Seems like they are different (thanks @Viktor Jaep) and I used to run all 3 as well (plus other things), but reduced to level 1 only before getting to step 7 in post #10. Approximately around this time the suricates pack of 30 got reduced to an older couple with no kids.
On my github there, a few of the Ad list I use to generate my list from which also add some IP address's to the list, probably the firebog ones, but those IP addresses are compiled IP addresses of elusive servers (meaning the domains change frequently) that just do a combination of nasty such as trackers, cryptominers, malware , and other sorts of bad.
Thanks for the suggestion with threatview... I've added those now as well.
can you sayThanks for the heads-up. It seemed to ingest it just fine... probably smart enough to kick out anything that doesn't look like an IP.
echo 576747640bbc9e8922cb0c45c7357ccee4ccd36a | grep -oE "\b((25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\b" echo 192.168.1.1 | grep -oE "\b((25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\b"
192.168.1.1echo 192.168.1.1 | grep -oE "\b((25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\b" | grep -vE '^(192\.168|10\.|172\.1[6789]\.|172\.2[0-9]\.|172\.3[01]\.)'printf '14.1.98.226/n192.168.1.1' | grep -oE "\b((25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\b" | grep -vE '^(192\.168|10\.|172\.1[6789]\.|172\.2[0-9]\.|172\.3[01]\.)'
14.1.98.226
I gave this a go in Skynet. The 33K IP blocks with default lists dropped to a mere 250 (although Firehol 1 contains over 600 million IPs). Do you see something similar?pfBlockerNG on pfSense in my case.
You have to use custom blocking list in Skynet. The default is this one:
IPSet_ASUS/filter.list at master · Adamm00/IPSet_ASUS
Skynet - Advanced IP Blocking For ASUS Routers Using IPSet. - Adamm00/IPSet_ASUSgithub.com
What we use is this one only:
And a description what it is here:
FireHOL IP Lists | IP Blacklists | IP Reputation Feeds
350+ IP blacklists, IP blocklists and IP Reputation feeds, about Cybercrime, Fraud, Botnets, Μalware, Virus, Abuse, Attacks, Open Proxies, Anonymizers. See their changes and updates, size over time, retention policy, geographic coverage, comparisons and overlaps.iplists.firehol.org
Haven't used default in quite a while... still using my own custom list. In fact, I had added Firehol 4 and the Firehol_Webserver lists to my blocklist yesterday, and wow... some major blockage going on there. Guess it's not safe for production/family use. I had to back off when it stopped loading regular standard websites, and made my Google Home malfunction, and then the screaming started.
Here is the filter list i am currently rocking, (and yes any one is welcome to try it.)Haven't used default in quite a while... still using my own custom list. In fact, I had added Firehol 4 and the Firehol_Webserver lists to my blocklist yesterday, and wow... some major blockage going on there. Guess it's not safe for production/family use. I had to back off when it stopped loading regular standard websites, and made my Google Home malfunction, and then the screaming started.
Sometimes. Haven't noticed any breaking or connection concerns if that is what your question is aiming at. What actual concerns do you have?
If I had 300+ outbound blocks I'd check on what was causing it. At worst, something is wrong on my network, but I'd just be concerned about blocking legitimate traffic.
Yea majority of the outbound blocks are from Chatty IoT devices. I have multiple IoT devices that like to constantly call home. For no other particular reason than just doing what IoT devices do. However, it has not broke their actual functionality, so I am not concerned.If I had 300+ outbound blocks I'd check on what was causing it. At worst, something is wrong on my network, but I'd just be concerned about blocking legitimate traffic.
If I had 300+ outbound blocks I'd check on what was causing it. At worst, something is wrong on my network, but I'd just be concerned about blocking legitimate traffic.
Some nameservers might be blocked by the Skynet lists, especially if using country blocking.
Dumb question...if I don't use country blocking this would not apply or mess with the performance, correct?
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!