PfSense: V2.15 setup.

DrJohnZoidberg said:
Would be easier to just enable uPnP.
Click to expand...
Okay, will Google.

Edit:
Okay, once again you nailed it DrJohnZoidberg.

There was no need to google, as it is a simple process.

The consoles are back on NAT 2 and should be okay again.

Thank you very much.

:)
 
Last edited:
upnp is eb0la

could you not add an alias that includes all the consoles ips and another for the ports and just use that instead? excuse my noooooobness if this was suggested already
 
Woodlands said:
upnp is eb0la

could you not add an alias that includes all the consoles ips and another for the ports and just use that instead? excuse my noooooobness if this was suggested already
Click to expand...

I'm no advocate of uPnp either but sometimes it just makes things a lot easier. pfSense also has a more robust uPnp implementation than your average router.
 
I would like to block torrents and nzb downloads on selected pcs.

I've installed Squid and Squidguard 1.4_4 V1.9.6 in order to filter sites.

It has not worked that great for me.
I would like to post keywords and have traffic blocked on it.
It seems to work for http, but https have no issue bypassing the block rule.

Google told me to create an Alias and and ping the site several times in order to collect all IPs that are used.
The problem with this is that I need to name the URL, which is a huge schlep.

I decided to ping kickass dot to and received the following IPs:

195.3.144.0, 188.126.79.119, 109.163.227.73, 95.215.61.203, 195.3.147.99, 78.138.99.144, 62.210.141.210

It worked, but seems that it is too much hassle.

I then decided to visit http://www.viewdns dot info/ and I could not link the IPs I found via Ping to any records the the site provided.

Am I doing it wrong?
Is there an easier way to target https sites or are there websites that could provide me with all the IPs a site uses?
Am I using the wrong software, is there something better for Pfsense?

Help would appreciated.

Thank you
:)
 
YOu might wanna add dansgaurdian into the mix as well, from what I've heard it gives you finer grained control.
 
RoMark said:
I would like to block torrents and nzb downloads on selected pcs.

I've installed Squid and Squidguard 1.4_4 V1.9.6 in order to filter sites.

It has not worked that great for me.
I would like to post keywords and have traffic blocked on it.
It seems to work for http, but https have no issue bypassing the block rule.

Google told me to create an Alias and and ping the site several times in order to collect all IPs that are used.
The problem with this is that I need to name the URL, which is a huge schlep.

I decided to ping kickass dot to and received the following IPs:

195.3.144.0, 188.126.79.119, 109.163.227.73, 95.215.61.203, 195.3.147.99, 78.138.99.144, 62.210.141.210

It worked, but seems that it is too much hassle.

I then decided to visit http://www.viewdns dot info/ and I could not link the IPs I found via Ping to any records the the site provided.

Am I doing it wrong?
Is there an easier way to target https sites or are there websites that could provide me with all the IPs a site uses?
Am I using the wrong software, is there something better for Pfsense?

Help would appreciated.

Thank you
:)
Click to expand...

Blocking NNTP is actually quite simple. Firstly just block the standard NNTP ports (i.e. 119, 563) and also block any providers being used. The port block should block all of the free ISP ones as they only allow traffic over port 119 but other paid servers normally allow NNTP over 443 which you can't block (here you just block the server addresses).

This can all be done with firewall rules, you could also just throttle it if you don't want it completely blocked.

Torrents aren't that easy but I would suggest setting up traffic shaping and just also limit those into the ground if you want it blocked.
 
Thank you will look into this.
Seems I have to reinstall pfsense.

Squid and squidguardian does not respond to changes. I have deleted rules and filters, but they are still active.

New rules do not override old rules. Not sure what I did wrong, but current setup is pretty messed up.

I have removed and reinstall, but it did not help.
 
Last edited:
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X