Suggestion: PF IP Tables



  • Hey everyone,
    I know PF has support for IP Tables which allow you to easily extend rules to LOTS of IPs with much efficiency. Could this be added into the next release/upgrade? I find it would be very nice to build a table of all APNIC ips and block access to ssh with one rule and this associated table. Just a thought, let me what you guys think.



  • pfsense calls this aliases
    make a alias called sshblock
    and fill it with ip's to block

    now make a rule that blocks sshblock on port ssh



  • Thanks alot, but how do you specify the source ip's as being "sshblock" when making a rule?



  • set the source to "single host or alias" and then type sshblock, :)
    thanks again.


Log in to reply