Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
Inbound Wildcard DNS block
« previous
next »
Print
Pages: [
1
]
Author
Topic: Inbound Wildcard DNS block (Read 456 times)
iBROX
Newbie
Posts: 48
Karma: 2
Inbound Wildcard DNS block
«
on:
April 22, 2024, 08:21:22 am »
Hi,
Is there anyway to block say *.abc.com (obviously being a wildcard) it will block all hostnames under it ?
I've looked everywhere and can't seem to find an easy solution, is there a way within Opnsense or perhaps using Sensei or some other plug in?
Logged
bartjsmit
Hero Member
Posts: 2005
Karma: 193
Re: Inbound Wildcard DNS block
«
Reply #1 on:
April 22, 2024, 04:34:07 pm »
create an entry in your DNS server for abc.com. to 127.0.0.1
Logged
iBROX
Newbie
Posts: 48
Karma: 2
Re: Inbound Wildcard DNS block
«
Reply #2 on:
April 23, 2024, 03:22:46 am »
That will block it for clients within the LAN wanting to get to the WAN (Internet), what about from the WAN (Internet) into your LAN ? Ie: a floating rule to block a wildcard for anything ending in *.abc.com
hopefully that makes sense.
Logged
bartjsmit
Hero Member
Posts: 2005
Karma: 193
Re: Inbound Wildcard DNS block
«
Reply #3 on:
April 23, 2024, 07:54:15 am »
If you distrust an inbound connection enough to block it, then why trust it not to spoof its name and/or IP address?
Content distribution networks, cloud services, CGNAT, proxies and what have you will obscure the source of external traffic and are out of your control.
If you want to increase the security, use a login to your service. If your logins are getting swamped from a certain corner of the internet, add a second factor (e.g. client cert for a web server).
Bart...
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
Inbound Wildcard DNS block