Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Multiple pbFlocker aliases per GeoIP

    pfBlockerNG
    2
    6
    526
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rkelleyrtp last edited by

      Sorry if this has been asked before, but is it possible to create multiple aliases per GeoIP?

      Example: for N.America, I would like to generate four aliases to apply some custom rules.  One rule to allow US only, one rule to allow Puerto Rick, one rule to deny Panama, one rule to deny Canada, etc.

      Seems I can only create alias per GeoIP (pfB_NAmerica_v4, pfB_NAmerica_v6).

      If the current version of pfBlocker can't do this, is there a way around?  I seem to recall creating a custom ipv4 list using the txt files in the /usr/local/share/GeoIP/cc, but I don't know if those get updated automatically.  And, even if they do, how do I get the firewall to reload the rule sets if the txt files get updated.

      Any pointers?

      1 Reply Last reply Reply Quote 1
      • RonpfS
        RonpfS last edited by

        Under IPv4 Source Definitions if you select Format GeoIP you can build your own table using GeoIP country code. Clic on the infoblock to get more info.

        2.4.5-RELEASE-p1 (amd64)
        Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
        Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

        1 Reply Last reply Reply Quote 0
        • R
          rkelleyrtp last edited by

          Thanks, but I can't seem to find "IPv4 Source Definitions" on any of the pfBlockerNG screens.  I am running pfSense 2.4.2P1 with pfBlockerNG v2.1.2_2.

          By chance, can you send a screenshot of what you are seeing?

          1 Reply Last reply Reply Quote 1
          • RonpfS
            RonpfS last edited by

            When you edit any IPV4 table.

            2.4.5-RELEASE-p1 (amd64)
            Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
            Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

            1 Reply Last reply Reply Quote 0
            • R
              rkelleyrtp last edited by

              Sorry, still not seeing it.  I have a custom IPv4 list defined but don't see anything labeled IPv4 Source Definitions on that screen.

              1 Reply Last reply Reply Quote 1
              • RonpfS
                RonpfS last edited by

                Well I am not running your version of pfblockerNG
                So concentrate on the infoblock under your table.

                2.4.5-RELEASE-p1 (amd64)
                Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
                Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post