Tool for inspecting inbound http traffic
-
Greetings all,
I am looking for a tool to inspect inbound http traffic on my pfSense 2.3 firewalls. Currently, our system is under "attack" due to some mis-configured DNS servers in China. Thus, we are getting a TON of http traffic that don't belong to us. I want to block this unwanted traffic at the firewall level instead of writing custom NGinx rules on the inside proxies. Essentially, I want to create a custom white-list of sites we own that are allowed to flow through the firewall. All other sites will be blocked by the firewall.
What package(s) do I need?