Whats Port Blocking ?

Data is passed through ports on computers so packets are sent and recived at some ports on our computer that are open with pfsense we can open and close specific ports that are required because opening unnecessary ports leads to security issues and are a lot to manage.

Some Common ports

• World Wide Web access (using the Hyper-Text Transfer Protocol, or HTTP)
• E-mail (using the Simple Mail Transfer Protocol, or SMTP)
• File transfer (using the File Transfer Protocol, or FTP)
• Translating a host name into an Internet address (using the Domain Name Service, or DNS)
• Remote terminal access (For example, Telnet, Secure Shell, RDP, or VNC)

What Are We Going To Do?

• Setting-Up Pfsense
• Blocking and Opening Ports with pfsense
• Blocking malicious sites with pfsense 
• Port Knocking with pfsense
• Using PFsense as an IDS/IPS with snort

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

How Open & Block port on pfsense

Best practices for firewall rules

• The firewall rule’s purpose
• The affected service(s) or application(s)
• The affected users and devices
• The date when the rule was added
• The rule’s expiration date, if applicable
• The name of the person who added the rule

Steps to achive optimal results

• Block all firewall rules
• Remove "Accept All" rules 
• Audit Logs
• Review rules regularly 
• Automate the whole process 

references

• https://www.liquidweb.com/kb/best-practices-for-firewall-rules/

Next up -

Blocking malicious sites with pfsense