Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to block IPs per computer

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 3 Posters 372 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      battles
      last edited by

      I have two computers connect to a switch, the switch then connects to an external controller that is running pfSense.  pfSense is also running pfBlockerNG.  What I want to do is block access to some IPs from one of the computers only.  Any way of doing this with pfSense or pfBlockerNG?  Thanks

      pfSense 2.3.4-RELEASE-p1 (i386)
      FreeBSD 10.3-RELEASE-p19
      pfBlockerNG 2.1.2_1
      Snort Security 3.2.9.5_3
      Intel(R) Atom(TM) CPU N270 @ 1.60GHz

      1 Reply Last reply Reply Quote 0
      • V
        viragomann
        last edited by

        Add a new alias in Firwall > Aliases > IP and add all the IPs you want to block to it.
        Add a firewall rule to the top of the list on LAN or the interface the concerned computer is connected to, select Action = block, protocol = any, source the computer you want to restrict access, destination = the alias name you've created first.

        1 Reply Last reply Reply Quote 0
        • B
          battles
          last edited by

          Thanks.  I like to use pdBlockerNG to centralize my blocking endeavors and I think I can see how to do this there per your instructions.

          Advanced Outbound Firewall Rule Settings > Firewall/pfBlockerNG/Edit/IPv4 > Advanced Outbound Firewall Rule Settings > Custom Source > Click Here to add/edit Aliases

          pfSense 2.3.4-RELEASE-p1 (i386)
          FreeBSD 10.3-RELEASE-p19
          pfBlockerNG 2.1.2_1
          Snort Security 3.2.9.5_3
          Intel(R) Atom(TM) CPU N270 @ 1.60GHz

          1 Reply Last reply Reply Quote 0
          • chudakC
            chudak
            last edited by

            @battles:

            Thanks.  I like to use pdBlockerNG to centralize my blocking endeavors and I think I can see how to do this there per your instructions.

            Advanced Outbound Firewall Rule Settings > Firewall/pfBlockerNG/Edit/IPv4 > Advanced Outbound Firewall Rule Settings > Custom Source > Click Here to add/edit Aliases

            I needed to do actually opposite - allow some IPs thru pfBlockerNG.
            And do this I've added IPs alias to enabled Custom Source via Firewall/pfBlockerNG/IP/GeoIP/Europe

            You can play with this to block IPs as well I am assuming …

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.