How to setup pfBlockerNG on pfSense
ฝัง
- เผยแพร่เมื่อ 18 มิ.ย. 2020
- Some of our viewers asked why we didn't go through the configuration when we posted our video on the lists we used so we took that onboard and produced this step by step guide on how to setup pfBlockerNG on pfSense.
- วิทยาศาสตร์และเทคโนโลยี
This worked for me, the only issue I had was when I got to the stage where you went back to the dashboard to move the widget, my DNSBL was not active. Going into Firewall/pfBlockerNG/Update and running Force Reload DNSBL fixed this and now mine works as per your video. Thanks!
Great video. My pfBlocker is now working very well!
These are great Vids please please keep them coming !!.....
To the point and precise, thank you.
excellent tutorial, very informative
Brilliant. Thank you. This deserves more Up Votes !!
thanks bro, just finished setting this up based on this video,
Thank you, excellent tutorial
Great tutorial, well explained Would be good to have a bit more on the default whitelist you mentioned, as a home user looking to implement this for general network security knowing how to avoid it nuking commonly used things like youtube would be handy (to avoid the wife getting pissed off). Thanks for making this!
Good video.
Nice video, well explained. At ~08:38 you have touched the IP rules. That's exactly where I hoped you would go deeper into this topic. Unfortunately I do not have floating rules being generated by pfBlockerNG. It is simply not generated on my instance, and I do not have these floating rules you have mentioned about. Would it be possible to create the video where you touched this topic in a bit more details and also open this PRI1 page and show what kind of settings are there? how the floating rules are generated and all story about them: what they do, how they are configured, how to reconfigure them? It would be very much appreciated.
Thanks for this update for installing PfBlockerNG with recommend settings! It works now flawless.
Would you make also a new install instruction with recommend settings for installing Snort and OpenVPN Server for Remote Access ?
this tutorial deserves more upvotes tbh. i initially went through lawrence's video
th-cam.com/video/OJ8HHwpGxHw/w-d-xo.html
but your video is pretty thorough in which lists to use and some stuff that got missed out.
Hi, thanks for the video! :) i setup my pfblockerng up with this, mut i made mistake DNSBL Groups and delete the all, how i get that "Malicious" back? Or do you know where i can see options inside of Malicious?
Really good video! Do you have your DNSBL whitelist file saved somewhere to see it?
Nice introduction to PFblocker. I deployed it yesterday following this video , hoping to block websites , however many are still getting through . http versions of sites are blocked but https versions are returning . Any advise ? ( Using Shallalist , Already enabled TLD , Force reloaded , rebooted )
Hi, Can you please help with a query. Suppose we need to bypass a LAN side host for PFblockerNG then how it is possible. Pls, suggest.
Hi sir, 6:46 do we really need to set the Inbound Firewall to WAN? and Outbound to Firewalls Rules to LAN should it be reversed?
Inbound = WAN, Outbound = LAN is correct. Traffic initiated from the WAN is inbound and Traffic initiated from the LAN is outbound so you need to assign the inbound rules to WAN interface and outbound rules to LAN.
Thanks for the Video ,
Does pfblockng works as a dns server ?
Or I should configure the dns server in pfsense separately?
Because I want to have a local dns server and block ads .
Thanks again .
You need to configure the pfSense DNS Resolver first and then add pfBlockerNG to block ads and trackers etc.
@@FrimleyComputing So
1.Do you prefer pfsense or pihole as DNS server and ad blocker ? (I Have an mini ISP with more than 200 users )
2. What do you prefer to use for a cache server ? I am searching for one for my netwrok .
Thanks for your help .
how to add custom blocking list in pfblockerng ?
how to show custom webpage for blockage rather than default>?
How do u know which list use or why? And pfblockerng is similar to suricata? That can u block access to malware or other bad suites?
Suricata is an IDS/IPS and is similar to Snort. pfBlocker is a DNS sinkhole and works using block lists of IPs and domains. IDS/IPS looks into the data whereas pfBlocker doesn't.
I'm uk based with virgin media internet .. any chance you could share me link to that block like text fail , save me some time on adapting my own list for home use and give me a bit of a head start @frimlet.. thanks in any case
pfblocker is basically a better alternative to pihole. you can block a lot of crap on your entire network, making browsing the web much more pleasant.
@@satstube Yes agree that would be a good idea..
Thank you so much.
Interestingly, I don't have ip reputation tab and I'm unable to edit geoip lists as there is no pencil next to each!
Is there anything I should be doing?
Cheers
You should edit that, do u have a maxmind license?
@@paulvancyber1979 I've registered and generated a license key, it's like 16 characters, is that right?
@@paulvancyber1979 thank you again
Got it :)
I needed to remove and reinstall pfblocker
Great work thanks
Looking forward to a tutorial on suricata 👍
@@drreality1 yes, u paste it in the pfblockerNH and then u can block GEOip i had the same issue, u dont need to reinstall
How do I block all websites and allow only few websites to access from specific LAN IP's, and allow all websites on other IP's of LAN
@Frimley Computing
I put one website url into DNSBL Whitelist but still being blocked ?
You should use the whitelist option from the logging screen, although adding a domain should work just fine. The format to use is example.com or .example.com to block the base domain or wildcard domain.
My tab reputation is not working (404 not found). Any solutions for me?
I followed along and got the same thing. I ran the cron job under the update tab, and I no longer got the 404.
Excellent video. I only have two comments. One, I would like to see how to specifically blacklist a domain or URL. Specifically, say tinder.com, bumble.com, and some gambling sites. Two, the ransomware tracker you said is no longer available seems to be working and up. I found a site that indicates it's up, but I'm a newb, so I could be wrong.
Thanks for your reply. The IPv4 Pri1 (Abuse_IPBL) list was discontinued and currently states "# Ransomware Tracker has been discontinued on Dec 8th, 2019". There are more than likely other lists out there that will do the same job, however I was working with the feed lists that come bundled with pfBlockerNG. I'll work on a specific "how to block" video in the near future and many thanks for the request. :-)
Hello Frimley Computing,
I really appreciate your video very educative , but i have newt that i want to block all porn site with pfBlocker.
thank you
Amazing video, but I need to block youtube and all video stream websites; how I do that?
How to block other websites?
I'm using both yours and lawrence's guide to setup pfblocker and dns resolver, but it doesn't seem like it is fully working. also both your instructions are slightly different, so i'm not sure which to use tbh
th-cam.com/video/OJ8HHwpGxHw/w-d-xo.html
th-cam.com/video/1fhS_gGHMck/w-d-xo.html
th-cam.com/video/5mygS-TiT9c/w-d-xo.html
For example i do see somethings in pfblocker reports shown there, and when i go to a site with ads it does indeed get blocked.
but when i go pfsense > dns resolver, i do not see any items shown there except a 1.1.1.1 and 1.0.0.1 2 entries only.
so not sure if my pfblocker is configured correctly or not.
also i have issues with imgur loading, which i suspect might be a pfblocker issue, but i'm not fully sure.
Hi,
I really hope someone can help. Im sure there is a simple step
none of the tutorials I've found cover which I am missing. I've watched
and followed lots of them and they all boil down to pretty much the
same.
Port fwd always fails with Default deny rule IPv4 (1000000103) .
All I want should be simple, even a cheap router can handle it , so nothing too much.
The
end to end system from a user anywhere in the world, through isp, dns
arrives at router / firewall. When I plugin my cheap router the we
server replies correctly.
In short when using a cheap router
everything works. Unplug router and plug in pfsense, It blocks. Ive
done lots of tests and problem is with the pfsense box.
I have a web server i.e. http( normal settings), on a lan ip 192.168.0.25 ( not real addr).
Clean
install ( current v 2.6.0 ) apart from config wan ,lan, passwds etc
nothing else. Basically enough to get connected to the outside world.
No VPN, DHCP nothing.
Ive tried system default & Pure NAT in Nat Reflection.
I'm sure Im missing / not doing a simple step. All of the big things match the tutorials.
Please someone give me some pointers , clues, suggestions as to what I can try.
Thank you