Scribd Logo
Upload

Welcome to Scribd!

  • 9K views

    Firewall - pfBlockerNG - Europe

    Uploaded by

    Daniel Araújo
    uiyii

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd

    Firewall - pfBlockerNG - Europe

    Uploaded by

    Daniel Araújo
    9K views7 pages
    uiyii

    Original Title

    Firewall_ pfBlockerNG_ Europe

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    uiyii

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    9K views7 pages

    Firewall - pfBlockerNG - Europe

    Uploaded by

    Daniel Araújo
    uiyii

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    of 7

    Europe 

    General Update Alerts Reputation IPv4 IPv6 DNSBL GeoIP Logs Sync

    Top 20 Africa Antarctica Asia Europe North America Oceania South America

    Proxy and Satellite

    Continent - Europa  (GeoIP data by MaxMind Inc. - GeoLite2)


    NOTES

    Click here for IMPORTANT info on:  What's new in GeoIP2

    Note:  pfSense by default implicitly blocks all unsolicited inbound traffic to the WAN interface.
    Therefore adding GeoIP based firewall rules to the WAN will not provide any benefit, unless there are open WAN ports.

    It's also not recommended to block the 'world', instead consider rules to 'Permit' traffic from selected Countries only.
    Also consider protecting just the specific open WAN ports and it's just as important to protect the outbound LAN traffic.

    LINKS

    Firewall Alias  Firewall Rules Firewall Logs

    Countries - use CTRL+CLICK to select/unselect Countries (New: Represented IPs)


    AA EUROPE UNDEFINED 6255148 (9043)
    AA EUROPE UNDEFINED 6255148_rep (0)
    Alanda [661882] AX (28)
    Alanda [661882] AX_rep (0)
    Albânia [783754] AL (234)
    Albânia [783754] AL_rep (21)
    Alemanha [2921044] DE (19497)
    Alemanha [2921044] DE_rep (1811)
    Andorra [3041565] AD (58)
    Andorra [3041565] AD_rep (5)
    Bielo-Rússia [630336] BY (203)
    Bielo-Rússia [630336] BY_rep (31)
    Bulgária [732800] BG (1328)
    Bulgária [732800] BG_rep (237)
    Bélgica [2802361] BE (2312)
    Bélgica [2802361] BE_rep (173)
    Bósnia-Herzegóvina [3277605] BA (214)
    Bósnia-Herzegóvina [3277605] BA_rep (7)
    Chipre [146669] CY (379)
    Chipre [146669] CY_rep (44)
    Croácia [3202326] HR (403)
    Croácia [3202326] HR_rep (8)
    Dinamarca [2623032] DK (2020)
    Dinamarca [2623032] DK_rep (121)
    Eslováquia [3057568] SK (560)
    Eslováquia [3057568] SK_rep (14)
    Eslovênia [3190538] SI (563)
    Eslovênia [3190538] SI_rep (35)
    Espanha [2510769] ES (6725)
    Espanha [2510769] ES_rep (223)
    Estônia [453733] EE (498)
    Estônia [453733] EE_rep (131)
    Finlândia [660013] FI (1922)
    Finlândia [660013] FI_rep (115)
    França [3017382] FR (26849)
    França [3017382] FR_rep (1781)
    Gibraltar [2411586] GI (87)
    Gibraltar [2411586] GI_rep (18)
    Grécia [390903] GR (639)
    Grécia [390903] GR_rep (5)
    Guernsey [3042362] GG (74)
    Guernsey [3042362] GG_rep (3)
    Holanda [2750405] NL (14133)
    Holanda [2750405] NL_rep (3086)
    Hungria [719819] HU (934)
    Hungria [719819] HU_rep (38)
    Ilha de Man [3042225] IM (94)
    Ilha de Man [3042225] IM_rep (13)
    Ilhas Faroe [2622320] FO (33)
    Ilhas Faroe [2622320] FO_rep (2)
    Irlanda [2963597] IE (2877)
    Irlanda [2963597] IE_rep (222)
    Islândia [2629691] IS (181)
    Islândia [2629691] IS_rep (5)
    Itália [3175395] IT (5456)
    Itália [3175395] IT_rep (345)
    Jersey [3042142] JE (111)
    Jersey [3042142] JE_rep (11)
    Kosovo [831053] XK (22)
    Letônia [458258] LV (536)
    Letônia [458258] LV_rep (69)
    Lichtenstein [3042058] LI (118)
    Lichtenstein [3042058] LI_rep (4)
    Lituânia [597427] LT (991)
    Lituânia [597427] LT_rep (83)
    Luxemburgo [2960313] LU (551)
    Luxemburgo [2960313] LU_rep (150)
    Macedônia [718075] MK (128)
    Macedônia [718075] MK_rep (3)
    Malta [2562770] MT (148)
    Malta [2562770] MT_rep (36)
    Moldova, República de [617790] MD (539)
    Moldova, República de [617790] MD_rep (20)
    Montenegro [3194884] ME (79)
    Montenegro [3194884] ME_rep (7)
    Mónaco [2993457] MC (43)
    Mónaco [2993457] MC_rep (0)
    Noruega [3144096] NO (1823)
    Noruega [3144096] NO_rep (154)
    Polônia [798544] PL (5696)
    Polônia [798544] PL_rep (120)
    Portugal [2264397] PT (962)
    Portugal [2264397] PT_rep (52)
    Reino Unido [2635167] GB (20249)
    Reino Unido [2635167] GB_rep (3474)
    Romênia [798549] RO (3025)
    Romênia [798549] RO_rep (208)
    Rússia [2017370] RU (10305)
    Rússia [2017370] RU_rep (772)
    San Marino [3168068] SM (54)
    San Marino [3168068] SM_rep (0)
    Suécia [2661886] SE (5369)
    Suécia [2661886] SE_rep (854)
    Suíça [2658434] CH (4098)
    Suíça [2658434] CH_rep (279)
    Svalbard e Jan Mayen [607072] SJ (57)
    Svalbard e Jan Mayen [607072] SJ_rep (0)
    Sérvia [6290252] RS (541)
    Sérvia [6290252] RS_rep (33)
    Tchéquia [3077311] CZ (2507)
    Tchéquia [3077311] CZ_rep (659)
    Ucrânia [690791] UA (3621)
    Ucrânia [690791] UA_rep (181)
    Vaticano [3164670] VA (35)
    Vaticano [3164670] VA_rep (252)
    Áustria [2782113] AT (2731)
    Áustria [2782113] AT_rep (215)
    IPv4 Countries
    AA EUROPE UNDEFINED 6255148 (2852)
    Alanda [661882] AX (3)
    Albânia [783754] AL (58)
    Alemanha [2921044] DE (6342)
    Alemanha [2921044] DE_rep (322)
    Andorra [3041565] AD (2)
    Bielo-Rússia [630336] BY (50)
    Bielo-Rússia [630336] BY_rep (4)
    Bulgária [732800] BG (895)
    Bulgária [732800] BG_rep (14)
    Bélgica [2802361] BE (682)
    Bélgica [2802361] BE_rep (43)
    Bósnia-Herzegóvina [3277605] BA (40)
    Bósnia-Herzegóvina [3277605] BA_rep (1)
    Chipre [146669] CY (134)
    Chipre [146669] CY_rep (4)
    Croácia [3202326] HR (113)
    Croácia [3202326] HR_rep (104)
    Dinamarca [2623032] DK (496)
    Dinamarca [2623032] DK_rep (26)
    Eslováquia [3057568] SK (185)
    Eslováquia [3057568] SK_rep (4)
    Eslovênia [3190538] SI (125)
    Eslovênia [3190538] SI_rep (21)
    Espanha [2510769] ES (1035)
    Espanha [2510769] ES_rep (10)
    Estônia [453733] EE (196)
    Estônia [453733] EE_rep (5)
    Finlândia [660013] FI (606)
    Finlândia [660013] FI_rep (24)
    França [3017382] FR (4166)
    França [3017382] FR_rep (155)
    Gibraltar [2411586] GI (78)
    Gibraltar [2411586] GI_rep (15)
    Grécia [390903] GR (145)
    Grécia [390903] GR_rep (4)
    Guernsey [3042362] GG (3)
    Guernsey [3042362] GG_rep (1)
    Holanda [2750405] NL (3320)
    Holanda [2750405] NL_rep (246)
    Hungria [719819] HU (196)
    Hungria [719819] HU_rep (4)
    Ilha de Man [3042225] IM (15)
    Ilha de Man [3042225] IM_rep (1)
    Ilhas Faroe [2622320] FO (19)
    Ilhas Faroe [2622320] FO_rep (2)
    Irlanda [2963597] IE (1272)
    Irlanda [2963597] IE_rep (163)
    Islândia [2629691] IS (112)
    Islândia [2629691] IS_rep (3)
    Itália [3175395] IT (1140)
    Itália [3175395] IT_rep (11)
    Jersey [3042142] JE (22)
    Jersey [3042142] JE_rep (1)
    Letônia [458258] LV (124)
    Letônia [458258] LV_rep (12)
    Lichtenstein [3042058] LI (50)
    Lichtenstein [3042058] LI_rep (4)
    Lituânia [597427] LT (250)
    Lituânia [597427] LT_rep (11)
    Luxemburgo [2960313] LU (184)
    Luxemburgo [2960313] LU_rep (26)
    Macedônia [718075] MK (37)
    Macedônia [718075] MK_rep (2)
    Malta [2562770] MT (57)
    Malta [2562770] MT_rep (1)
    Moldova, República de [617790] MD (189)
    Moldova, República de [617790] MD_rep (2)
    Montenegro [3194884] ME (15)
    Montenegro [3194884] ME_rep (1)
    Mónaco [2993457] MC (3)
    Mónaco [2993457] MC_rep (1)
    Noruega [3144096] NO (902)
    Noruega [3144096] NO_rep (29)
    Polônia [798544] PL (928)
    Polônia [798544] PL_rep (135)
    Portugal [2264397] PT (205)
    Portugal [2264397] PT_rep (3)
    Reino Unido [2635167] GB (5670)
    Reino Unido [2635167] GB_rep (2091)
    Romênia [798549] RO (475)
    Romênia [798549] RO_rep (41)
    Rússia [2017370] RU (4426)
    Rússia [2017370] RU_rep (93)
    San Marino [3168068] SM (9)
    San Marino [3168068] SM_rep (2)
    Suécia [2661886] SE (1368)
    Suécia [2661886] SE_rep (129)
    Suíça [2658434] CH (1426)
    Suíça [2658434] CH_rep (267)
    Sérvia [6290252] RS (88)
    Sérvia [6290252] RS_rep (3)
    Tchéquia [3077311] CZ (1417)
    Tchéquia [3077311] CZ_rep (48)
    Ucrânia [690791] UA (1939)
    Ucrânia [690791] UA_rep (36)
    Vaticano [3164670] VA (7)
    Vaticano [3164670] VA_rep (1)
    Áustria [2782113] AT (1144)
    Áustria [2782113] AT_rep (245)
    IPv6 Countries

    List Action

    Deny Inbound
    Select the Action for Firewall Rules on lists you have selected.
    Default: Disabled 
    Enable Logging
    Enable
    Default: Enable
    Select - Logging to Status: System Logs: FIREWALL ( Log )
    This can be overriden by the 'Global Logging' Option in the General Tab.

    Advanced Inbound Firewall Rule Settings 

    Note:  In general, Auto-Rules are created as follows:


    Inbound
    'any' port, 'any' protocol, 'any' destination and 'any' gateway

    Configuring the Adv. Inbound Rule settings, will allow for more customization of the Inbound Auto-Rules.

    Invert Source

    Invert - Option to invert the sense of the match. ie - Not (!) Source Address(es)

    Custom DST Port

    Enable

    Custom Port
    Click Here to add/edit Aliases Do not manually enter port numbers.
    Do not use 'pfB_' in the Port Alias name.

    Custom Destination

    Enable

    Invert

    Custom Destination
    Click Here to add/edit Aliases Do not manually enter Addresses(es).
    Do not use 'pfB_' in the 'IP Network Type' Alias name.
    Select 'invert' to invert the sense of the match. ie - Not (!) Destination Address(es)

    Custom Protocol

    any
    Default: any
    Select the Protocol used for Inbound Firewall Rule(s).
    Do not use 'any' with Adv. Inbound Rules as it will bypass these settings!

    Custom Gateway

    default
    Select alternate Gateway or keep 'default' setting.

    Advanced Outbound Firewall Rule Settings 

    Note:  In general, Auto-Rules are created as follows:


    Outbound
    'any' port, 'any' protocol, 'any' destination and 'any' gateway
    Configuring the Adv. Outbound Rule settings, will allow for more customization of the Outbound Auto-Rules.

    Invert Destination

    Invert - Option to invert the sense of the match. ie - Not (!) Destination Address(es)

    Custom DST Port

    Enable

    Custom Port
    Click Here to add/edit Aliases Do not manually enter port numbers.
    Do not use 'pfB_' in the Port Alias name.

    Custom Source

    Enable

    Invert

    Custom Source
    Click Here to add/edit Aliases Do not manually enter Addresses(es).
    Do not use 'pfB_' in the 'IP Network Type' Alias name.
    Select 'invert' to invert the sense of the match. ie - Not (!) Source Address(es)

    Custom Protocol

    any
    Default: any
    Select the Protocol used for Outbound Firewall Rule(s).
    Do not use 'any' with Adv. Outbound Rules as it will bypass these settings!

    Custom Gateway

    default
    Select alternate Gateway or keep 'default' setting.

     Save

    Click to SAVE Settings and/or Rule edits. Changes are applied via CRON or 'Force Update'

     pfSense is developed and maintained by Netgate. © ESF 2004 - 2019 View license. 

    You might also like