Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Block An Ip Address

    Firewalling
    4
    4
    3363
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      ANSASERVERS last edited by

      Hey Guys,

      I am fairly new to PFSENSE, have been using it for a few months to protect my local network of computers from ddossing and people snooping around my network. All my servers run from a different part of my network that is outside my firewall.

      The question i do have is how do i BAN an ip address from access my network full stop. This ip is an ip address of a user on the internet that keeps attempting to ddos my connection and the police cannot and are not willing to help out.

      Look forward to your reply

      Matt.

      1 Reply Last reply Reply Quote 0
      • D
        danswartz last edited by

        Not sure what problem you are solving - unless you allow explicit port forwards (you haven't really described much of anything of what your setup is), no-one should be able to access your network.

        1 Reply Last reply Reply Quote 0
        • S
          Steve Mustafa last edited by

          From my understanding of firewalling, access is generally denied to anyone unless explicitly allowed with rules.

          unless you mean to do as follows:

          Firewall > Rules > WAN
          create a new rule at the top of the stack

          1. Action Block
          2. Interface WAN
          3. Protocol any
          4. Source type : single host or alias, address (the IP address you want to block)
          5. you ought to know the rest since you know what you're blocking :)

          If that's not what you want, you need to post back with more info dude.

          1 Reply Last reply Reply Quote 0
          • jimp
            jimp Rebel Alliance Developer Netgate last edited by

            The traffic will be stopped unless you explicitly allow it. That said, they can still try to DoS you because you can only block packets once they've already reached you.

            You need to tell your ISP to block that IP address, and then it won't come down your line at all.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense Plus
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy