pfSense

Hello,

I wish to ask for something I call "System Aliases".

At times there is a need to have a list of IPs and/or IP ranges, of different prominent services provider, but these IPs change from time to time and they are not under any unifying FQDN.

But, having them as one named object in pfSense, as a System Alias to use in the fw rulebase, will be awesome.

For example, Cloudflare, which is a large cloud CDN/Proxy/WAF, and many need to allow it access to their web server, but it has many ranges, as you can see at https://www.cloudflare.com/ips/.

It is not practical for any person or firm to manually track changes in this list and update it manually in pfSense, in a timely fashion.

But, CF also share this data in per-line, plain text, public files:
https://www.cloudflare.com/ips-v4/#
https://www.cloudflare.com/ips-v6/#

I guess Netgate can have a process to read these files in a recurring schedule, either from each pfSense device, or centrally (and the pfSense devices will read it from a pfSense server, also in recurring schedule) - and make out of it a fixed System Alias objects, like Cloudflare_IPv4 , Cloudflare_IPv6 and Cloudflare_IP_All, which users will be able to add to fw rules and they will know they will always get the exact, correct and real-time updated IP ranges that CF publish, automatically.

Thank you.