Using blacklists for certain IP groups, but not all

  • I recently moved over to pfSense and am running the latest version along with version 2.1.1_10 of pfBlockerNG.  So far, I have things working as expected, except I can't figure out how to get certain blacklists to apply to only a handful of IP addresses.

    I have a firewall alias defined: restricted_machines.  There's one DNSBL that I'd like to apply to only the IPs in that alias.  Then, I have  another 3-4 DNSBLs that I'd like to apply to all users behind the firewall, including those in that alias.

    I haven't had much luck with google searching since I don't really know the right terms to search for.  So, would appreciate any pointers or links to tutorials.


  • There can only be 1 DNSBL running per pfsense box.
    So I you have many pfsense boxes, you can have many DNSBL setup.

    Devices can then point to different DNS Server on different pfsense boxes.