pfsense

A short guide on how to block the entire .zip TLD using pfSense. In particular using a package called pfBlocker-NG, which can be thought of as a “PiHole” alternative. pfBlocker-NG is capable of much much more but won’t be covered in this blog. Why is .zip TLD a problem? It’s simple really, Phishing. Whether it’s abusing a HTTP URI scheme or using special unicode characters, having a .zip TLD which has always been attributed to the compression file extension is just a bad idea....

I recently decided to improve my home network by purchasing a pfSense box. I wanted to ditch my ISP issued router, a Tilgin HG2381 router which works well for simple networks but fails to offer advanced configuration options, like support for wireguard VPN or VLANs. HyperOptic HyperOptic is a UK broadband provider which supports both IPv4 and IPv6 address assignment. For IPv4 addresses they use Carrier-grade NAT (CGN) which doesn’t allow exposing a service using port forwarding....