Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    [SOLVED] List of IPs to filter out of IPBL?

    pfBlockerNG
    1
    1
    126
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      gertty
      last edited by gertty

      [UPDATE] Nevermind, the word I was looking for was suppression.
      Under the pfBlockerNG > IP > Pv4 Suppression settings,
      I am able to add these IPs to the suppression list

      [ORIGINAL QUESTION]
      I'm new to pfBlockerNG. I have the latest pfBlockerNG-devel
      installed with the defaults and I'm running into a problem where a few of the devices on my network are doing DNS requests to 8.8.8.8, instead of pfSense's DNS server (they try 8.8.8.8 several times before falling back to the DNS server handed out by DHCP) right now 8.8.8.8 is on one of the ISC lists.

      I don't have a problem with 8.8.8.8 getting blocked, but I want like to handle it with my own narrowly tailored firewall rules for these clients so it isn't logged and filling up the firewall logs, which makes it difficult to find other problems.

      I can't add 8.8.8.8 to the pfBlockerNG whitelist, because that actually passes matching traffic. What I want is to be able to filter out a specific set of IPs to ensure they never make it on the IPBL calculated by pfBlockerNG, but are also not automatically passed by the autocreated pfB_Whitelist_v4 alias.

      Is this possible?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.