Alias URL Question

tibere86 · February 02, 2018, 04:34:58 PM

I am trying to add a URL based Alias ASN list to block all Google traffic. Not sure which option to use...URL (IP) or URL (IP Table).
Is there anyway to verify OPNsense resolves all listed subnets from URL?

onefix · February 03, 2018, 04:34:25 AM

I don't think OPNSense has an automated ASN lookup rule. What I have done is create a script to output a number of requests / lists to an /opt file once a day. The command would look like this:

whois -h whois.radb.net -- '-i origin AS15169' | grep -Eo "([0-9.]+){4}/[0-9]+" > /opt/aliases/google_ips

You should then simply create a rule URL Table (IPs) and point the first entry to /opt/aliases/google_ips

Alias URL Question

tibere86

February 02, 2018, 04:34:58 PM

onefix

February 03, 2018, 04:34:25 AM #1