Our DoS friends are of course back.. still working with the provider to get things in place on their end..
OpnSense interfaces used to throw errors.. latest versions they have not been.. (which is great)
in /var/log/gateways/ and Systems > Gateway > Log Files
is basically the same information but parsed differently for the UI..
is Monit the only way to get system/service alerts?
Screenshot attached.. not sure why 50k pps would be such a thing.. the box is certainly responsive and not breaking a sweat..
https://blog.cloudflare.com/ddos-threat-report-2023-q4
( DNS floods and amplification attacks )
12:10:36 -> 12:10:41 is about 11MB of txt uncompressed..
awk '{print $3}' ddos-dns-flood | sort -u | wc -l
64754
anyway.. is the Monit subsystem the best/only way to get such emails?
Thank you in advance..