Author Topic: Firewall Alias "External (Advanced)"? (Read 2481 times)

EFaden · « **on:** April 09, 2021, 10:51:09 pm »

Anyone know what they are? They seem to be internal aliases, but I can delete them?

Thoughts?

tiermutter · « **Reply #1 on:** April 09, 2021, 11:53:05 pm »

This are default tables used by some options. Check this:
http://ports.su/security/sshlockout
https://ipinfo.io/bogon

Virusprot is a dynamic table, as far as I know, source adresses will be added when a connection limit (FW rule options) is reached,
which indicates malicious traffic.
https://docs.opnsense.org/manual/firewall.html (Connection Limits)

Greelan · « **Reply #2 on:** April 09, 2021, 11:53:13 pm »

Well, if you don’t want the functionality that they facilitate - such as blocking bogon networks on interfaces, or locking out IPs that have too many failed SSH login attempts, or applying rate-limiting tunables for connections, source addresses etc - then sure. But I’d suggest they are created by default for a reason

Author Topic: Firewall Alias "External (Advanced)"? (Read 2481 times)

EFaden

Firewall Alias "External (Advanced)"?

tiermutter

Re: Firewall Alias "External (Advanced)"?

Greelan

Re: Firewall Alias "External (Advanced)"?

Author Topic: Firewall Alias "External (Advanced)"? (Read 2481 times)

EFaden

Firewall Alias "External (Advanced)"?

tiermutter

Re: Firewall Alias "External (Advanced)"?

Greelan

Re: Firewall Alias &quot;External (Advanced)&quot;?

Re: Firewall Alias "External (Advanced)"?