Ability to communicate with gateway firewall or maintain a txt list of blocked IP addesses

[phil-highrez]

It would be really neat if it could interface with an external API to add/remove firewall rules (for example OPNSense/pfSense using their API's to add rules to the gateway firewall as well as/rather than the local Windows firewall).

Alternatively, just create/maintain a simple text file list of blocked IP's that can be automatically sucked in to the OPNSense firewall aliases list every so often, so the gateway itself can block the external IP's site-wide.

This may apply to other gateway firewalls, I personally am only familiar with how it works with OPNSense and pfSense (very similar). and I understand most consumer routers wont easily support this.

Again, may be able to help on this one!

[devnulli]

hi, you can just parse config.xml, the list is persisted there

[phil-highrez]

OK that might be workable (although it seems unreasonably to have to have an extra script/application to do that). I'm currently evaluating the software, and so far, havn't had any blocks on our Windows Server hosting RRAS VPN - probably because I havn't figured out how to get the bad password attempts to get logged to the event log (see my other issue). I can get network policy server to log invalid username logons to the event log, which EVLWatcher sees (with a new rule that I will share when I'm sure its working), but not invalid password attempts (typical!). There isn't much else publicly hosted on that particular server so I haven't got any blocked/banned IPs into the file to parse yet.