Netgate forum blocked my VPN
-
I use NordVPN and was unable to access this forum for months until I switched to a different NordVPN server with an unblocked IP, which was a pain to locate.
This global IP blocking also blocks innocent people like myself. This is akin to an innocent person getting shot during a drive-by shoot-out. I use this site responsibly, yet I was caught up in this global blockade because some knucklehead attempted to disrupt this forum. This isn't fair for the responsible users. 
-
Known issue.
People use VPN's for all kind of things. One of them is : doing things with their connection that they wouldn't do if there was no VPN. The result is : the IP gets "listed".
A moment later, you get the IP - but, for example, forum.netgate.com doesn't know that it's "you" : it sees an IP the was 'abusing' so it got listed.@ghost-0 said in Netgate forum blocked my VPN:
This isn't fair for the responsible users.
Wait .... your on planet earth. Not in the heaven.
VPN's were created so people could do 'things' - and companies make money while doing so.The solution : get another IP from Nord.
Or : stop the VPN. I've been visiting this site for a decade or so. Never used a VPN, and didn't get arrested or had any legal issues. -
@ghost-0 said in Netgate forum blocked my VPN:
This is akin to an innocent person getting shot during a drive-by shoot-out
Don't hang out next to the gangbangers on the corner, and that is way less likely to happen ;)
If your going to run with the gangbangers, yup highly likely you catch a stray bullet.. Your in a crowd with everyone wearing the wrong colors.. Hard not to hit you..
Simple solution, take off your colors when you go to the mall ;) Set pfsense forum IP not to use your vpn.
Who more likely to get shot walking down the street ;) Or the cops to ask questions of? ;)
-
The forum pulls in blacklists from a few places so that particular IP (or subnet) getting blocked may not have been the result of any particular attack on us. But rather someone using Nord attacked other things and got reported enough times the IP was listed.
I'd much rather not have to run any of this stuff on the forum but unfortunately without blacklists and antispam we'd be swamped very quickly.
Steve
-
S stephenw10 moved this topic from General pfSense Questions on
-
@johnpoz
LOL, Yo, I'm a poor brother from the hood. 
I have no choice but to be in the midst of some gang-bangers in my hood. Without my VPN, my ISP would throttle down my internet bandwidth when I exceed my allotted cap. I can't afford higher speed because I don't have discretionary cash laying around like some of you rich privileged folks here living the la vida loca. Also, it allows me to sideload APPs on my Amazon firestick undetected. These are the two main reasons why I use a VPN. It is not for other nefarious reasons. So telling me to ditch the VPN, is not a realistic practical solution for me. I get that simple solution from others all the time when I post some issue that negatively affects my VPN
. -
@ghost-0 You don't have to ditch the vpn, just route your pfsense forum access out the normal wan is all ;)
-
Mmm, the forum has a fixed IP, you can easily policy route traffic to it directly.
-
^that or just use alias with the fqdn for the forum if worried it might change at some point..
And most all images and stuff hosted off same fqdn as well, other than some say users that post up image from other places.. its a fairly simple policy route..
-
@ghost-0 said in Netgate forum blocked my VPN:
I get that simple solution from others all the time when I post some issue that negatively affects my VPN
The issue isn't your fault, neither of N*rdVPN.
But you can decide who goes over the VPN, and who not.@ghost-0 said in Netgate forum blocked my VPN:
Without my VPN, my ISP would throttle down my internet bandwidth when I exceed my allotted cap
Wait .... they "count" all your traffic, but exclude the VPN traffic ? ?
Normally, when a connection is quota limited, "ethernet packets" are counted. The ISP doesn't care if its from a mail you get, a site your visit, a file you download, or a packet from/to an VPN.
VPN traffic isn't hidden, it's encrypted. Exacly the the same when you read this (my) forum post, as it went over https = TLS.@ghost-0 said in Netgate forum blocked my VPN:
me to sideload APPs on my Amazon firestick undetected.
Off load your self ^^
I do understand that, when you "share" your connection, you can't control what others do with your connection. That's where a VPN helps you. -
@johnpoz
This is a great suggestion. The best I have received regarding my ongoing VPN dilemma. I have pfSense rules that will disable my internet if the VPN is down. How do I configure pf Sense to access this forum from the WAN side while keeping my VPN intact? -
@ghost-0 create a simple policy route to send traffic destination the pfsense forum IP or fqdn out your normal wan gateway.
This is just a rule on your lan interface.
-
@johnpoz
I love pfSense because you don't need a fancy expensive router to access the net. All you need is a repurposed old computer to run it. I'm now going on my second year with pfSense. I was a newbie when I took the pfSense plunge. I was a bit skeptical initially when I jumped on this new platform. pfSense has been a godsend. I had so many issues with my network prior to pfSense. It is so stable, reliable, and secure. And the people here on this forum have been great. They helped me configure it when I was lost in the weeds of this great program. I just want to say thank you to all the folks that helped me and to those who continue to answer my newbie questions.johnpoz, I'm not sure how to implement your suggestion. Could you be a bit more specific, perhaps with a rule (s)? Thanks...
-
Without knowing how you're routing traffic over the VPN it's hard to say but it's probably something like this:
If you used a guide from one of the VPN providers to set it up they may have had you disable the automatic outbound NAT rules. If that's the case you would also need to add an outbound NAT rule for at least that traffic.
Steve
-
Where that alias is:
