pfBlockerNG nightmare
-
Hello,
I setup pfBlockerNG according to the link below. It is supposed to do geo location blocking. I set it up and since then I have had a whole bunch of issues with my network and IOT network. I keep unblocking stuff on the reports section and this works for about 1 day. Then things start getting blocked again. I have added the entire *.domain to the the whitelist and nothing is happening. Is there an easier way to allow entire domains?
-
Just to be clear, I am not saying pfBlockerNG is bad, I am saying that I dont know how to use it and I am having a hard whitelisting my legit traffic.
-
How are you using the geo blocking? It sounds like you are using geo blocking outbound traffic.
I would think that geo blocking is used more on inbound traffic rules. For example you run a web server and you want to block traffic from China. Or you have VPN setup but only want to allow traffic from the US or whatever country you are in.
The geo blocking works on IP addresses. But you are trying to whitelisting DNS names. A DNS query for www.domain.com can return multiple different IPs.
I would instead use the DNSBL feature of pfBlocker for outbound traffic.
