the IPFW code, so I couldn't code a patch for it :). This a good idea? or could it allow for a possible security problem? Thanks, -------------------------------------------------------- | Daryl Chance | I have made this letter longer then | | Valuedata, LLC | usual because I lacked the time to | | Memphis, TN | make it shorter. -- Blaise Pascal | -------------------------------------------------------- -------------------------------------------------------- | Daryl Chance | I have made this letter longer then | | Valuedata, LLC | usual because I lacked the time to | | Memphis, TN | make it shorter. -- Blaise Pascal | -------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?005f01c01104$b382a980$0200000a>