• JATtho@sopuli.xyz
    link
    fedilink
    arrow-up
    3
    ·
    10 months ago

    It happened to me when I was configuring IP geoblocking: Only whitelist IP ranges are allowed. That was fetched from a trusted URL. If the DNS provider just happened to not be on that list, the whitelist would become empty, blocking all IPs. Literally 100% proof firewall; not even a ping gets a pass.

    • conti473
      link
      fedilink
      arrow-up
      1
      ·
      edit-2
      10 months ago

      OPNsense has an anti-lock-out rule at the top for a reason 😁