Simple tool to help with creating firewall rule aliases based on Name/ASN
-
Not sure if this will be as useful to others as it was me, but I created a small website to pull all netblocks/prefixes of a service into a text file URL. I've used to this to block social networking with schedule based firewall rules, and also bypass transparent proxy services on services that sometimes break even if you can't cache them (cough netflix Apple TV traffic cough).
You can check it out at http://asn.blawk.net
It's simple to use, you just tack on the ASN number:
Netflix: http://asn.blawk.net/2906
Facebook: http://asn.blawk.net/32934
Level3: http://asn.blawk.net/3356Let me know if anyone has any issues or feature requests.
-
Hurricane Electric also has this feature. What is the source of the IPs that you are using? You can also use lists like this in pfBlockerNG to collect these IPs on a frequency and create the Firewall Rules accordingly.
Here is one example:
http://bgp.he.net/search?search%5Bsearch%5D=facebook&commit=Search -
Hurricane Electric also has this feature. What is the source of the IPs that you are using? You can also use lists like this in pfBlockerNG to collect these IPs on a frequency and create the Firewall Rules accordingly.
Here is one example:
http://bgp.he.net/search?search%5Bsearch%5D=facebook&commit=SearchIt uses the routeviews.org data.
And yeah, HE's setup is what I normally use, but I wanted a pure text file output of the data.