Is there a way to access the Bogons list as an Alias to use in a Firewall rule?
-
I have a rule in my LANs to block non routable traffic and just using the Bogons and Bogons6 lists would meet my needs since it is pfsense has already downloaded the lists.
Is there a way to actually use the Bogons(6) lists in a firewall rule?
-
Hello!
I dont think pfsense makes an alias. It looks like it is loaded directly in via pfctl. See /etc/rc.update_bogons.sh.
However, you can make your own URL alias with https://files.pfsense.org/lists/fullbogons-ipv4.txt
You could also copy the /etc/bogons file to a local web accessible location and then create a local URL alias like https://127.0.0.1:443/mywebfiles/bogons
John
-
@serbus said in Is there a way to access the Bogons list as an Alias to use in a Firewall rule?:
Hello!
I dont think pfsense makes an alias. It looks like it is loaded directly in via pfctl. See /etc/rc.update_bogons.sh.
However, you can make your own URL alias with https://files.pfsense.org/lists/fullbogons-ipv4.txt
You could also copy the /etc/bogons file to a local web accessible location and then create a local URL alias like https://127.0.0.1:443/mywebfiles/bogons
John
Your suggestion to download from files.pfsense.org looks like the best way for me. I disabled the "Block Bogons" on each interface, so pfSense shouldn't be downloading on its own, and then created my own URL Alias.