block ip
Table is much faster than variable.
I block all foreign ip cidr's in pf.conf using table which is large and instantaneous.
i/we use
"block in quick log (all) on fxp0 from !<usip> to any label "foreign"
where <usip> is a .csv file of us based cidr's
You can update that file as desired.
It cuts down the amount of traffic greatly if you r not interested in a non-us
based cidr.
|