Optimizing pfBlockerng configuration
-
Hi everybody,
First of all, I would like to thanks BBCan177 for this work.
It's a pleasure to have some advance features to block traffic (incoming/outgoing) like commercial solutions I see in my job (Palo Alto, bluecoat, fortinet, etc…)I open this topic in order to optimize my pfBlockerng configuration.
I would like to have somes suggestions about for example in which group it's better to put some URL.
In IPv4 list, I create four groups : critical, high, medium, low.
In custom DNS feeds, I create four groups too: Adverts, Malicious, DGA and Hphost_partial.
In attached files, it's my custom IPv4 blocking lists, easy list configuration and feeds for DNSBL.I used following links to set up my configuration:
https://www.doyler.net/security-not-included/pfsense-dnsbl
https://laskowski-tech.com/2017/11/28/dnsbl-on-pfsense-tutorial/
https://forum.it-monkey.net/index.php?topic=22.0
https://vorkbaard.nl/protect-your-network-with-domain-filtering-on-pfsense-2-4-and-pfblockerng/
http://supratim-sanyal.blogspot.fr/2017/04/pfsense-pfblockerng-ultimate-list-of-ip.html
https://forum.pfsense.org/index.php?topic=102470.msg573165#msg573165
https://forum.pfsense.org/index.php?topic=125911.0
https://forum.pfsense.org/index.php?topic=86212.600In advance, many thanks for your reply.
Mikaël ANDRE
pfblockerng_dnsbl_custom_feeds.txt
pfblockerng_dnsbl_easylist.txt
pfblockerng_ipv4list.txt