Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    a doubt about pfBlockerNG: maxmind db or lists mentioned in the official documentation? or both?

    Scheduled Pinned Locked Moved General pfSense Questions
    5 Posts 3 Posters 627 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mauro.tridici
      last edited by

      Dear Users,

      I recently activated pfBlockerNG in order to block both the well-known dangerous IP addresses provided by MAXMIND DB both the custom IP addresses lists created by me.
      Anyway, in the official documentation ( https://docs.netgate.com/pfsense/en/latest/packages/pfblocker.html ), I see that some "available lists" are mentioned:

      "Available lists
      Spamhaus
      DROP and EDROP.
      http://www.spamhaus.org/drop/drop.txt
      http://www.spamhaus.org/drop/edrop.txt

      DShield
      Most Active Attacking IPs.
      http://feeds.dshield.org/top10-2.txt

      iblocklist.com
      A number of lists are available.
      http://www.iblocklist.com/lists.php"

      What does it mean? Are these lists included in the MAXMIND provided lists or I have to add them manually to the pfBlockerNG configuration?
      Are the MAXMIND lists enough ? What is your suggestion?

      Thank you in advance,
      Mauro

      M 1 Reply Last reply Reply Quote 0
      • M
        mcury @mauro.tridici
        last edited by

        @mauro-tridici said in a doubt about pfBlockerNG: maxmind db or lists mentioned in the official documentation? or both?:

        MAXMIND DB

        MAXMIND DB is for geoIP, it does not contain any known dangerous IP addresses.

        dead on arrival, nowhere to be found.

        M 1 Reply Last reply Reply Quote 1
        • M
          mauro.tridici @mcury
          last edited by

          @mcury many thanks for your reply. I will add new dedicated lists

          S 1 Reply Last reply Reply Quote 0
          • S
            SteveITS Galactic Empire @mauro.tridici
            last edited by

            @mauro-tridici The pfBlocker doc page is rather out of date. Look on the Feeds tab.

            Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
            When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
            Upvote 👍 helpful posts!

            M 1 Reply Last reply Reply Quote 1
            • M
              mauro.tridici @SteveITS
              last edited by

              @SteveITS thank you Steve :)

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.