Scribd Logo
Upload

Welcome to Scribd!

  • PfBlockerNGConfigurationGuide-StepByStep_1714660961696

    Uploaded by

    abs uac
    2 views4 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    2 views4 pages

    PfBlockerNGConfigurationGuide-StepByStep_1714660961696

    Uploaded by

    abs uac

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 4

     +1.813.321.

    0987

    pfBlockerNG Configuration Guide


    Configuration Guide, Cybersecurity News, Malware Patrol Services
    Malware Patrol provides block lists compatible with pfBlockerNG, a package for pfSense version 2.x
    that allows the usage of custom block list, IP filtering, and country block functionalities.

    Instructions
    You can follow these simple steps to configure your pfBlockerNG to filter malicious URLs and protect
    the internal network, computers and users from getting infected by malware and ransomware.

    1) Log in to pfSense GUI.

    2) Choose System > Package Manager.

    3) Choose Available packages then scroll down to pfBlockerNG and clock Save.

    4) Once the package is installed, choose Firewall > pfBlockerNG.

    5) On the General tab, enable the following options:

    Enable pfBlockerNG
    De-Duplication
    CIDR Aggregation
    Suppression
    Global Logging (optional)

    You may also need to adjust Interface/Rules Configuration depending on your set up.

    6) Choose DNSBL from the pfBlockerNG menu. Check Enable DNSBL. And under IP Firewall Rule
    Setting select Deny Outbound. Click Save.

    7) Click DNSBL Feeds then click +Add.

    8) Enter Malware Patrol as the DNS GROUP Name.

    9) Under DNSBL Source enter your URL for the Plain Text – Aggressive block list provided by
    Malware Patrol. The address can be found by logging in to your account with Malware Patrol. Enter a
    label, MP-Aggressive for example and click +Add.

    10) Repeat step 9 for the Plain Text – Aggressive block list for Ransomware (optional).

    11) Set List Action to Unbound and Update Frequency to Every hour (for Malware Patrol Premium
    members only). Click Save.

    12) Click Save.

    13) Choose Update from the pfBlockerNG menu. Select the Select Force optionand mark Update,
    then click Run.

    14) The logs should present messages similar to the following:


    If you experience any difficulties configuring pfBlockerNG with Malware Patrol’s block lists, please
    make sure it is working properly and contact our tech support at support (@) malwarepatrol.net.

    Our special thanks to F34RInc for helping put together this how-to.

    Connect With Us

    Follow @malwarepatrol

    Blog Posts
    APT (4)

    Archive (55)

    Configuration Guide (17)

    Cybersecurity News (79)

    DDoS (10)

    Malware (79)

    Malware Patrol Services (35)

    Phishing (53)

    Press Release (2)

    Ransomware (56)

    Vulnerability (33)

    Social Media
    Tweets by MalwarePatrol
    Home
    Threat Intelligence
    Blog
    Contact

    © 2005-2024 Malware Patrol / SP Cyber LLC. All rights reserved. I Terms of Use

    You might also like