How to leverage deny-ip.txt?

Started by baqwas, November 10, 2021, 12:37:37 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 10, 2021, 12:37:37 PM
Hello,

I have accumulated a deny-ip.txt file over the years. Each line in the file is an IPv4 address. What are the ways that I can leverage this in OPNsense?

I have read a few pages on Suricata and other utilities but didn't quite understand how to import these addresses. Are there some links that would step me through the process under OPNsense 21.7.3-amd64? Thanks.

Kind regards.

P.S. OPNsense GeoIP is doing a fantastic job but I have to keep port 25 open and that is causing minor headaches.
November 10, 2021, 01:32:52 PM #1
You might consider using Aliases of type URL Tables (IPs). Just host your deny-ip.txt on a webserver somewhere (anywhere really - it doesn't have to be LAN side, although that's probably better), then configure the Alias and relevant Rules using Spamhaus (E)DROP as a template.
November 29, 2021, 12:54:28 PM #2
Thx, @benyamin.  :)
Print
Go Up Pages1
User actions