Thanks for posting this and all the other work you do.
I'm having a problem getting it working so wanted to check I am doing it correctly. What I am trying to do is block all inbound traffic (I have some open ports) apart from the UK and a few specific IP addresses (lets encrypt renewal etc).
This is how I set it up using pfBlockerNG-devel and your post.
I created the GeoIP alias list for the UK with List Action Alias Native.
I then created a second alias with List Action Alias Native that has the first list plus whois settings for the other IPs I want to allow access.
I then created a firewall rule to block all IPs unless they are in the combined alias list.
The problen is that if I use the combined list it does not allow UK IPs to access the firewall. If I just use the UK IP alias then it works. I have tried a few things but can not get it working so I'm using the rule with the UK only list for now.
Any tips you have would be very useful as I am not sure what to try next.
[Guide] How to allow/block multi pfBlockerNG GeoIP lists in Pfsense
in General
Posted
Hello Binhex,
Thanks for posting this and all the other work you do.
I'm having a problem getting it working so wanted to check I am doing it correctly. What I am trying to do is block all inbound traffic (I have some open ports) apart from the UK and a few specific IP addresses (lets encrypt renewal etc).
This is how I set it up using pfBlockerNG-devel and your post.
The problen is that if I use the combined list it does not allow UK IPs to access the firewall. If I just use the UK IP alias then it works. I have tried a few things but can not get it working so I'm using the rule with the UK only list for now.
Any tips you have would be very useful as I am not sure what to try next.
Regards,
Chris