Optimizing pfBlockerng configuration
mikael.andre last edited by
First of all, I would like to thanks BBCan177 for this work.
It's a pleasure to have some advance features to block traffic (incoming/outgoing) like commercial solutions I see in my job (Palo Alto, bluecoat, fortinet, etc…)
I open this topic in order to optimize my pfBlockerng configuration.
I would like to have somes suggestions about for example in which group it's better to put some URL.
In IPv4 list, I create four groups : critical, high, medium, low.
In custom DNS feeds, I create four groups too: Adverts, Malicious, DGA and Hphost_partial.
In attached files, it's my custom IPv4 blocking lists, easy list configuration and feeds for DNSBL.
I used following links to set up my configuration:
In advance, many thanks for your reply.