Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Country Block

    Scheduled Pinned Locked Moved pfSense Packages
    691 Posts 79 Posters 763.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      g4m3c4ck
      last edited by

      Wow Tom exactly what pfsense needs!

      1 Reply Last reply Reply Quote 0
      • K
        killervette
        last edited by

        Will there be a way to only ALLOW certain countries and deny all others?

        1 Reply Last reply Reply Quote 0
        • T
          tommyboy180
          last edited by

          @killervette:

          Will there be a way to only ALLOW certain countries and deny all others?

          I will add a 'check all box' that way you can check all countries and remove the ones you want to allow.

          -Tom Schaefer
          SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

          Please support pfBlocker | File Browser | Strikeback

          1 Reply Last reply Reply Quote 0
          • K
            killervette
            last edited by

            great!  any eta on a release?

            1 Reply Last reply Reply Quote 0
            • T
              tommyboy180
              last edited by

              Soon. (Less than 2 days)

              I have a stable working version that I am testing now.

              -Tom Schaefer
              SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

              Please support pfBlocker | File Browser | Strikeback

              1 Reply Last reply Reply Quote 0
              • M
                mastablastaz
                last edited by

                great package idea!

                1 Reply Last reply Reply Quote 0
                • S
                  Supermule Banned
                  last edited by

                  Has the package been made available for PFsense users via the webgui for install??

                  1 Reply Last reply Reply Quote 0
                  • S
                    simby
                    last edited by

                    an info, for pfsense 2.0? when can we DL?

                    1 Reply Last reply Reply Quote 0
                    • K
                      killervette
                      last edited by

                      will this run on 2.0 beta?  can i block all countries except the US without running into performance/memory issues running an ALIX board?

                      1 Reply Last reply Reply Quote 0
                      • S
                        Supermule Banned
                        last edited by

                        Forget I said anything….. ::) :D Mixed up the DNS Blacklist package with the Countryblock package.......

                        @killervette:

                        will this run on 2.0 beta?  can i block all countries except the US without running into performance/memory issues running an ALIX board?

                        1 Reply Last reply Reply Quote 0
                        • K
                          killervette
                          last edited by

                          @Supermule:

                          Use the whitelist feature instead ;)

                          @killervette:

                          will this run on 2.0 beta?  can i block all countries except the US without running into performance/memory issues running an ALIX board?

                          Im new with pfsense.  Is whitelist a feature in country block? I have not installed it yet since I am on 2.0 beta and wasnt sure if it will work.

                          1 Reply Last reply Reply Quote 0
                          • T
                            tommyboy180
                            last edited by

                            @killervette:

                            will this run on 2.0 beta?  can i block all countries except the US without running into performance/memory issues running an ALIX board?

                            If you are running embedded you may; by that I mean I don't test on embedded if that is what you run. As far as ALIX goes you should have almost 0 performance interference from this package.

                            This will run on 2.0, 32bit and 64bit. Hopefully a package commit will be completed here soon.

                            -Tom Schaefer
                            SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

                            Please support pfBlocker | File Browser | Strikeback

                            1 Reply Last reply Reply Quote 0
                            • K
                              killervette
                              last edited by

                              So a new guy question, where do i go to install it.  I dont see it in my 1.2.3 package list.

                              1 Reply Last reply Reply Quote 0
                              • T
                                tommyboy180
                                last edited by

                                Countryblock is now a package!

                                -Tom Schaefer
                                SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

                                Please support pfBlocker | File Browser | Strikeback

                                1 Reply Last reply Reply Quote 0
                                • A
                                  Alan87i
                                  last edited by

                                  running V123 don't see it in the list.
                                  I have lusca cache installed Is that Why Maybe?

                                  1 Reply Last reply Reply Quote 0
                                  • S
                                    Supermule Banned
                                    last edited by

                                    I see it in the list…..running 1.2.3. Is there a way to make it keep running even if states and rules change??? Something like a Fire and Forget missile??? :D

                                    That would be good.....:)

                                    1 Reply Last reply Reply Quote 0
                                    • T
                                      tommyboy180
                                      last edited by

                                      When a firewall rule change is made, /tmp/rules.debug is re-generated. The problem is that /tmp/rules.debug isn't written to, its generated. To overcome this my two firewall packages inject the tables and rules into the file and then apply without regenerating.

                                      If I were to make it so you can fire and forget then I would have to make significant pfsense system changes which would do more harm then good, especially if something were to go wrong.

                                      What's nice is that it runs on start-up if enabled. With that being said, you can create a cron job to execute the package every hour, or five mins. This would be an easy and safe way of ensuring its running all the time.

                                      -Tom Schaefer
                                      SuperMicro 1U 2X Intel pro/1000 Dual Core Intel 2.2 Ghz - 2 Gig RAM

                                      Please support pfBlocker | File Browser | Strikeback

                                      1 Reply Last reply Reply Quote 0
                                      • D
                                        darklogic
                                        last edited by

                                        This package sounds sweet!!! Do you have maybe a writeup on creating the cron job to start the package every hour?

                                        1 Reply Last reply Reply Quote 0
                                        • S
                                          Supermule Banned
                                          last edited by

                                          Thx ever so much for this Tom!!! :)

                                          @tommyboy180:

                                          When a firewall rule change is made, /tmp/rules.debug is re-generated. The problem is that /tmp/rules.debug isn't written to, its generated. To overcome this my two firewall packages inject the tables and rules into the file and then apply without regenerating.

                                          If I were to make it so you can fire and forget then I would have to make significant pfsense system changes which would do more harm then good, especially if something were to go wrong.

                                          What's nice is that it runs on start-up if enabled. With that being said, you can create a cron job to execute the package every hour, or five mins. This would be an easy and safe way of ensuring its running all the time.

                                          1 Reply Last reply Reply Quote 0
                                          • C
                                            csnf
                                            last edited by

                                            Got the package installed on my pfSense 1.2.3-RELEASE on nanobsd.  I've attempted to start this up and I get file system errors trying to write.  What commands do I need to make in order for your package to be able to write its changes?

                                            Is there not a way to write in a RW filesystem to commit changes then turn it back to Read only?

                                            BTW, this looks awesome…hope I can use it!

                                            1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post
                                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.