I'm using OPNsense, with geoip and the block list from spamhaus.
I run my own mail server and I get a lot of attempts to find valid user names and then brute force attempt to guess passwords. Sometimes this will go in for days and with 2 or 3 people (sad to say usually from the USA) and it just takes up a lot of bandwidth and I've had the server so overloaded, that it crashed.
I can't block the country, and spamhaus doesn't catch these.
I want to have the ability to create my own blocklist to which I can add malicious users as I catch them. I see no way to do this with OPNsense, but I understand from a colleague that it's simple with pfsense.
I find it hard to believe that a so-called 'super build' based on pfsense wouldn't have this ability.
Can it be done or should I change to pfsense?