Suggestion: PF IP Tables
-
Hey everyone,
I know PF has support for IP Tables which allow you to easily extend rules to LOTS of IPs with much efficiency. Could this be added into the next release/upgrade? I find it would be very nice to build a table of all APNIC ips and block access to ssh with one rule and this associated table. Just a thought, let me what you guys think. -
pfsense calls this aliases
make a alias called sshblock
and fill it with ip's to blocknow make a rule that blocks sshblock on port ssh
-
Thanks alot, but how do you specify the source ip's as being "sshblock" when making a rule?
-
set the source to "single host or alias" and then type sshblock, :)
thanks again.