Search found 31 matches

by Mentalic
July 17th, 2019, 1:43 pm
Forum: IPFire in General
Topic: Intrusion Prevention System (Suricata) completely blocks my external network connection !
Replies: 28
Views: 1129

Re: Intrusion Prevention System (Suricata) completely blocks my external network connection !

Have you noticed the DNSSEC status when your having connection failures? DNSSEC status can be found on STATUS>NETWORK(EXTERNAL) page. Suspect your having rDNS failures.
by Mentalic
July 14th, 2019, 2:33 pm
Forum: IPFire in General
Topic: GREEN + BLUE + BLUE2 network?
Replies: 2
Views: 210

Re: GREEN + BLUE + BLUE2 network?

I'm running green, blue, orange. You should be able to get what you want with a few rules.

The default policy is a handy place to start planning.
https://wiki.ipfire.org/configuration/f ... ult-policy
by Mentalic
July 11th, 2019, 3:20 pm
Forum: IPFire in General
Topic: slow downloads on Steam
Replies: 3
Views: 283

Re: slow downloads on Steam

Noticed my steam downloads run at the max rate for my cable plan. Did find that Steam did not pick the closest servers automatically.
by Mentalic
July 7th, 2019, 10:30 pm
Forum: IPFire in General
Topic: HELP! Admin access on RED
Replies: 6
Views: 291

Re: HELP! Admin access on RED

Read up a bit on this and see your point that blocking ping is just not a good idea.
by Mentalic
July 7th, 2019, 9:33 pm
Forum: IPFire in General
Topic: HELP! Admin access on RED
Replies: 6
Views: 291

Re: HELP! Admin access on RED

Well just for grins I ran the Shields up test, surprisingly it fails on ping. GRC Port Authority Report created on UTC: 2019-07-07 at 21:29:21 ALL PORTS tested were found to be: STEALTH. TruStealth: FAILED - ALL tested ports were STEALTH, - NO unsolicited packets were received, - A PING REPLY (ICMP ...
by Mentalic
July 2nd, 2019, 1:44 am
Forum: Hardware
Topic: Raspberry Pi 4
Replies: 14
Views: 2275

Re: Raspberry Pi 4

Wow 8 watts is low power. Checked my HP 6005 SFF with a kil-a-watt meter, 56 watts. Guess that's not terribly efficient but not to bad about $4 a month to run here.
by Mentalic
July 1st, 2019, 7:54 pm
Forum: IPFire in General
Topic: IpFire as your main firewall
Replies: 1
Views: 185

Re: IpFire as your main firewall

Yep, IPFire is my firewall. Blocking, limiting and permitting access is what a firewall all about. Ipfire has allot of controls which i like plus mine is configured with three networks, blue, green and orange to separate my devices. Run it on an old PC with 4 nic's, a couple of bridged wireless devi...
by Mentalic
July 1st, 2019, 2:39 pm
Forum: Hardware
Topic: Raspberry Pi 4
Replies: 14
Views: 2275

Re: Raspberry Pi 4

Another option is older HP compaq SFF box's off Ebay. Hundreds of these hit the market from corporate refresh cycles for less than the price of a Raspberry. I'm running AMD's that are only venerable to spectre 1 and 2 which are mitigated, much better than Intel's offerings.
by Mentalic
June 30th, 2019, 4:06 am
Forum: IPFire in General
Topic: Not resolving domains
Replies: 18
Views: 806

Re: Not resolving domains

i stopped using my ipfire firewall for DNS many years ago after they made a change that broke my host file I was using to block ADs, malware, etc... my ipfire points to "the google" DNS servers. my ipfire's DHCP gives out one internal DNS server address which is an internal (green side) rpi running...
by Mentalic
June 30th, 2019, 3:59 am
Forum: IPFire in General
Topic: Not resolving domains
Replies: 18
Views: 806

Re: Not resolving domains

After core update 132 cloudfare DNS has problems and perhaps others DNS servers as well but its the only one I know for sure does not play well. I'm using Verisign DNS servers with no apparent problems. Submitted a bug for this.
by Mentalic
June 13th, 2019, 2:16 pm
Forum: IPFire in General
Topic: gaming access block
Replies: 6
Views: 357

Re: gaming access block

Perhaps the Game has coded in DNS servers addresses and your firewall DNS block rules are are stopping it. Try disabling your DNS blocks. Also from your drawing the ipfire Nic-1 DNS info seems odd, shows it pointing to itself 192.168.2.1, also has DNS set to auto? What does Ipfire's gui show for DNS...
by Mentalic
May 26th, 2019, 3:15 pm
Forum: IPFire in General
Topic: Configuring firewall rules for Cloudflare DNS
Replies: 4
Views: 452

Re: Configuring firewall rules for Cloudflare DNS

Cloudfare and the new IPS don't play well together at the moment, resulting in some sites getting blocked and rDNS fails. Another indicator is ping by name stops working to the blocked sites. Perhaps this issue is affecting your configuration. I set my rules to block all external DNS access from Gre...
by Mentalic
May 23rd, 2019, 8:36 pm
Forum: IPFire in General
Topic: Blocking External IPs manually
Replies: 9
Views: 358

Re: Blocking External IPs manually

Already tried the Rule method via GUI, and it did not work, so went with the iptables method. But, that's not working either. Just tested it and I can block an specific IP with a rule. Source: Standard Networks GREEN Destination Address: xxx.xxx.xxx.xxx I'm also blocking all DNS traffic to RED and ...
by Mentalic
May 23rd, 2019, 7:40 pm
Forum: IPFire in General
Topic: Blocking External IPs manually
Replies: 9
Views: 358

Re: Blocking External IPs manually

Could make a firewall rule to block a single ip easy enough.

Here's another way that allows for blocking url's via dns. If you go this route I've noticed that the IPS service needs to be stopped while setting this up.
https://github.com/sfeakes/ipfire-scripts
by Mentalic
May 23rd, 2019, 7:03 pm
Forum: IPFire in General
Topic: Intrusion Prevention System - core 131
Replies: 54
Views: 4871

Re: Intrusion Prevention System - core 131

Thanks for the that explanation, makes sense. Agreed, 108MB (Talos) compared to 2.3MB (EM), big difference. Now I'll switch back to Talos :) One thing I noticed about the Talos rules are that while there large files they have very few actual sub-rules selected if you hit the "show" target. So you h...