Latest Video on pfBlockerNG

TNewshel · October 13, 2022, 7:55pm

I watched Tom’s latest YouTube video loaded October 12, 2022 on pfBlockerNG on pfSense. I have a question as to the need for inbound blocking.

I have pfBlockerNG running on my Netgate 6100 to block outbound connections (only) for the same IPv4 lists in Tom’s video, and also for selective DNS blocker lists. I only expose ports for OpenVPN and Wireguard site-to-site VPN running on the same 6100. Since I only open VPN ports open to the Internet, is there still a need to enable Inbound rules in pfblockerNG? Again, no external ports open or port forwarding except for the two VPN services. Thanks!

Paul · October 14, 2022, 7:31am

As you have ports exposed to the internet, I would enable inbound blocking , to give you extra protection.

LTS_Tom · October 14, 2022, 11:46am

It does keep probes from those IP’s from banging on those OpenVPN ports.

TNewshel · October 14, 2022, 2:56pm

Thank you, Paul and Tom, for your reply.

@LTS_Tom: Enjoy GrrCON and have a safe drive back home on Saturday.