Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multiple pbFlocker aliases per GeoIP

    Scheduled Pinned Locked Moved pfBlockerNG
    6 Posts 2 Posters 867 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rkelleyrtp
      last edited by

      Sorry if this has been asked before, but is it possible to create multiple aliases per GeoIP?

      Example: for N.America, I would like to generate four aliases to apply some custom rules.  One rule to allow US only, one rule to allow Puerto Rick, one rule to deny Panama, one rule to deny Canada, etc.

      Seems I can only create alias per GeoIP (pfB_NAmerica_v4, pfB_NAmerica_v6).

      If the current version of pfBlocker can't do this, is there a way around?  I seem to recall creating a custom ipv4 list using the txt files in the /usr/local/share/GeoIP/cc, but I don't know if those get updated automatically.  And, even if they do, how do I get the firewall to reload the rule sets if the txt files get updated.

      Any pointers?

      1 Reply Last reply Reply Quote 1
      • RonpfSR
        RonpfS
        last edited by

        Under IPv4 Source Definitions if you select Format GeoIP you can build your own table using GeoIP country code. Clic on the infoblock to get more info.

        2.4.5-RELEASE-p1 (amd64)
        Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
        Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

        1 Reply Last reply Reply Quote 0
        • R
          rkelleyrtp
          last edited by

          Thanks, but I can't seem to find "IPv4 Source Definitions" on any of the pfBlockerNG screens.  I am running pfSense 2.4.2P1 with pfBlockerNG v2.1.2_2.

          By chance, can you send a screenshot of what you are seeing?

          1 Reply Last reply Reply Quote 1
          • RonpfSR
            RonpfS
            last edited by

            When you edit any IPV4 table.

            2.4.5-RELEASE-p1 (amd64)
            Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
            Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

            1 Reply Last reply Reply Quote 0
            • R
              rkelleyrtp
              last edited by

              Sorry, still not seeing it.  I have a custom IPv4 list defined but don't see anything labeled IPv4 Source Definitions on that screen.

              1 Reply Last reply Reply Quote 1
              • RonpfSR
                RonpfS
                last edited by

                Well I am not running your version of pfblockerNG
                So concentrate on the infoblock under your table.

                2.4.5-RELEASE-p1 (amd64)
                Intel Core2 Quad CPU Q8400 @ 2.66GHz 8GB
                Backup 0.5_5, Bandwidthd 0.7.4_4, Cron 0.3.7_5, pfBlockerNG-devel 3.0.0_16, Status_Traffic_Totals 2.3.1_1, System_Patches 1.2_5

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.