Can you modify an existing BL and make it your own?
-
I have been looking at videos about using lists from sources like Steven Black to block sites. After looking at the content of the list and how it is installed it caused me to think why cant I copy a list, modify it, store it locally or on a network drive and manage its contents myself as a way to quickly start blocking sites while I get familiar with the intricacies of PFS and PFB.
Is this an option?
I need to get sites blocked quickly and the time I have available to spend getting deep into the system and becoming truly comfortable/familiar is limited at this time.
I have looked at the structure of the list and looks pretty straight forward and will just copy the format and work from there. I will at some point get around to diving in and getting dirty but for now this to me seems like a quick way to accomplish an urgent need.
Right now I will be blocking access for all users and will eventually find a method to allow some to access blocked sites (either by IP, MAC or Subnet) while banning the rest.
Thanks in advance for your help.
Intelligence is not a substitute for common sense.
Intel i5-3427 * 1.80GHz * 8GB Memory * 100GB HDD
Putting legacy equipment into service and out of landfills. -
@lpd7 Are you looking for https://forum.netgate.com/topic/142171/block-custom-domains-in-pfblocker/4 ?
Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
Upvote 👍 helpful posts! -
@steveits said in Can you modify an existing BL and make it your own?:
https://forum.netgate.com/topic/142171/block-custom-domains-in-pfblocker/4
Thanks for that info, at quick glance it seems like it may be the place to start. I am finding it difficult to locate a comprehensive resource for PFBlocker, the videos are ok but there are gaps, dont seem to flow logically. I wonder if there is a workflow or some other visual representation that shows you what steps you need to take to achieve a certain goal. I recall when I was a CCNA back in the day vendors like Fluke, Cisco and the IEEE had these big posters that showed how data flowed, the protocols the various devices and such and how they all were tied together, made it easier to manage and config a network. I will keep plugging away...Thanks again.
-
@steveits Wow that was a quick way to block sites, like using a sledge hammer to cut cheese but it has gotten the job done for now. All I need to now learn is how to fine tune it and allow certain users to bypass these restrictions. Is there a certain terminology or function I would search for to learn how to fine tune who gets blocked and who doesnt?
-
@lpd7 We actually haven't used DNSBL much until recently. I don't know that it's possible to return different answers for different LAN devices. I suppose you could give certain devices different DNS servers to bypass it. (speaking of which, you will probably want to block DNS over HTTPS so browsers don't bypass the pfSense DNS server)
If (if) the feed could be used to set up a firewall rule on the IP tab, as opposed to DNSBL, then pfSense will resolve the names to IPs every 5 minutes I think it is. But they may not be compatible, I have no idea offhand.
-
@lpd7 You can do that or create your own custom list then be sure to add to firewall floating rule with the quick set option check and that blocks quickly, instantly...I am away from my system and unable to share screen shots...hopefully someone will share.
