Block An Ip Address
-
Hey Guys,
I am fairly new to PFSENSE, have been using it for a few months to protect my local network of computers from ddossing and people snooping around my network. All my servers run from a different part of my network that is outside my firewall.
The question i do have is how do i BAN an ip address from access my network full stop. This ip is an ip address of a user on the internet that keeps attempting to ddos my connection and the police cannot and are not willing to help out.
Look forward to your reply
Matt.
-
Not sure what problem you are solving - unless you allow explicit port forwards (you haven't really described much of anything of what your setup is), no-one should be able to access your network.
-
From my understanding of firewalling, access is generally denied to anyone unless explicitly allowed with rules.
unless you mean to do as follows:
Firewall > Rules > WAN
create a new rule at the top of the stack1. Action Block
2. Interface WAN
3. Protocol any
4. Source type : single host or alias, address (the IP address you want to block)
5. you ought to know the rest since you know what you're blocking :)If that's not what you want, you need to post back with more info dude.
-
The traffic will be stopped unless you explicitly allow it. That said, they can still try to DoS you because you can only block packets once they've already reached you.
You need to tell your ISP to block that IP address, and then it won't come down your line at all.