Unbound Reverse DNS Script on PfSense
-
Hello everyone !
I wrote a small CSH script to be able to make an unbound file from host files retrieved from the net:
https://blog.42sec.eu.org/post/2023/02/14/Unbound-DNS-menteur-sur-PfSense
If it can help anyone, I'm happy to share :D -
@42sec you understand pfblocker does that already - plus much much more ;)
-
@johnpoz yes i understand you but I'm sorry : i hate pfblocker , that's the reason i wrote that script
-
@42sec hahaha.. Ok..
-
@johnpoz said in Unbound Reverse DNS Script on PfSense:
@42sec hahaha.. Ok..
He's creating pfBlockerBetter... LOL
-
@defenderllc less is better, YES :D
-
@42sec said in Unbound Reverse DNS Script on PfSense:
less is better
While I won't disagree with you there completely.. I do not personally use all the features of pfblocker.. You don't have to use all of its features.. I pretty much use it as a fancy aliases creator that I use in my firewall rules.. It does some great stuff with asns, and lists, whois info even, geoip is big one I use.. But I have it create some custom lists pulling info from lists that I use to block known scanners, etc.
Way back in the data many moons ago I had asked bbcan177 for like a "lite" version..
But just because something has features xyz, you can just use feature y if you want ;)
-
@johnpoz said in Unbound Reverse DNS Script on PfSense:
@42sec said in Unbound Reverse DNS Script on PfSense:
less is better
While I won't disagree with you there completely.. I do not personally use all the features of pfblocker.. You don't have to use all of its features.. I pretty much use it as a fancy aliases creator that I use in my firewall rules.. It does some great stuff with asns, and lists, whois info even, geoip is big one I use.. But I have it create some custom lists pulling info from lists that I use to block known scanners, etc.
Way back in the data many moons ago I had asked bbcan177 for like a "lite" version..
But just because something has features xyz, you can just use feature y if you want ;)
It's a fantastic tool and was one of the primary reasons that I chose to use a Netgate 6100 MAX as my primary firewall in front of my UDM-SE (now just used as my network/protect controller).
Dual Pi-hole servers was just not cutting it for me and pfBlocker does SOOO much more. I ran pfSense+ on a VM for a month first and loved the control I never had before.
-
@johnpoz If you need something lite here you go.
Geo block by country
https://www.ipdeny.com/ipblocks/data/aggregated/cn-aggregated.zone
Block by ASN
https://api.hackertarget.com/aslookup/?q=AS9002
Firehol block lists
https://iplists.firehol.org/files/firehol_level3.netset
I never needed any additional packages to provide this functionality.
-
@markster no I don't need anything - pfblocker does all I need, and way more that I don't.. Not looking for anything..
-
@42sec This is what I use.
https://github.com/markster17/unbound/tree/main