Good results with URL Table Aliases package
-
i havent had a chance to check yet, but just to mention I am running NanoBSD version. Does that matter?
I thought it was safe to use on NanoBSD but I don't recall at the moment.
-
So how should i add an alias to my rules? I want to only allow us ips to connect. So, i add the CIDR US list to the URL alias. Then what?
-
You make a new alias, choose the URL table type, put in the URL for the US IPs list.
Then use the alias in a rule like any other alias. You'd make a rule on WAN like so:
pass <protocol>from <single host="" or="" alias,="" us_ip_alias="">, port: any, to <local_ip>, port: <whatever>.
The real contents of that rule are up to you and whatever your app is.</whatever></local_ip></single></protocol>
-
Will that by default block all other ips? do i need to put a rule below allow us ips to block all?
-
All traffic is blocked on pfSense by default.
If you have no other pass rule that matches the same traffic, then all other traffic will be blocked.
