• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Differentiated filtering by interface with pfBlockerNG: a solution?

Scheduled Pinned Locked Moved pfBlockerNG
2 Posts 2 Posters 123 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • E
    ephedan
    last edited by Dec 4, 2024, 8:14 AM

    Hello.

    I am asking you to make sure that I have not missed something in the pfBlockerNG settings.

    I would like to confirm that it is not possible to apply different settings per interface, as for snort/suricata for example.

    I have a private network and a guest network. My need would be to filter ads on my private network and to filter by category on my public network. The DNSBL function meets this need. However, yes. I configure DNSBL, the settings will apply to both interfaces and I do not want that.

    I was thinking of using squid, but since it is end of life (many CVEs), there are not many possibilities left.

    Have I missed something in the pfBlockerNG configuration?

    M 1 Reply Last reply Dec 4, 2024, 2:10 PM Reply Quote 0
    • M
      michmoor LAYER 8 Rebel Alliance @ephedan
      last edited by Dec 4, 2024, 2:10 PM

      @ephedan
      In short, pfsense is not a content filtering device. pfblocker is very limited in this regards in that there are not per interface dnsbl rules. Any vlan that uses pfsense for DNS is subject to the same content policy on pfblockerng.
      If this is a home situation, my advice would be to use Adguard or Pihole which has greater functionality.

      Firewall: NetGate,Palo Alto-VM,Juniper SRX
      Routing: Juniper, Arista, Cisco
      Switching: Juniper, Arista, Cisco
      Wireless: Unifi, Aruba IAP
      JNCIP,CCNP Enterprise

      1 Reply Last reply Reply Quote 0
      2 out of 2
      • First post
        2/2
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
        This community forum collects and processes your personal information.
        consent.not_received