How do you block CHINESE hacks/intrusions/scans ?



  • Does pfSense automatically block Chinese hacking / intrusion? Or, is there a script or method that can be easily employed by a newbee? Thanks for your guidance.



  • you can block CIDR regions with an addon package called "Country Block"

    navigate to SYSTEM –> PACKAGES.



  • @ericab:

    you can block CIDR regions with an addon package called "Country Block"

    navigate to SYSTEM –> PACKAGES.

    ericab, Thanks for your guidance. Could I simply allow only US, CA, AUS, NZ only and block rest of the world in easy way? Thanks again.



  • by default everything is blocked coming into you WAN interface. If you only want US, CA, AUS, NZ ranges, use Country Block. It has an option to Select every list, then you uncheck US, CA, AUS, NZ… They will block all the country ranges before the rules you add.

    You are looking at a lot of Aliases and inbound rules the other way if you want want to have lets say a web server behind the fw.



  • @Cino:

    by default everything is blocked coming into you WAN interface. If you only want US, CA, AUS, NZ ranges, use Country Block. It has an option to Select every list, then you uncheck US, CA, AUS, NZ… They will block all the country ranges before the rules you add.

    You are looking at a lot of Aliases and inbound rules the other way if you want want to have lets say a web server behind the fw.

    Thank you all for guidance. This can be closed issue.


Locked