OPNsense Forum
English Forums => General Discussion => Topic started by: baqwas on November 10, 2021, 12:37:37 pm
-
Hello,
I have accumulated a deny-ip.txt file over the years. Each line in the file is an IPv4 address. What are the ways that I can leverage this in OPNsense?
I have read a few pages on Suricata and other utilities but didn't quite understand how to import these addresses. Are there some links that would step me through the process under OPNsense 21.7.3-amd64? Thanks.
Kind regards.
P.S. OPNsense GeoIP is doing a fantastic job but I have to keep port 25 open and that is causing minor headaches.
-
You might consider using Aliases (https://docs.opnsense.org/manual/aliases.html) of type URL Tables (IPs). Just host your deny-ip.txt on a webserver somewhere (anywhere really - it doesn't have to be LAN side, although that's probably better), then configure the Alias and relevant Rules using Spamhaus (E)DROP (https://docs.opnsense.org/manual/how-tos/edrop.html) as a template.
-
Thx, @benyamin. :)