Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
Block outbound connections to China
« previous
next »
Print
Pages: [
1
]
Author
Topic: Block outbound connections to China (Read 2716 times)
jimk2048
Newbie
Posts: 7
Karma: 0
Block outbound connections to China
«
on:
January 02, 2021, 05:07:10 pm »
Does OPNsense have any features or plugins that would block outbound connections to China? In case I use compromised devices that want to phone home.
Logged
gpb
Full Member
Posts: 234
Karma: 13
Re: Block outbound connections to China
«
Reply #1 on:
January 02, 2021, 05:43:23 pm »
Yeah, search for GeoIP. You'd create an alias with countries you want to block, then use that alias in a firewall rule. Prior to that you'll need to set up an account (free) with maxmind.
See here:
https://docs.opnsense.org/manual/how-tos/maxmind_geo_ip.html
Aliases:
https://docs.opnsense.org/manual/aliases.html
Logged
HP T730/AMD RX-427BB/8GB/500GB SSD
HP NC365T 4-PORT
bartjsmit
Hero Member
Posts: 2017
Karma: 194
Re: Block outbound connections to China
«
Reply #2 on:
January 03, 2021, 10:03:38 am »
CDN's are eroding the value of GeoIP and you may be better off internally segregating the devices you don't control - like IoT - with separate VLAN and stricter firewall rules.
Bart...
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
Block outbound connections to China