Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
20.1 Legacy Series
»
Wildcard hosts in Firewall alias
« previous
next »
Print
Pages: [
1
]
Author
Topic: Wildcard hosts in Firewall alias (Read 5501 times)
Pfirepfox
Newbie
Posts: 42
Karma: 2
Wildcard hosts in Firewall alias
«
on:
April 07, 2020, 02:53:19 pm »
Hi All,
It seems as if the alias "Hosts" lists under the Firewall do not accept wildcard entries. I have tried using "*.domain.com" and ".domain.com" but neither appear to work and i cant find any documentation on this.
What is the syntax to allow wildcards in Firewall Aliases?
Logged
nothing
Newbie
Posts: 31
Karma: 0
Re: Wildcard hosts in Firewall alias
«
Reply #1 on:
April 07, 2020, 06:59:59 pm »
I don't think that's possible at all
Imagine how the firewall works - when you enter fqdn, the engine resolves it to IP (or IPs) and create the rules. There might be configured refresh time to update the resolving table. So how would you imagine resolving *.domain.tld?
Depending on the desired results, you should consider different approach.
Logged
Pfirepfox
Newbie
Posts: 42
Karma: 2
Re: Wildcard hosts in Firewall alias
«
Reply #2 on:
April 08, 2020, 02:31:50 am »
Multiple Firewall vendors have the ability to do this, so i am not too sure if it is an engine limitation or just hasn't been developed yet for OPNSense.
I need to add 500+ hosts as an alias list which are all near identical , EG: syd01.media.com, syd02.media.com etc...
What is the best way to achieve this other than copying and pasting it 500+ times?
Logged
hbc
Hero Member
Posts: 501
Karma: 47
Re: Wildcard hosts in Firewall alias
«
Reply #3 on:
April 09, 2020, 11:12:01 pm »
If these are webpages, you can block via proxy and regex.
syd[0-9][0-9]\.media\.com
Logged
Intel(R) Xeon(R) Silver 4116 CPU @ 2.10GHz (24 cores)
256 GB RAM, 300GB RAID1, 3x4 10G Chelsio T540-CO-SR
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
20.1 Legacy Series
»
Wildcard hosts in Firewall alias