Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Quad9 and DNS Resolver

    DHCP and DNS
    2
    28
    5.4k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      cburbs
      last edited by

      No VPN here just trying to tweak my Pfsense box as a starting point. Lock things down better.

      1 Reply Last reply Reply Quote 0
      • DaddyGoD
        DaddyGo
        last edited by

        @cburbs said in Quad9 and DNS Resolver:

        Also Do you have any rules under firewal/rules/wan?

        Yeeeepppp is actually the box for that.

        to your previous question: Also Do you have any rules under firewal/rules/wan?

        • I don't like to load the WAN side with rules, it's like drilling a hole in a sieve, pfSense block all unsolicited traffic on the WAN, so I have more floating rules

        Cats bury it so they can't see it!
        (You know what I mean if you have a cat)

        C 1 Reply Last reply Reply Quote 0
        • C
          cburbs @DaddyGo
          last edited by

          @DaddyGo

          I have a WAN rule called - Easy Rule: Passed from Firewall log view - says it was created by Easy Rule .

          Trying to figure out what it is -
          Protocol: IPv4 TCP
          Source: ISP IP addres
          Destination: 104.25.242.31
          Port: 80(HTTP)

          Destination IP is Carrier: cloudflare

          Confused?

          1 Reply Last reply Reply Quote 0
          • DaddyGoD
            DaddyGo
            last edited by

            @cburbs said in Quad9 and DNS Resolver:

            Easy Rule

            Yes it is, :-).
            did you add it this? with this? (https://docs.netgate.com/pfsense/en/latest/firewall/adding-rules-with-easyrule.html)

            Cats bury it so they can't see it!
            (You know what I mean if you have a cat)

            1 Reply Last reply Reply Quote 0
            • C
              cburbs
              last edited by cburbs

              It has a date from almost a year ago. Could have as I think that is when I was looking at snort but was having all sorts of issues so I disabled it all.

              So I probably don't need that rule - I won't do anything with it now but remove it later today.

              1 Reply Last reply Reply Quote 0
              • C
                cburbs
                last edited by

                Do you use squidguard on your system? That was the next thing I was going to implement.

                1 Reply Last reply Reply Quote 0
                • DaddyGoD
                  DaddyGo
                  last edited by

                  @cburbs said in Quad9 and DNS Resolver:

                  squidguard

                  I use HA proxy I think for my purposes more appropriate, Squid is problematic among MITM, so SquidGuard doesn't work for me either
                  But I strongly recommend installing Suricata/Snort and pfblockerNG-devel

                  Cats bury it so they can't see it!
                  (You know what I mean if you have a cat)

                  1 Reply Last reply Reply Quote 0
                  • DaddyGoD
                    DaddyGo
                    last edited by

                    Delete the rule for said http 80 port because it is unnecessary!
                    I didn’t investigate all the way through, but it points to a Cloudflare CDN

                    Cats bury it so they can't see it!
                    (You know what I mean if you have a cat)

                    1 Reply Last reply Reply Quote 0
                    • C
                      cburbs
                      last edited by

                      Yeah snort and pfblocker are on my list. I played with these a while back but it broke many things and haven't got back to them.

                      1 Reply Last reply Reply Quote 0
                      • DaddyGoD
                        DaddyGo
                        last edited by

                        @cburbs said in Quad9 and DNS Resolver:

                        Yeah snort and pfblocker are on my list. I played with these a while back but it broke many things and haven't got back to them.

                        Before you jumping into these IPS / IDS, DNSBL, etc. things, I highly recommend Bill Meeks (alias: bmeeks) posts Snort / ÍSuricata and BBcan177 on the topic of pfblockerng

                        Cats bury it so they can't see it!
                        (You know what I mean if you have a cat)

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post