4. PfBlockerNG trying to do too much?

PfBlockerNG trying to do too much?

  • LAYER 8 Global Moderator

    So while BBcan177 you have done some amazing stuff with this package..  It came up in another thread that maybe your trying to throw everything even the kitchensink into it.  dnsbl, tld, etc.  There are threads with version 2.0 and 2.1 and then with TLD, etc.

    While I would love just to have the feature set of your geoip stuff into aliases, I personally do not want or need all the other features you have thrown in.

    the ability to create my own list with picking and choosing which countries - kind of like the top 20 but maybe I want countries that are not spammers or in the top 20 in this list and from different regions of the world, etc..  Maybe there already is that option?  If so I did not see it, maybe because of all the other features.

    Curious would anyone else like to see slimmed down version of pfblocker?  I really don't want it creating auto firewall rules for me, no offense at your coding stills or anything.  I just do not like the idea of auto rules in any sense of the word.  But I do love the ability to easy pick IP blocks of specific countries to use in an alias.. You made that brain dead easy - would love to see package that does just that..

    An easy package for alias management of different list sources, sure ad servers could be in there, etc. your package feature of using custom lists is great.  This is the part I would like to see broken out on its own, I don't want to run a server providing images, etc.  I just want leverage the great work you have done with the alias and geoip and possible other lists, etc.

    If there was enough call for this, would you be willing to create I guess sub systems of the overall package that could be used on their own without having to install the whole kitchensink, etc.

    0
  • K

    I only use the DNSBL features with custom Feeds and EasyList. No need for the other bells and whistles included within DNSBL such as Alexa or TLD but that's not to say someone else doesn't! :)

    As far as automatic rule creation goes it personally doesn't bother me however it might be an issue with complicated setups? On the other hand, requiring a separate web server to serve up 1x1px images is something I don't enjoy. Just forward blocked requests to 0.0.0.0?

    I in no way want to tell the author how to create.
    Keep up the fantastic work,
    bows

    0

  • @kklouzal:

    On the other hand, requiring a separate web server to serve up 1x1px images is something I don't enjoy. Just forward blocked requests to 0.0.0.0?

    DNSBL web server also logs the access for the Alerts tab.

    0
  • M

    @johnpoz:

    Curious would anyone else like to see slimmed down version of pfblocker?

    I really don't want it creating auto firewall rules for me, no offense at your coding stills or anything.  I just do not like the idea of auto rules in any sense of the word.  But I do love the ability to easy pick IP blocks of specific countries to use in an alias.. You made that brain dead easy - would love to see package that does just that..

    To answer: no. I think BB is, to put it in popular sitcom-TV terms: ""like" OMG".

    Because BB probably (I haven't asked, so just guessing) has a Blueprint of '"The Ultimate Firewall Blocking Tool Set", and in such an ultimate tool set you want as many different tools.

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy