pfSense » pfSense Packages

		<pfblockerng>

			<config>

				<enable_cb>on</enable_cb>

				<pfb_keep>on</pfb_keep>

				<pfb_interval>1</pfb_interval>

				<pfb_min></pfb_min>

				<pfb_hour></pfb_hour>

				<pfb_dailystart></pfb_dailystart>

				<skipfeed></skipfeed>

				<credits></credits>

				<pfb_reuse></pfb_reuse>

				<log_max_log>20000</log_max_log>

				<log_max_errlog>20000</log_max_errlog>

				<log_max_extraslog>20000</log_max_extraslog>

				<log_max_ip_blocklog>20000</log_max_ip_blocklog>

				<log_max_ip_permitlog>20000</log_max_ip_permitlog>

				<log_max_ip_matchlog>20000</log_max_ip_matchlog>

				<log_max_dnslog>20000</log_max_dnslog>

				<log_max_dnsbl_parse_err>20000</log_max_dnsbl_parse_err>

				<log_max_dnsreplylog>20000</log_max_dnsreplylog>

				<log_max_unilog>20000</log_max_unilog>

			</config>

		</pfblockerng>

		<pfblockernglistsv4>

			<config>

				<aliasname>o365</aliasname>

				<description><![CDATA[office365]]></description>

				<row>

					<format>regex</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://endpoints.office.com/endpoints/worldwide?noipv6&amp;ClientRequestId=b10c5ed1-bad1-445f-b386-b919946339a7</url>

					<header>o365</header>

				</row>

				<action>Alias_Native</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<aliaslog>enabled</aliaslog>

				<stateremoval><![CDATA[enabled]]></stateremoval>

				<autoaddrnot_in></autoaddrnot_in>

				<autoports_in></autoports_in>

				<aliasports_in></aliasports_in>

				<autoaddr_in></autoaddr_in>

				<autonot_in></autonot_in>

				<aliasaddr_in></aliasaddr_in>

				<autoproto_in></autoproto_in>

				<agateway_in>default</agateway_in>

				<autoaddrnot_out></autoaddrnot_out>

				<autoports_out></autoports_out>

				<aliasports_out></aliasports_out>

				<autoaddr_out></autoaddr_out>

				<autonot_out></autonot_out>

				<aliasaddr_out></aliasaddr_out>

				<autoproto_out></autoproto_out>

				<agateway_out>default</agateway_out>

				<whois_convert></whois_convert>

				<custom></custom>

				<custom_update>disabled</custom_update>

				<sort>sort</sort>

				<suppression_cidr>Disabled</suppression_cidr>

			</config>

			<config>

				<aliasname>PRI1</aliasname>

				<description><![CDATA[PRI1 - Collection of Feeds from the most reputable blocklist providers. (Primary tier)]]></description>

				<action>Alias_Native</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<aliaslog>enabled</aliaslog>

				<stateremoval><![CDATA[enabled]]></stateremoval>

				<autoaddrnot_in></autoaddrnot_in>

				<autoports_in></autoports_in>

				<aliasports_in></aliasports_in>

				<autoaddr_in></autoaddr_in>

				<autonot_in></autonot_in>

				<aliasaddr_in></aliasaddr_in>

				<autoproto_in></autoproto_in>

				<agateway_in>default</agateway_in>

				<autoaddrnot_out></autoaddrnot_out>

				<autoports_out></autoports_out>

				<aliasports_out></aliasports_out>

				<autoaddr_out></autoaddr_out>

				<autonot_out></autonot_out>

				<aliasaddr_out></aliasaddr_out>

				<autoproto_out></autoproto_out>

				<agateway_out>default</agateway_out>

				<suppression_cidr>Disabled</suppression_cidr>

				<whois_convert></whois_convert>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://feodotracker.abuse.ch/downloads/ipblocklist.txt</url>

					<header>Abuse_Feodo_C2</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://ransomwaretracker.abuse.ch/downloads/RW_IPBL.txt</url>

					<header>Abuse_IPBL</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://sslbl.abuse.ch/blacklist/sslipblacklist.txt</url>

					<header>Abuse_SSLBL</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://talosintelligence.com/documents/ip-blacklist</url>

					<header>Talos_BL</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://gist.githubusercontent.com/BBcan177/bf29d47ea04391cb3eb0/raw</url>

					<header>BBcan177</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://raw.githubusercontent.com/dyne/dnscrypt-proxy/master/dnscrypt-resolvers.csv</url>

					<header>DNSCrypt</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://raw.githubusercontent.com/stamparm/ipsum/master/levels/4.txt</url>

					<header>ipsum</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://raw.githubusercontent.com/clarketm/proxy-list/master/proxy-list-raw.txt</url>

					<header>proxylist</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://public-dns.info/nameservers.txt</url>

					<header>publicdns</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://raw.githubusercontent.com/ejrv/VPNs/master/vpns-without-datacenters.txt</url>

					<header>VPNs</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/Sekhan/TheGreatWall/master/TheGreatWall_ipv4</url>

					<header>GreatWallDoH</header>

				</row>

			</config>

			<config>

				<aliasname>VPN</aliasname>

				<description><![CDATA[VPN]]></description>

				<action>Disabled</action>

				<cron>Weekly</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<aliaslog>enabled</aliaslog>

				<stateremoval><![CDATA[enabled]]></stateremoval>

				<autoaddrnot_in></autoaddrnot_in>

				<autoports_in></autoports_in>

				<aliasports_in></aliasports_in>

				<autoaddr_in></autoaddr_in>

				<autonot_in></autonot_in>

				<aliasaddr_in></aliasaddr_in>

				<autoproto_in></autoproto_in>

				<agateway_in>default</agateway_in>

				<autoaddrnot_out></autoaddrnot_out>

				<autoports_out></autoports_out>

				<aliasports_out></aliasports_out>

				<autoaddr_out></autoaddr_out>

				<autonot_out></autonot_out>

				<aliasaddr_out></aliasaddr_out>

				<autoproto_out></autoproto_out>

				<agateway_out>default</agateway_out>

				<suppression_cidr>Disabled</suppression_cidr>

				<whois_convert></whois_convert>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/ejrv/VPNs/master/vpn-ipv4.txt</url>

					<header>VPNv4</header>

				</row>

			</config>

			<config>

				<aliasname>DNSCrypt</aliasname>

				<description><![CDATA[DNSCrypt]]></description>

				<action>Disabled</action>

				<cron>Weekly</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<aliaslog>enabled</aliaslog>

				<stateremoval><![CDATA[enabled]]></stateremoval>

				<autoaddrnot_in></autoaddrnot_in>

				<autoports_in></autoports_in>

				<aliasports_in></aliasports_in>

				<autoaddr_in></autoaddr_in>

				<autonot_in></autonot_in>

				<aliasaddr_in></aliasaddr_in>

				<autoproto_in></autoproto_in>

				<agateway_in>default</agateway_in>

				<autoaddrnot_out></autoaddrnot_out>

				<autoports_out></autoports_out>

				<aliasports_out></aliasports_out>

				<autoaddr_out></autoaddr_out>

				<autonot_out></autonot_out>

				<aliasaddr_out></aliasaddr_out>

				<autoproto_out></autoproto_out>

				<agateway_out>default</agateway_out>

				<suppression_cidr>Disabled</suppression_cidr>

				<whois_convert></whois_convert>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/dyne/dnscrypt-proxy/master/dnscrypt-resolvers.csv</url>

					<header>DNSCrypt</header>

				</row>

			</config>

			<config>

				<aliasname>Proxy</aliasname>

				<description><![CDATA[Proxy]]></description>

				<action>Disabled</action>

				<cron>Weekly</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<aliaslog>enabled</aliaslog>

				<stateremoval><![CDATA[enabled]]></stateremoval>

				<autoaddrnot_in></autoaddrnot_in>

				<autoports_in></autoports_in>

				<aliasports_in></aliasports_in>

				<autoaddr_in></autoaddr_in>

				<autonot_in></autonot_in>

				<aliasaddr_in></aliasaddr_in>

				<autoproto_in></autoproto_in>

				<agateway_in>default</agateway_in>

				<autoaddrnot_out></autoaddrnot_out>

				<autoports_out></autoports_out>

				<aliasports_out></aliasports_out>

				<autoaddr_out></autoaddr_out>

				<autonot_out></autonot_out>

				<aliasaddr_out></aliasaddr_out>

				<autoproto_out></autoproto_out>

				<agateway_out>default</agateway_out>

				<suppression_cidr>Disabled</suppression_cidr>

				<whois_convert></whois_convert>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/clarketm/proxy-list/master/proxy-list-raw.txt</url>

					<header>Proxy</header>

				</row>

			</config>

			<config>

				<aliasname>PublicDNS</aliasname>

				<description><![CDATA[PublicDNS]]></description>

				<action>Disabled</action>

				<cron>Weekly</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<aliaslog>enabled</aliaslog>

				<stateremoval><![CDATA[enabled]]></stateremoval>

				<autoaddrnot_in></autoaddrnot_in>

				<autoports_in></autoports_in>

				<aliasports_in></aliasports_in>

				<autoaddr_in></autoaddr_in>

				<autonot_in></autonot_in>

				<aliasaddr_in></aliasaddr_in>

				<autoproto_in></autoproto_in>

				<agateway_in>default</agateway_in>

				<autoaddrnot_out></autoaddrnot_out>

				<autoports_out></autoports_out>

				<aliasports_out></aliasports_out>

				<autoaddr_out></autoaddr_out>

				<autonot_out></autonot_out>

				<aliasaddr_out></aliasaddr_out>

				<autoproto_out></autoproto_out>

				<agateway_out>default</agateway_out>

				<suppression_cidr>Disabled</suppression_cidr>

				<whois_convert></whois_convert>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://public-dns.info/nameservers.txt</url>

					<header>PublicDNS</header>

				</row>

			</config>

		</pfblockernglistsv4>

		<pfblockerngdnsblsettings>

			<config>

				<pfb_dnsbl>on</pfb_dnsbl>

				<pfb_tld></pfb_tld>

				<pfb_dnsvip>10.10.10.1</pfb_dnsvip>

				<pfb_dnsport>80</pfb_dnsport>

				<pfb_dnsport_ssl>443</pfb_dnsport_ssl>

				<dnsbl_interface>lan</dnsbl_interface>

				<pfb_dnsbl_rule>on</pfb_dnsbl_rule>

				<dnsbl_allow_int>lan</dnsbl_allow_int>

				<action>Alias_Deny</action>

				<aliaslog>enabled</aliaslog>

				<autoaddrnot_in></autoaddrnot_in>

				<autoports_in></autoports_in>

				<aliasports_in></aliasports_in>

				<autoaddr_in></autoaddr_in>

				<autonot_in></autonot_in>

				<aliasaddr_in></aliasaddr_in>

				<autoproto_in></autoproto_in>

				<agateway_in>default</agateway_in>

				<autoaddrnot_out></autoaddrnot_out>

				<autoports_out></autoports_out>

				<aliasports_out></aliasports_out>

				<autoaddr_out></autoaddr_out>

				<autonot_out></autonot_out>

				<aliasaddr_out></aliasaddr_out>

				<autoproto_out></autoproto_out>

				<agateway_out>default</agateway_out>

				<alexa_enable>on</alexa_enable>

				<alexa_count>2000</alexa_count>

				<alexa_inclusion>aero,com,gov,io,net,org,ru,su,xn--p1ai</alexa_inclusion>

				<suppression>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</suppression>

				<tldexclusion></tldexclusion>

				<tldblacklist></tldblacklist>

				<tldwhitelist></tldwhitelist>

				<pfb_dnsvip_type>ipalias</pfb_dnsvip_type>

				<pfb_dnsvip_pass></pfb_dnsvip_pass>

				<dnsbl_webpage>dnsbl_default.php</dnsbl_webpage>

				<pfb_dnsbl_sync>on</pfb_dnsbl_sync>

				<alexa_type>tranco</alexa_type>

				<pfb_dnsblv6></pfb_dnsblv6>

				<pfb_cache>on</pfb_cache>

				<dnsbl_mode>dnsbl_unbound</dnsbl_mode>

				<pfb_py_reply>on</pfb_py_reply>

				<pfb_py_block>on</pfb_py_block>

				<pfb_hsts>on</pfb_hsts>

				<pfb_idn></pfb_idn>

				<pfb_regex></pfb_regex>

				<pfb_cname>on</pfb_cname>

				<pfb_regex_list></pfb_regex_list>

				<pfb_pytld></pfb_pytld>

				<pfb_pytld_sort></pfb_pytld_sort>

				<pfb_py_nolog>on</pfb_py_nolog>

				<pfb_pytlds_gtld>arpa,int,com,net,org,edu,int</pfb_pytlds_gtld>

				<pfb_pytlds_cctld></pfb_pytlds_cctld>

				<pfb_pytlds_itld></pfb_pytlds_itld>

				<pfb_pytlds_bgtld></pfb_pytlds_bgtld>

				<blacklist></blacklist>

				<pfb_noaaaa></pfb_noaaaa>

				<pfb_noaaaa_list></pfb_noaaaa_list>

				<pfb_gp></pfb_gp>

				<pfb_gp_bypass_list></pfb_gp_bypass_list>

				<pfb_control></pfb_control>

				<global_log></global_log>

			</config>

		</pfblockerngdnsblsettings>

		<pfblockerngdnsbl>

			<config>

				<aliasname>ADs</aliasname>

				<description><![CDATA[ADs - Collection of ADvertisement Domain Feeds.]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>primary</order>

				<filter_alexa></filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://adaway.org/hosts.txt</url>

					<header>Adaway</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt</url>

					<header>D_Me_ADs</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt</url>

					<header>D_Me_Tracking</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://pgl.yoyo.org/adservers/serverlist.php?hostformat=nohtml</url>

					<header>Yoyo</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://easylist-downloads.adblockplus.org/easyprivacy.txt</url>

					<header>EasyPrivacy</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://easylist-downloads.adblockplus.org/advblock.txt</url>

					<header>EasyList_Russian</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://easylist-downloads.adblockplus.org/easylist_noelemhide.txt</url>

					<header>EasyList</header>

				</row>

			</config>

			<config>

				<aliasname>Cryptojackers</aliasname>

				<description><![CDATA[Cryptojackers - Collection of Malicious Domain crypto mining Feeds]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>default</order>

				<filter_alexa>on</filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://zerodot1.gitlab.io/CoinBlockerLists/list.txt</url>

					<header>CoinBlocker_All</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://zerodot1.gitlab.io/CoinBlockerLists/list_optional.txt</url>

					<header>CoinBlocker_Opt</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/hoshsadiq/adblock-nocoin-list/master/hosts.txt</url>

					<header>NoCoin</header>

				</row>

			</config>

			<config>

				<aliasname>Phishing</aliasname>

				<description><![CDATA[Phishing - Collection of Phishing Domain Feeds.]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>default</order>

				<filter_alexa>on</filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://urlhaus.abuse.ch/downloads/text/</url>

					<header>Abuse_urlhaus</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://openphish.com/feed.txt</url>

					<header>OpenPhish</header>

				</row>

			</config>

			<config>

				<aliasname>Malicious2</aliasname>

				<description><![CDATA[Malicious2 - Collection of Feeds from Secondary Tier providers.]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>default</order>

				<filter_alexa>on</filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://kriskintel.com/ktip_domain_blacklist.txt</url>

					<header>Krisk_Intel_BD</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://kriskintel.com/ktip_maze.txt</url>

					<header>Krisk_Intel_Maze</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://kriskintel.com/ktip_corona.txt</url>

					<header>Krisk_Corona_Phishing</header>

				</row>

			</config>

			<config>

				<aliasname>Malicious</aliasname>

				<description><![CDATA[Malicious - Collection of Malicious Domain Feeds.]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>default</order>

				<filter_alexa>on</filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://www.malwaredomainlist.com/hostslist/hosts.txt</url>

					<header>MDL</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://s3.amazonaws.com/lists.disconnect.me/simple_malware.txt</url>

					<header>D_Me_Malw</header>

				</row>

			</config>

			<config>

				<aliasname>DOH</aliasname>

				<description><![CDATA[DOH - DNS over HTTPS]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>default</order>

				<filter_alexa></filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/oneoffdallas/dohservers/master/list.txt</url>

					<header>Oneoffdallas_DOH</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/Sekhan/TheGreatWall/master/TheGreatWall.txt</url>

					<header>TheGreatWall_DoH</header>

				</row>

			</config>

			<config>

				<aliasname>Compilation</aliasname>

				<description><![CDATA[Compilation - feeds that aggregate other feeds]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>default</order>

				<filter_alexa>on</filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://dbl.oisd.nl/</url>

					<header>OISD</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://phishing.army/download/phishing_army_blocklist.txt</url>

					<header>PhishingArmy</header>

				</row>

			</config>

			<config>

				<aliasname>Firebog_Trackers</aliasname>

				<description><![CDATA[Places that track you.]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>default</order>

				<filter_alexa>on</filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/FadeMind/hosts.extras/master/add.2o7Net/hosts</url>

					<header>Fademind_2o7</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/android-tracking.txt</url>

					<header>Perflyst_Android</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/SmartTV.txt</url>

					<header>Perflyst_TV</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/AmazonFireTV.txt</url>

					<header>Perflyst_FireTV</header>

				</row>

			</config>

			<config>

				<aliasname>Firebog_Advertising</aliasname>

				<description><![CDATA[Waste of bandwith trying to sell stuff.]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>default</order>

				<filter_alexa></filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/jdlingyu/ad-wars/master/hosts</url>

					<header>Ad_Wars</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/anudeepND/blacklist/master/adservers.txt</url>

					<header>Anudeep_BL</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/bigdargon/hostsVN/master/hosts</url>

					<header>hostsVN</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://raw.githubusercontent.com/FadeMind/hosts.extras/master/UncheckyAds/hosts</url>

					<header>Fademinds</header>

				</row>

			</config>

			<config>

				<aliasname>Firebog_Malicious</aliasname>

				<description><![CDATA[Bad places.]]></description>

				<action>unbound</action>

				<cron>EveryDay</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<logging>enabled</logging>

				<order>default</order>

				<filter_alexa></filter_alexa>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://urlhaus.abuse.ch/downloads/hostfile/</url>

					<header>URLhaus_Mal</header>

				</row>

			</config>

		</pfblockerngdnsbl>

		<pfblockerngipsettings>

			<config>

				<enable_dup>on</enable_dup>

				<enable_agg>on</enable_agg>

				<suppression>on</suppression>

				<enable_log></enable_log>

				<maxmind_locale>en</maxmind_locale>

				<database_cc></database_cc>

				<inbound_interface>wan</inbound_interface>

				<inbound_deny_action>block</inbound_deny_action>

				<outbound_interface>lan</outbound_interface>

				<outbound_deny_action>reject</outbound_deny_action>

				<enable_float></enable_float>

				<pass_order>order_0</pass_order>

				<autorule_suffix>autorule</autorule_suffix>

				<killstates>on</killstates>

				<ip_placeholder>127.1.7.7</ip_placeholder>

				<asn_reporting>24hour</asn_reporting>

				<v4suppression>MTk1Ljg4LjI1Mi4wLzI0DQoxOTUuODguMjUzLjAvMjQNCjc3Ljg4LjguNzgvMzINCjE5Mi4zMC4yNTMuMTEyLzMyDQo=</v4suppression>

				<maxmind_key>xxxxx</maxmind_key>

			</config>

		</pfblockerngipsettings>

		<pfblockerngreputation>

			<config></config>

		</pfblockerngreputation>

		<pfblockerngglobal>

			<alertrefresh>on</alertrefresh>

			<pfbextdns>77.88.8.8</pfbextdns>

			<pfbreplytypes></pfbreplytypes>

			<pfbreplyrec></pfbreplyrec>

			<uniblock>#FFF9C4</uniblock>

			<unipermit>#80CBC4</unipermit>

			<unimatch>#B3E5FC</unimatch>

			<unidnsbl>#EF9A9A</unidnsbl>

			<unireply>#E8E8E8</unireply>

			<uniblock2>#83791D</uniblock2>

			<unipermit2>#3B8780</unipermit2>

			<unimatch2>#42809D</unimatch2>

			<unidnsbl2>#E84E4E</unidnsbl2>

			<unireply2>#54585E</unireply2>

			<pfbchartcnt>24</pfbchartcnt>

			<pfbchartstyle>twotone</pfbchartstyle>

			<pfbchart1>#0C6197</pfbchart1>

			<pfbchart2>#7A7A7A</pfbchart2>

			<pfbpageload>unified</pfbpageload>

			<pfbmaxtable>1000</pfbmaxtable>

			<pfbblockstat></pfbblockstat>

			<pfbpermitstat></pfbpermitstat>

			<pfbmatchstat></pfbmatchstat>

			<pfbdnsblstat></pfbdnsblstat>

			<pfbdnsblreplystat></pfbdnsblreplystat>

			<pfbunicnt>200</pfbunicnt>

			<pfbdenycnt>25</pfbdenycnt>

			<pfbpermitcnt>25</pfbpermitcnt>

			<pfbmatchcnt>25</pfbmatchcnt>

			<pfbdnscnt>25</pfbdnscnt>

			<pfbdnsreplycnt>200</pfbdnsreplycnt>

			<ipfilterlimitentries>100</ipfilterlimitentries>

			<dnsblfilterlimitentries>100</dnsblfilterlimitentries>

			<dnsfilterlimitentries>100</dnsfilterlimitentries>

		</pfblockerngglobal>

		<pfblockernglistsv6>

			<config>

				<aliasname>PRI1_6</aliasname>

				<description><![CDATA[PRI1_6 - collection of IPv6 Feeds from the most reputable blocklist providers.]]></description>

				<action>Disabled</action>

				<cron>Weekly</cron>

				<dow>1</dow>

				<sort>sort</sort>

				<aliaslog>enabled</aliaslog>

				<stateremoval><![CDATA[enabled]]></stateremoval>

				<autoaddrnot_in></autoaddrnot_in>

				<autoports_in></autoports_in>

				<aliasports_in></aliasports_in>

				<autoaddr_in></autoaddr_in>

				<autonot_in></autonot_in>

				<aliasaddr_in></aliasaddr_in>

				<autoproto_in></autoproto_in>

				<agateway_in>default</agateway_in>

				<autoaddrnot_out></autoaddrnot_out>

				<autoports_out></autoports_out>

				<aliasports_out></aliasports_out>

				<autoaddr_out></autoaddr_out>

				<autonot_out></autonot_out>

				<aliasaddr_out></aliasaddr_out>

				<autoproto_out></autoproto_out>

				<agateway_out>default</agateway_out>

				<suppression_cidr>Disabled</suppression_cidr>

				<whois_convert></whois_convert>

				<custom></custom>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://raw.githubusercontent.com/dyne/dnscrypt-proxy/master/dnscrypt-resolvers.csv</url>

					<header>DNSCrypt</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://public-dns.info/nameservers.txt</url>

					<header>publicdns</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Enabled]]></state>

					<url>https://www.spamhaus.org/drop/dropv6.txt</url>

					<header>Spamhaus_Drop6</header>

				</row>

				<row>

					<format>auto</format>

					<state><![CDATA[Disabled]]></state>

					<url>https://raw.githubusercontent.com/ejrv/VPNs/master/vpn-ipv6.txt</url>

					<header>VPNs</header>

				</row>

			</config>

		</pfblockernglistsv6>

		<pfblockerngtopspammers>

			<config>

				<action>Disabled</action>

				<aliaslog>enabled</aliaslog>

			</config>

		</pfblockerngtopspammers>

		<pfblockerngafrica>

			<config>

				<action>Disabled</action>

				<aliaslog>enabled</aliaslog>

			</config>

		</pfblockerngafrica>

		<pfblockerngantarctica>

			<config>

				<action>Disabled</action>

				<aliaslog>enabled</aliaslog>

			</config>

		</pfblockerngantarctica>

		<pfblockerngasia>

			<config>

				<action>Disabled</action>

				<aliaslog>enabled</aliaslog>

			</config>

		</pfblockerngasia>

		<pfblockerngeurope>

			<config>

				<action>Disabled</action>

				<aliaslog>enabled</aliaslog>

			</config>

		</pfblockerngeurope>

		<pfblockerngnorthamerica>

			<config>

				<action>Disabled</action>

				<aliaslog>enabled</aliaslog>

			</config>

		</pfblockerngnorthamerica>

		<pfblockerngoceania>

			<config>

				<action>Disabled</action>

				<aliaslog>enabled</aliaslog>

			</config>

		</pfblockerngoceania>

		<pfblockerngsouthamerica>

			<config>

				<action>Disabled</action>

				<aliaslog>enabled</aliaslog>

			</config>

		</pfblockerngsouthamerica>

		<pfblockerngproxyandsatellite>

			<config>

				<action>Alias_Native</action>

				<aliaslog>enabled</aliaslog>

			</config>

		</pfblockerngproxyandsatellite>

		<pfblockerngsafesearch>

			<safesearch_enable>Disable</safesearch_enable>

			<safesearch_youtube>Disable</safesearch_youtube>

			<safesearch_doh>Enable</safesearch_doh>

			<safesearch_doh_list>use-application-dns.net,cloudflare-dns.com,security.cloudflare-dns.com,family.cloudflare-dns.com,dns.google,doh.dns.apple.com,doh.opendns.com,doh.familyshield.opendns.com,dns.quad9.net,dns9.quad9.net,dns10.quad9.net,dns11.quad9.net,dns.adguard.com,dns-unfiltered.adguard.com,dns-family.adguard.com,doh.cleanbrowsing.org,security-filter-dns.cleanbrowsing.org,family-filter-dns.cleanbrowsing.org,adult-filter-dns.cleanbrowsing.org,dns.switch.ch,dns.comss.one,dns.east.comss.one,private.canadianshield.cira.ca,protected.canadianshield.cira.ca,family.canadianshield.cira.ca,doh-fi.blahdns.com,doh-jp.blahdns.com,doh-de.blahdns.com,fi.doh.dns.snopyta.org,dns-doh.dnsforfamily.com,odvr.nic.cz,dns.alidns.com,dns.cfiec.net,asia.dnscepat.id,eropa.dnscepat.id,doh.360.cn,public.dns.iij.jp,doh.pub,dns.twnic.tw,doh.tiarap.org,doh.tiar.app,dot.tiar.app,jp.tiarap.org,jp.tiar.app,dns.oszx.co,dns.pumplex.com,doh.applied-privacy.net,dot1.applied-privacy.net,dns.decloudus.com,resolver-eu.lelux.fi,doh.dns.sb,dnsforge.de,kaitain.restena.lu,doh.ffmuc.net,dns.digitale-gesellschaft.ch,doh.libredns.gr,ibksturm.synology.me,getdnsapi.net,dnsovertls.sinodun.com,dnsovertls1.sinodun.com,unicast.censurfridns.dk,anycast.censurfridns.dk,dns.cmrg.net,dns.larsdebruin.net,dns-tls.bitwiseshift.net,ns1.dnsprivacy.at,ns2.dnsprivacy.at,dns.bitgeek.in,dns.neutopia.org,privacydns.go6lab.si,dot.securedns.eu,dnsotls.lab.nic.cl,tls-dns-u.odvr.dns-oarc.net,doh.centraleu.pi-dns.com,dot.centraleu.pi-dns.com,doh.northeu.pi-dns.com,dot.northeu.pi-dns.com,doh.westus.pi-dns.com,dot.westus.pi-dns.com,doh.eastus.pi-dns.com,dot.eastus.pi-dns.com,doh.eastau.pi-dns.com,dot.eastau.pi-dns.com,doh.eastas.pi-dns.com,dot.eastas.pi-dns.com,doh.pi-dns.com,dot.seby.io,doh-2.seby.io,doh.dnslify.com</safesearch_doh_list>

		</pfblockerngsafesearch>

		<pfblockerngblacklist>

			<blacklist_enable>Disable</blacklist_enable>

			<blacklist_lang>EN</blacklist_lang>

			<blacklist_selected>shallalist</blacklist_selected>

			<blacklist_freq>Never</blacklist_freq>

			<blacklist_logging>enabled</blacklist_logging>

			<item>

				<title>Shallalist</title>

				<xml>shallalist</xml>

				<feed>http://www.shallalist.de/Downloads/shallalist.tar.gz</feed>

				<size>10</size>

				<selected>anonvpn,dating,gamble,porn,ringtones,spyware</selected>

			</item>

			<item>

				<title>UT1</title>

				<xml>ut1</xml>

				<feed>ftp://ftp.ut-capitole.fr/pub/reseau/cache/squidguard_contrib/blacklists.tar.gz</feed>

				<size>8.5</size>

				<selected></selected>

			</item>

		</pfblockerngblacklist>