Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
[Solved]Geoip
« previous
next »
Print
Pages: [
1
]
Author
Topic: [Solved]Geoip (Read 2403 times)
bmail
Newbie
Posts: 37
Karma: 1
[Solved]Geoip
«
on:
September 14, 2019, 06:34:58 pm »
Hello,
I use 19.7.4 and Maltrail.
Could somebody explain to me how does the geoip database is updated ?
I used (since OPNsense 18.1) to use Geoip with an alias and a rule for indound wan interface in first position. And now, I try Maltrail and I notice lots of "malicious traffic" coming from China and Russia... However, nothing personal, but my geoip alias and firewall rule is supposed to block these countries.
I wonder if my firewall rule is really applied ... Or if these ip are recently affected to these countries and my geoip database is not really updated.
Does Geoip database is updated with the cron task "update and reload firewall aliases" ? I've already got this cron task.
Is it relative with GeoLite Legacy databases discontinued on January 2 ?
Thanks a lot for any advice.
Bertrand
«
Last Edit: September 14, 2019, 08:24:57 pm by bmail
»
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Geoip
«
Reply #1 on:
September 14, 2019, 07:22:50 pm »
The bpf capture of maltrail happens before pf filter, keep cool and Safe
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
bmail
Newbie
Posts: 37
Karma: 1
[Solved]Re: Geoip
«
Reply #2 on:
September 14, 2019, 08:23:24 pm »
Hi mimugmail,
Thanks a lot for this explanation.
Phew !
best regards,
Bertrand
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
[Solved]Geoip