Differentiated filtering by interface with pfBlockerNG: a solution?

ephedan

Hello.

I am asking you to make sure that I have not missed something in the pfBlockerNG settings.

I would like to confirm that it is not possible to apply different settings per interface, as for snort/suricata for example.

I have a private network and a guest network. My need would be to filter ads on my private network and to filter by category on my public network. The DNSBL function meets this need. However, yes. I configure DNSBL, the settings will apply to both interfaces and I do not want that.

I was thinking of using squid, but since it is end of life (many CVEs), there are not many possibilities left.

Have I missed something in the pfBlockerNG configuration?

michmoor

@ephedan
In short, pfsense is not a content filtering device. pfblocker is very limited in this regards in that there are not per interface dnsbl rules. Any vlan that uses pfsense for DNS is subject to the same content policy on pfblockerng.
If this is a home situation, my advice would be to use Adguard or Pihole which has greater functionality.