Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pls develop this pkg for VPN proxy detection

    Scheduled Pinned Locked Moved pfSense Packages
    3 Posts 2 Posters 684 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jeromekeating
      last edited by

      Hello all, I wondered if anyone in the community would be interested in developing a package that could lookup incoming addresses using a VPN/proxy lookup service API (like iphub.info) and add a firewall rule to allow the source IP if it is a good IP address as reported by the service. So basically a firewall rule blocks incoming packets on a particular port (my game server port) and every time someone tries to connect, first the packet is dropped while the source address is looked up using the API for a service like iphub.info, and if the IP is reported as a good IP not belonging to a known VPN proxy service, then the address is added to a white list and allowed to connect. It needs to store a database of all source addresses so it doesn't need to repeat a search on the same address it's already looked up.

      I know it's something not many people might have a use for but I sure do and I'd be willing to pay for the package and the API service if it can be done. It's only for certain types of servers where you an tolerate a delay or dropped packets for the second or two that it takes the API service to respond. But once it's looked up and passes, all future packets from that address are passed.

      1 Reply Last reply Reply Quote 0
      • D
        dales
        last edited by

        You might try asking in the pfBlockerNG child board.

        pfBlockerNG already does about 50% of what you're asking, including a proxy/satellite blacklist.

        And they have a Patreon page….

        1 Reply Last reply Reply Quote 0
        • J
          jeromekeating
          last edited by

          Thank you! I will take a look

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.