OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: MakesSense on January 13, 2019, 10:23:31 pm

Title: 18.7.10 IP blocklist
Post by: MakesSense on January 13, 2019, 10:23:31 pm

Hi

I'm wondering if there any way to add a list of IP addresses to the firewall blocklist?

Title: Re: 18.7.10 IP blocklist
Post by: chemlud on January 13, 2019, 11:26:13 pm

Hi!

Create an Alias (Firewall - Settings) and add the IPs. Afterwards create an block rule on the respective interface and use as target the alias (should be in the respective drop-down menu). :-)

Title: Re: 18.7.10 IP blocklist
Post by: MakesSense on January 14, 2019, 07:16:08 am

Thanks, I have done that for the most intrusive ones earlier, but I have a list with over 9000 IP addresses.

I tried to add them directly in the config.xml file, but then I can't open that alias in the webb GUI.

Title: Re: 18.7.10 IP blocklist
Post by: The_Sage on January 14, 2019, 08:28:17 am

I use a URL Table(IP).
Add a file to a webserver - blockIPs.txt

Edit the file and add all the IP addresses, one per line. (may use other delimiter, not sure ??)

then Add alias URL Table (IPs) , then frequency of update, then FQDN of file.

This works for me.

Title: Re: 18.7.10 IP blocklist
Post by: MakesSense on January 14, 2019, 09:18:29 am

Thanks for the tip! I will try that.