Search found 4 matches

by PhilTheHill
May 28th, 2019, 2:59 pm
Forum: IPFire in General
Topic: Configuring firewall rules for Cloudflare DNS
Replies: 4
Views: 363

Re: Configuring firewall rules for Cloudflare DNS

I'm currently avoiding the Cloudflare issues by configuring my router as the primary upstream resolver rather than Cloudflare, although the router itself uses Cloudflare! Not sure if this problem arises due to the Suricata switch but when I've had problems I've seen messages in the unbound log of th...
by PhilTheHill
May 27th, 2019, 8:55 am
Forum: IPFire in General
Topic: Configuring firewall rules for Cloudflare DNS
Replies: 4
Views: 363

Re: Configuring firewall rules for Cloudflare DNS

Hi Mentalic and thanks for the update. There are certainly some issues with Cloudflare and core 131 but I don't currently believe this is related as I've had the problem with at least 128, 129 and 130. I was hanging on hoping that the Suricata release might address the issue but it doesn't. I now ha...
by PhilTheHill
May 25th, 2019, 7:44 pm
Forum: IPFire in General
Topic: Configuring firewall rules for Cloudflare DNS
Replies: 4
Views: 363

Configuring firewall rules for Cloudflare DNS

I’m currently running IPFire in a Green/Red/Orange configuration with networks configured as follows Green - 10.0.0.0/16 Red - 10.1.0.0/16 Orange - 10.2.0.0/16 In order to mitigate against possible DNS highjacking attempts (and applications trying to use Google’s DNS servers irrespective of what I w...
by PhilTheHill
December 4th, 2018, 8:35 pm
Forum: IPFire in General
Topic: Ipfblocklist (IP Blocklists for IPFire)
Replies: 14
Views: 1671

Re: Ipfblocklist (IP Blocklists for IPFire)

I just came to the conclusion that using BOGON_FULL blocks 192.168.0.0/16, i.e. you can't access machines behind IPFire in that network as well ;) It's a two-way block. 11:28:53 DROP_BOGON_FULL red0 TCP 192.168.178.x 192.168.178.y 80(HTTP) In my case I can't reach the Fritzbox modem, not too much o...