Feature request - System Aliases
-
@paoloposo I really was wondering what is this feature and now I know better.
Still, it will be nice if Netgate will have ready objects for user just to use, out of the box, without them needing to go look for these URL sources, it will save lots of time for them. -
There are a bunch or predefined feeds in pfBlocker but not for this purpose. That might be a feature request for the package.
-
@Wolfgangthegreat said in Feature request - System Aliases:
https://www.cloudflare.com/ips-v4/#
Just because this came up the other day, that list hasn't changed very often
Apr 8, 2021:
104.16.0.0/12 removed from ips-v4
104.16.0.0/13 added to ips-v4
104.24.0.0/14 added to ips-v4Oct 1, 2020:
IPS were confirmed, no changesJun 7, 2017:
199.27.128.0/21 removed from ips-v4 -
@johnpoz The change interval is not the point, the idea is to have an always up-to-date and update fixed object that will always include the current correct data, whenever it is changed at the source. Peace of mind is the goal... :)
-
@Wolfgangthegreat yeah I hear ya - and in that thread I went over exactly how to update the alias once a day if you want..
-
@Wolfgangthegreat I understand why you would want this feature, but I don't think that it's in the scope of the pfSense core functionality. This would be more suited for a package in my opinion.
-
@paoloposo the pfblocker alias system is for sure a step above alias built in feature.. But this has been part of pfsense since like the get go I believe. I really have never seen a firewall that did not allow you to create objects.. Be it single port or IP, or groups of them, etc.
-
@johnpoz said in Feature request - System Aliases:
@paoloposo the pfblocker alias system is for sure a step above alias built in feature.. But this has been part of pfsense since like the get go I believe. I really have never seen a firewall that did not allow you to create objects.. Be it single port or IP, or groups of them, etc.
I'm afraid I'm not sure how your reply relates to my post
-
@paoloposo your saying aliases shouldn't be a part of a firewall core features.. Every firewall I have worked on has this feature, as pfsense does.. So yeah it is part of the "core" features..
BTW - here is the post from 3 days ago where I went over exactly what the OP was asking about
-
@johnpoz Oh, I think you misunderstand. Aliases should absolutely be part of pfSense. What I mean is that I don't see Netgate maintaining a list of pre-configured aliases for common service providers like Cloudflare, AWS, Google, etc. that comes pre-installed with pfSense, which is what OP was asking about.
-
@paoloposo oh my bad - yeah read that the wrong way. Yeah I don't see pfsense maintaining lists of stuff you might want in an alias..
