Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - bmcguire007

Pages: [1]
1
IDS/IPS / Wildcard Suppress list
« on: January 19, 2018, 08:59:03 pm »
Hello

We receive a large amount of the same group alerts

ET CINS Active Threat Intelligence Poor Reputation IP TCP group 97


This always is group 97, 98,34,34  ect

Is there a way to suppress this alert without adding each one one by one ?

Example

ET CINS Active Threat Intelligence Poor Reputation IP TCP  *.*


2
Firewalling / Outbound SYN and Excluding VM from PFsense
« on: January 18, 2018, 06:21:46 am »
First of all let me start by saying pfsense if brilliant.

It has taken months to get right but now it is secure and blocking all nasties.

2 things I need advise on.

1. Can pfsense manage to restrict outbound SYN Flooding
2. How do we go about excluding a particular VM and IP from the firewall and pfblocker rules ?

Thank you for a wonderful product!!!

3
General Questions / Whitelist IP behind Pfsense
« on: January 01, 2018, 10:45:27 am »
We have pretty strict reputation rules for all machines behind pfsense however we are moving our website behind pfsense however we still want bad reputation IPs to visit our website. Is it possible a have some internal IPs to be whitelisted so traffic desitned for those IPs are not blocked by snort or pfblocker ?

Naturally we want other rules applied but it is just the reputation and possible the tor traffic to still reach our website.

Thanks

Pages: [1]