OPNsense Forum

English Forums => General Discussion => Topic started by: baqwas on November 10, 2021, 12:37:37 pm

Title: How to leverage deny-ip.txt?
Post by: baqwas on November 10, 2021, 12:37:37 pm

Hello,

I have accumulated a deny-ip.txt file over the years. Each line in the file is an IPv4 address. What are the ways that I can leverage this in OPNsense?

I have read a few pages on Suricata and other utilities but didn't quite understand how to import these addresses. Are there some links that would step me through the process under OPNsense 21.7.3-amd64? Thanks.

Kind regards.

P.S. OPNsense GeoIP is doing a fantastic job but I have to keep port 25 open and that is causing minor headaches.

Title: Re: How to leverage deny-ip.txt?
Post by: benyamin on November 10, 2021, 01:32:52 pm

You might consider using Aliases (https://docs.opnsense.org/manual/aliases.html) of type URL Tables (IPs). Just host your deny-ip.txt on a webserver somewhere (anywhere really - it doesn't have to be LAN side, although that's probably better), then configure the Alias and relevant Rules using Spamhaus (E)DROP (https://docs.opnsense.org/manual/how-tos/edrop.html) as a template.

Title: Re: How to leverage deny-ip.txt?
Post by: baqwas on November 29, 2021, 12:54:28 pm

Thx, @benyamin.  :)