OPNsense Forum

English Forums => General Discussion => Topic started by: msnumen on May 04, 2021, 09:39:43 am

Title: Opnsense and pf anchors
Post by: msnumen on May 04, 2021, 09:39:43 am
Dear all,

I have been trying to implement anchors in opnsense as told in this guide:
https://www.openbsd.org/faq/pf/anchors.html (https://www.openbsd.org/faq/pf/anchors.html)
with no success

What I try is:
Code: [Select]
echo "block drop quick on igb0 inet from any to 104.21.67.140" | pfctl -a blockthiswebsite -f -
In this case I am trying to block this particular website.
Then I can execute:
Code: [Select]
pfctl -a "blockthiswebsite" -s rules And I can see the rule I just wrote. So up until here one might thing this works.

But then I ping on that website and I can still access it, without any problem. So it has actually not blocked it.

Apart from that, if I execute:
Code: [Select]
pfctl -sr I see a lot of rules but not the one I just added.



I have also tried to load the anchors from a file, without success either.


Any help regarding this issue would be greatly appreciated!.

Cheers