Netgate SG-1000 microFirewall

Author Topic: Optimizing pfBlockerng configuration  (Read 401 times)

0 Members and 1 Guest are viewing this topic.

Offline mikael.andre

  • Newbie
  • *
  • Posts: 5
  • Karma: +0/-0
    • View Profile
Optimizing pfBlockerng configuration
« on: December 21, 2017, 03:00:16 am »
Hi everybody,

First of all, I would like to thanks BBCan177 for this work.
It's a pleasure to have some advance features to block traffic (incoming/outgoing) like commercial solutions I see in my job (Palo Alto, bluecoat, fortinet, etc...)

I open this topic in order to optimize my pfBlockerng configuration.
I would like to have somes suggestions about for example in which group it's better to put some URL.
In IPv4 list, I create four groups : critical, high, medium, low.
In custom DNS feeds, I create four groups too: Adverts, Malicious, DGA and Hphost_partial.
In attached files, it's my custom IPv4 blocking lists, easy list configuration and feeds for DNSBL.

I used following links to set up my configuration:

In advance, many thanks for your reply.

Best regards,