Is it possible to import third party IP block list?
-
We are trying to avoid this kind of feature. The reason is, they are extremely difficult to maintain and will likely drive our support crazy. But, we are thinking, and we do understand very few of you need this feature, which means, we need to have a creative way to fund this kind of thing.
-
I would very much like to be able to use the SANS Dshield Blocklist.... maybe some blocklist as well... would be nice to have the ability to subscribe/unsubscribe to various block lists.
And now that we have the ability to create groups.... the ability to have certain groups use certain block list... would be awesome!
-
Just came across this, would probably be willing to pay for the feature but even something as simple as being able to pull a text list of IP's/domains from a url similar to how PaloAlto implemented dynamic lists where you can put in the url to something like the raw text file of the firehol list (https://raw.githubusercontent.com/firehol/blocklist-ipsets/master/firehol_level1.netset) and have it check that once a day.
-
@miguel, thank you for the suggestion. We started some work in this, likely not exactly pull a list, but the ability to configure / cut / paste a list at least. Our problem is still the amount of resources for this project is so thin, we are not even sure if it will finish.
But if other's are interested in this type of 'power features' (that are not popular) and willing to spend a bit extra to help us out, please upvote!
-
@1980cyber just a fyi, I am using multiple users on the VPN side. It requires you to create the user via terminal, but it works. I needed a way that when one user connects, it ran a few pieces of code. Created a small script that will actually add the user and create the .ovpn profile for you. If you want the script let me know.
-
If you guys enabled "advanced" features such as multiple VPN's connections, customizable blocklists, ability to send logs to a SIEM easily, more "business class/enterprise class control, I would gladly pay the subscription monthly if its reasonable. Or alternatively you enable the more easier options on that list via a simple toggle switch from "home use" to "advanced user" within the app to unlock additional features that aren't quite "enterprise level" You could put a disclaimer that for regular home use, its best to leave "advanced settings" alone.
-
If enough people are willing to fund these, then it should be possible to build up these things fairly quickly. Our problem is not only the initial cost of building but maintaining and supporting the features throughout the releases.
Even this is a paid feature, we also need to know who is really interested in these advanced features. So please upvote.
-
@Andy, that's what we will be doing. For example, the upcoming wireguard function will be a free update, because a lot of people will use it and love us for it. And SIEM export or log export will likely be a paid feature, because ... most people don't know what SIEM is ... And for those who do, it may be very important.
Please sign in to leave a comment.
Comments
12 comments