pfBlockerNG Customize Blocklist » Simplificando Redes

pfBlockerNG : Creating your Blocklist

We’ll introduce two ways to create block lists. pfBlockerNG using customize blocklist can be interesting when we want to block a specific group of domains. For example, imagine that you only want to block a specific social network.

Therefore, you can specify the domain of this network in your block list. So, instead of blocking all social networks you will be blocking only the one specified.

PfBlockerNG Setup Tutorial:

Part 01: pfBlockerNG Customize Blocklist

Part 02: PfBlockerNG: Exception List for Clients

We’ll introduce two ways to create blacklists. The first way using the Blacklist/Whitelist TLD. And the second way using static blocking list.

Using the Blacklist/Whitelist TLD

After installing pfBlockerNG go to “Firewall -> pfBlockerNG”. Then select DNSBL. In this step enable the DNSBL option. Then use “DNSBL Mode” for the direction you plan to block. In our case we use Unbound_mode. Then enable the option of “Wildcard Blocking (TLD). This option will allow blocking of TLD domains.

DNSBL= Enable , DNSBL Mode = Unbound , TLD = Enable pfBlockerNG — DNSBL= Enable , DNSBL Mode = Unbound , TLD = Enable

Then scroll down further to the “TLD Blacklist/Whitelist” option. Click on this option. After that, enter the domain you want to block. In our example it’s “google.com”. Then go to “Save DNSBL Settings”.

Click TLD Blacklist/Whitelist pfBlockerNG — Click TLD Blacklist/Whitelist

dominio pfBlockerNG — Enter the domain and save

Now, let’s do a “Reload”. For that, let’s go to “Update”. Then we select “Reload” and “All”. Then click on “Run”.

Force option = Reload, Reload option = ALL pfBlockerNG — Force option = Reload, Reload option = ALL

Wait a moment for the “Reload” to finish. Now let’s test blocking. Before that, remember to clear your browser cache. In some cases it is necessary to restart the browser.

test blocking pfBlockerNG — Accessing the blocked domain in the browser

Next let’s check the blocking logs. For that, we go to “Logs” and select “Log/File location = dnsbl.log”. Soon after we can look at the end for the specified domain’s blocking logs.

log = dnsbl.log pfBlockerNG — Select log = dnsbl.log

Second way: Creating your static block list

After installing pfBlockerNG, go to “Firewall -> pfBlockerNG”. After that, select “IP” and then “IPv4”. Then click on “Add”.

IPv4 Add pfBlockerNG — Select IP -> IPv4 and then click Add.

Afterwards, we give our list a name and a description.

Next, let’s deny in both directions “inbound & outbound”. After that, the update frequency will be selected “Never”. This frequency is like “Never” as we are creating a static list.

Action = Deny Both, Update Frequency = Never pfBlockerNG — Action = Deny Both, Update Frequency = Never

Next, let’s select “IPv4 Custom_List”.

IPv4 Custom_list pfBlockerNG — IPv4 Custom_list

So let’s enable “Enable Domain/AS”. Next we’ll add the domain to be blocked. After that, click on “Save”.

Now, let’s do a “Reload”. For that, let’s go to “Update”. Then we select “Reload” and “All”. Then click on “Run”.

Wait a moment for the “Reload” to finish. Now let’s test blocking. Before that, remember to clear your browser cache. In some cases it is necessary to restart the browser.

Now, let’s look at the logs. For that, let’s select “Logs” and then choose “ip_block.log”.

pfBlockerNG Customize Blocklist : End of configuration

Congratulations, you’ve created your own block list.

Video showing the configuration:

PfBlockerNG Setup Tutorial:

Part 01: pfBlockerNG Customize Blocklist

Part 02: PfBlockerNG: Exception List for Clients

PS. The two forms of blocking can coexist.

OpenWRT installation.

Juliana Mascarenhas

Data Scientist and Master in Computer Modeling by LNCC.

Perfil Linkedin

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". O cookie é definido pelo consentimento do cookie GDPR para registrar o consentimento do usuário para os cookies na categoria "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". Este cookie é definido pelo plug-in GDPR Cookie Consent. Os cookies são usados para armazenar o consentimento do usuário para os cookies na categoria "Necessary",
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. O cookie é definido pelo plug-in GDPR Cookie Consent e é usado para armazenar se o usuário consentiu ou não com o uso de cookies. Ele não armazena nenhum dado pessoal.

Cookie	Duration	Description
_tccl_visit	30 minutes	This cookie is set by the web hosting provider GoDaddy. This is a persistent cookie used for monitoring the website usage performance.
_tccl_visitor	1 year	This cookie is set by the web hosting provider GoDaddy. This is a persistent cookie used for monitoring the website usage performance.

Cookie	Duration	Description
__gads	1 year 24 days	The __gads cookie, set by Google, is stored under DoubleClick domain and tracks the number of times users see an advert, measures the success of the campaign and calculates its revenue. This cookie can only be read from the domain they are set on and will not track any data while browsing through other sites.
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_gtag_UA_199766752_1	1 minute	Set by Google to distinguish users.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.

Cookie	Duration	Description
FCCDCF	12 hours	No description available.
GoogleAdServingTest	session	No description

pfBlockerNG : Creating your Blocklist

Using the Blacklist/Whitelist TLD​

Second way: Creating your static block list​

pfBlockerNG Customize Blocklist : End of configuration

Video showing the configuration:

Related Posts

Using the Blacklist/Whitelist TLD

Second way: Creating your static block list