Skip to end of banner Go to start of banner

pfSense rule to limit incoming connections to Cloudflare

Skip to end of metadata

Created by Marius Ciepluch on Jan 12, 2024

Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

pfSense for Cloudflare services on the perimeter

Alias

pfSense allows you to use a alias (as part of the Pf functions)

% pfctl -sr | grep cflare
pass in quick on em0 reply-to (em0 144.76.Y.X)
   inet proto tcp from <cflarev4> to 192.168.1.XXX
   port = http flags S/SA keep state label "USER_RULE: NAT http"

This alias will pull in a list of IPv4 addresses:

NAT with IP restriction

No labels

Content by https://www.because-security.com/
📧 https://www.because-security.com/contact