Firewall Alias "External (Advanced)"?

Started by EFaden, April 09, 2021, 10:51:09 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 09, 2021, 10:51:09 PM
Anyone know what they are?  They seem to be internal aliases, but I can delete them?

Thoughts?
April 09, 2021, 11:53:05 PM #1
This are default tables used by some options. Check this:
http://ports.su/security/sshlockout
https://ipinfo.io/bogon

Virusprot is a dynamic table, as far as I know, source adresses will be added when a connection limit (FW rule options) is reached,
which indicates malicious traffic.
https://docs.opnsense.org/manual/firewall.html (Connection Limits)
i am not an expert... just trying to help...
April 09, 2021, 11:53:13 PM #2
Well, if you don't want the functionality that they facilitate - such as blocking bogon networks on interfaces, or locking out IPs that have too many failed SSH login attempts, or applying rate-limiting tunables for connections, source addresses etc - then sure. But I'd suggest they are created by default for a reason [emoji3]
Print
Go Up Pages1
User actions