{"id":1549,"date":"2022-02-16T14:50:26","date_gmt":"2022-02-16T14:50:26","guid":{"rendered":"https:\/\/www.dev-metal.ch\/?p=1549"},"modified":"2022-02-16T14:50:26","modified_gmt":"2022-02-16T14:50:26","slug":"opnsense-blacklist-mit-spamhaus-droplists","status":"publish","type":"post","link":"https:\/\/www.dev-metal.ch\/?p=1549","title":{"rendered":"OPNsense Blacklist mit Spamhaus Droplists"},"content":{"rendered":"<p>Mittels OPNsense ist es auf einfache Art und Weise m\u00f6glich, &#8222;b\u00f6sartige&#8220; IPs (z.B. basierend auf <a href=\"https:\/\/www.spamhaus.org\/drop\/\" target=\"_blank\" rel=\"noopener\">Spamhaus<\/a>) zu blockieren.<\/p>\n<h2>Blacklists mit OPNsense<\/h2>\n<ol>\n<li>Alias mit den Blacklisten erstellen<br \/>\n<a href=\"https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/alias-1.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-1552 size-full\" src=\"https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/alias-1.jpg\" alt=\"\" width=\"1197\" height=\"689\" srcset=\"https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/alias-1.jpg 1197w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/alias-1-300x173.jpg 300w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/alias-1-1024x589.jpg 1024w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/alias-1-768x442.jpg 768w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/alias-1-2x1.jpg 2w\" sizes=\"auto, (max-width: 1197px) 100vw, 1197px\" \/><\/a><\/li>\n<li>Firewall Regel erstellen<br \/>\nAlle Rule-Tabs mit Ausnahme von &#8222;Floating&#8220; sind nur f\u00fcr den eingehenden Datenverkehr vorgesehen. Wir wollen aber sowohl eine ausgehende als auch eingehende Filterung erreichen. Dies kann \u00fcber eine &#8222;Floating-Regel&#8220; erreicht werden:<br \/>\n<a href=\"https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating1.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-1553\" src=\"https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating1.jpg\" alt=\"\" width=\"1378\" height=\"1130\" srcset=\"https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating1.jpg 1378w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating1-300x246.jpg 300w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating1-1024x840.jpg 1024w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating1-768x630.jpg 768w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating1-1x1.jpg 1w\" sizes=\"auto, (max-width: 1378px) 100vw, 1378px\" \/><\/a><a href=\"https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating2.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-1554\" src=\"https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating2.jpg\" alt=\"\" width=\"1294\" height=\"486\" srcset=\"https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating2.jpg 1294w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating2-300x113.jpg 300w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating2-1024x385.jpg 1024w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating2-768x288.jpg 768w, https:\/\/www.dev-metal.ch\/wp-content\/uploads\/2022\/02\/floating2-3x1.jpg 3w\" sizes=\"auto, (max-width: 1294px) 100vw, 1294px\" \/><\/a><\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<h2>Links<\/h2>\n<ul>\n<li><a href=\"https:\/\/www.allthingstech.ch\/blocking-malicious-ips-with-opnsense\/\" target=\"_blank\" rel=\"noopener\">Original-Beitrag (in Englisch)<\/a><\/li>\n<li><a href=\"https:\/\/www.spamhaus.org\" target=\"_blank\" rel=\"noopener\">Spamhaus<\/a><\/li>\n<li><a href=\"https:\/\/iplists.firehol.org\" target=\"_blank\" rel=\"noopener\">Firehol<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Mittels OPNsense ist es auf einfache Art und Weise m\u00f6glich, &#8222;b\u00f6sartige&#8220; IPs (z.B. basierend auf Spamhaus) zu blockieren. Blacklists mit OPNsense Alias mit den Blacklisten erstellen Firewall Regel erstellen Alle Rule-Tabs mit Ausnahme von &#8222;Floating&#8220; sind nur f\u00fcr den eingehenden Datenverkehr vorgesehen. Wir wollen aber sowohl eine ausgehende als auch eingehende Filterung erreichen. Dies kann [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_lmt_disableupdate":"","_lmt_disable":"","footnotes":""},"categories":[10],"tags":[],"class_list":["post-1549","post","type-post","status-publish","format-standard","hentry","category-techdocs"],"modified_by":"ralph","_links":{"self":[{"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=\/wp\/v2\/posts\/1549","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1549"}],"version-history":[{"count":1,"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=\/wp\/v2\/posts\/1549\/revisions"}],"predecessor-version":[{"id":1555,"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=\/wp\/v2\/posts\/1549\/revisions\/1555"}],"wp:attachment":[{"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1549"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1549"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dev-metal.ch\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1549"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}