pfblockerng = IPs
squid= http/https
pfblockerng under dnsbl options/settings. thats for DNS. *
bind=DNS. *
* you need to use one of those, and 'block' under the root domain the .cn
etc.
2016-09-30 17:08 GMT-03:00 Benjamin E. Nichols :
> Forgive me, but, those
Forgive me, but, those arent DNS Blacklists, they are just CCID ip
blacklists.
This thread clearly has absolutely nothing to do with DNS blacklists.
On 9/30/2016 2:23 PM, Steve Yates wrote:
Basically, but doing it directly would avoid dealing with the package.
I guess it's just
Basically, but doing it directly would avoid dealing with the package.
I guess it's just down to how often the chosen list is updated. And, if it's
just via allocation, aren't they done allocating IPv4 blocks...
--
Steve Yates
ITS, Inc.
-Original Message-
From: List
On Fri, Sep 30, 2016 at 12:57 PM, Doug Lytle wrote:
> On 09/30/2016 11:53 AM, Steve Yates wrote:
>>
>> So you could keep your list somewhere else on a web server.
>
>
> This is what I do.
>
> And I grab the list from
>
> http://www.wizcrafts.net/chinese-iptables-blocklist.html
On 09/30/2016 11:53 AM, Steve Yates wrote:
So you could keep your list somewhere else on a web server.
This is what I do.
And I grab the list from
http://www.wizcrafts.net/chinese-iptables-blocklist.html
Once a month
Doug
___
pfSense mailing
A package like pfBlockerNG will maintain such a list for you.
An alternative, maybe, is that one can set up a "firewall URL alias" that pulls
its data from a URL. For instance pfBlockerNG sets them up on our router and
then refers to them as
Create an alias for all those IPs under Firewall > Aliases, then use that
alias in your rules.
Peace,
Todd Russell
Director of IT and Webmaster
Saint Joseph Abbey and Seminary College
985-867-2266
985-789-4319
Please consider helping Saint Joseph Abbey and Seminary College recover
from the
i's like to blacklist all of mainland china, russia, korea, ..
i could have done it by creating a DNS with just those entries.
I dont see a way to add in BULK a list of bad boys of the internet.
___
pfSense mailing list