Suggestion: PF IP Tables

  • Hey everyone,
    I know PF has support for IP Tables which allow you to easily extend rules to LOTS of IPs with much efficiency. Could this be added into the next release/upgrade? I find it would be very nice to build a table of all APNIC ips and block access to ssh with one rule and this associated table. Just a thought, let me what you guys think.

  • pfsense calls this aliases
    make a alias called sshblock
    and fill it with ip's to block

    now make a rule that blocks sshblock on port ssh

  • Thanks alot, but how do you specify the source ip's as being "sshblock" when making a rule?

  • set the source to "single host or alias" and then type sshblock, :)
    thanks again.

Log in to reply