Country Block
-
Will there be a way to only ALLOW certain countries and deny all others?
-
Will there be a way to only ALLOW certain countries and deny all others?
I will add a 'check all box' that way you can check all countries and remove the ones you want to allow.
-
great! any eta on a release?
-
Soon. (Less than 2 days)
I have a stable working version that I am testing now.
-
great package idea!
-
Has the package been made available for PFsense users via the webgui for install??
-
an info, for pfsense 2.0? when can we DL?
-
will this run on 2.0 beta? can i block all countries except the US without running into performance/memory issues running an ALIX board?
-
Forget I said anything….. ::) :D Mixed up the DNS Blacklist package with the Countryblock package.......
will this run on 2.0 beta? can i block all countries except the US without running into performance/memory issues running an ALIX board?
-
Use the whitelist feature instead ;)
will this run on 2.0 beta? can i block all countries except the US without running into performance/memory issues running an ALIX board?
Im new with pfsense. Is whitelist a feature in country block? I have not installed it yet since I am on 2.0 beta and wasnt sure if it will work.
-
will this run on 2.0 beta? can i block all countries except the US without running into performance/memory issues running an ALIX board?
If you are running embedded you may; by that I mean I don't test on embedded if that is what you run. As far as ALIX goes you should have almost 0 performance interference from this package.
This will run on 2.0, 32bit and 64bit. Hopefully a package commit will be completed here soon.
-
So a new guy question, where do i go to install it. I dont see it in my 1.2.3 package list.
-
Countryblock is now a package!
-
running V123 don't see it in the list.
I have lusca cache installed Is that Why Maybe? -
I see it in the list…..running 1.2.3. Is there a way to make it keep running even if states and rules change??? Something like a Fire and Forget missile??? :D
That would be good.....:)
-
When a firewall rule change is made, /tmp/rules.debug is re-generated. The problem is that /tmp/rules.debug isn't written to, its generated. To overcome this my two firewall packages inject the tables and rules into the file and then apply without regenerating.
If I were to make it so you can fire and forget then I would have to make significant pfsense system changes which would do more harm then good, especially if something were to go wrong.
What's nice is that it runs on start-up if enabled. With that being said, you can create a cron job to execute the package every hour, or five mins. This would be an easy and safe way of ensuring its running all the time.
-
This package sounds sweet!!! Do you have maybe a writeup on creating the cron job to start the package every hour?
-
Thx ever so much for this Tom!!! :)
When a firewall rule change is made, /tmp/rules.debug is re-generated. The problem is that /tmp/rules.debug isn't written to, its generated. To overcome this my two firewall packages inject the tables and rules into the file and then apply without regenerating.
If I were to make it so you can fire and forget then I would have to make significant pfsense system changes which would do more harm then good, especially if something were to go wrong.
What's nice is that it runs on start-up if enabled. With that being said, you can create a cron job to execute the package every hour, or five mins. This would be an easy and safe way of ensuring its running all the time.
-
Got the package installed on my pfSense 1.2.3-RELEASE on nanobsd. I've attempted to start this up and I get file system errors trying to write. What commands do I need to make in order for your package to be able to write its changes?
Is there not a way to write in a RW filesystem to commit changes then turn it back to Read only?
BTW, this looks awesome…hope I can use it!
-
Tommy everything works great being able to block China kicks major booty. 80% attempted attacks come from there. I have a question though. What does select/unselect do?