Hardware Firewalls

Question

Hardware Firewalls

Levi Allen

So I've been trying to block windows telemetry and I don't just trust my hosts file anymore. I will post the list in my next post, however.

What I've done now is set up another pc as a domain name server, running BIND, and have made those same host file entries as zone files. As far as I can test with the terminal and web browser this works.

But if windows ignores DNS too I want to be able to actually block those endpoint IP addresses in a firewall.

I've started researching a good hardware firewall to do this and so far have knocked the Netgear SRX5308 off the list. It has very limited blocking capability I have found. I actually went and bought one for testing but wasn't satisfied with it.

A lot of firewalls have proprietary software on them, as in you need to subscribe and pay for it, which I am hoping to avoid as well (I'm looking at you fortinet).

Anyway the reason I'm posting this here is to see if any other Holla Forumss have set something like this up before and can give me some pointers.

Thanks

May 31, 2016 - 19:21

Other urls found in this thread:

vyos.net/wiki/Main_Page
archive.is/LiEpP
twitter.com/NSFWRedditGif

Wyatt Jenkins

hosts file

#Microsoft telemetry

127.0.0.1 vortex.data.microsoft.com
127.0.0.1 vortex-win.data.microsoft.com
127.0.0.1 telecommand.telemetry.microsoft.com
127.0.0.1 telecommand.telemetry.microsoft.com.nsatc.net
127.0.0.1 oca.telemetry.microsoft.com
127.0.0.1 oca.telemetry.microsoft.com.nsatc.net
127.0.0.1 sqm.telemetry.microsoft.com
127.0.0.1 sqm.telemetry.microsoft.com.nsatc.net
127.0.0.1 watson.telemetry.microsoft.com
127.0.0.1 watson.telemetry.microsoft.com.nsatc.net
127.0.0.1 redir.metaservices.microsoft.com
127.0.0.1 choice.microsoft.com
127.0.0.1 choice.microsoft.com.nsatc.net
127.0.0.1 df.telemetry.microsoft.com
127.0.0.1 reports.wes.df.telemetry.microsoft.com
127.0.0.1 wes.df.telemetry.microsoft.com
127.0.0.1 services.wes.df.telemetry.microsoft.com
127.0.0.1 sqm.df.telemetry.microsoft.com
127.0.0.1 telemetry.microsoft.com
127.0.0.1 watson.ppe.telemetry.microsoft.com
127.0.0.1 telemetry.appex.bing.net
127.0.0.1 telemetry.urs.microsoft.com
127.0.0.1 settings-sandbox.data.microsoft.com
127.0.0.1 vortex-sandbox.data.microsoft.com
127.0.0.1 survey.watson.microsoft.com
127.0.0.1 watson.microsoft.com
127.0.0.1 statsfe2.ws.microsoft.com
127.0.0.1 corpext.msitadfs.glbdns2.microsoft.com
127.0.0.1 compatexchange.cloudapp.net
127.0.0.1 cs1.wpc.v0cdn.net
127.0.0.1 a-0001.a-msedge.net
127.0.0.1 65.55.108.23
127.0.0.1 65.39.117.230
127.0.0.1 23.218.212.69
127.0.0.1 134.170.30.202
127.0.0.1 137.116.81.24
127.0.0.1 diagnostics.support.microsoft.com
127.0.0.1 corp.sts.microsoft.com
127.0.0.1 statsfe1.ws.microsoft.com
127.0.0.1 pre.footprintpredict.com
127.0.0.1 204.79.197.200
127.0.0.1 i1.services.social.microsoft.com
127.0.0.1 i1.services.social.microsoft.com.nsatc.net
127.0.0.1 feedback.windows.com
127.0.0.1 feedback.microsoft-hohm.com
127.0.0.1 feedback.search.microsoft.com
127.0.0.1 affiliate.trust.zone
127.0.0.1 alldcs-distinct.outbrain.com
127.0.0.1 alldcs.outbrain.com
127.0.0.1 alldcs.sphere.com
127.0.0.1 chi-only.outbrain.com
127.0.0.1 chi2only.outbrain.com
127.0.0.1 editorial.outbrain.com
127.0.0.1 images-geo.outbrain.com
127.0.0.1 jump.jspg.cc
127.0.0.1 la-chi.outbrain.com
127.0.0.1 ny-only.outbrain.com
127.0.0.1 nychi2.outbrain.com
127.0.0.1 odb-chidc2.outbrain.com
127.0.0.1 pl112153.puhtml.com
127.0.0.1 s.rev2pub.com
127.0.0.1 sandbox.outbrain.com
127.0.0.1 search-results.mobi
127.0.0.1 stateresolver.link
127.0.0.1 terraclicks.com
127.0.0.1 visualrevenue.com
127.0.0.1 vra.outbrain.com
127.0.0.1 vrp.outbrain.com
127.0.0.1 vrt-chidc2-only.outbrain.com
127.0.0.1 vrt.outbrain.com
127.0.0.1 www.search-results.mobi
127.0.0.1 www.stateresolver.link
127.0.0.1 www.terraclicks.com
127.0.0.1 www.visualrevenue.com
127.0.0.1 www7.cbox.ws
127.0.0.1 analytics.microsoft.com
127.0.0.1 analytics.msn.com
127.0.0.1 analytics.msnbc.com
127.0.0.1 analytics.msnbc.msn.com
127.0.0.1 logging.windows.microsoft.com
127.0.0.1 microsoft-watch.us.intellitxt.com
127.0.0.1 spynet2.microsoft.com

May 31, 2016 - 19:22

Ethan Adams

Also pic related is my proposed setup

May 31, 2016 - 19:23

Jonathan Thompson

Just put your cuck vidyagaems software in a VM.

May 31, 2016 - 19:48

Eli Hughes

Just virtualize it and have it all in one box. Even an atom class pc would do all you need to do is throw in a second gigabit card. (needs at least 4 gigs of system (non shared with video) ram to use esxi, I like esxi more than kvm or xen, hyper-v is not bad but I'm guessing that's not something you'd be interested in)

I hear good things about vyos but you can even run openwrt or one of its many forks.

vyos.net/wiki/Main_Page

I love having a vm machine running all the time. It's my router, my dns, web server, nas, kodi back end, minecraft server, and I got a windows 10 vm on it so I can rdp from my phone when I need a real os but I'm away.

May 31, 2016 - 20:11

Landon Jones

Why do u have a dns server for?

May 31, 2016 - 20:28

Jayden Carter

...

May 31, 2016 - 20:35

Blake Collins

...

May 31, 2016 - 21:16

Austin Wood

So I can block stuff on all my devices. E.g I can block Facebook with my pc host file, but I can't do that on my phone.

May 31, 2016 - 21:30

Aiden Ward

You could set up that second PC as a pfSense router, it has a firewall and I'm pretty sure can run BIND.

May 31, 2016 - 21:50

Jacob Bailey

I have a w7 on this machine without the telemetry updates. However I have a Netgear Nighthawk that I've flashed over to DD-WRT and applied the list of IP''s on your list to the block list found on there.

Seems to work fine when trying to ping those services and host doesn't resolve.

May 31, 2016 - 22:43

Xavier Nelson

Nice, thank you for the ideas

May 31, 2016 - 23:59

Mason Smith

Related thread

June 1, 2016 - 05:50

Jordan Turner

Jesus fucking Christ, is there any length a windrone won't go before they just switch to GNU/Linux

June 1, 2016 - 06:18

Gabriel Martinez

install openwrt for dns server

June 1, 2016 - 06:43

Noah Stewart

Nope

June 1, 2016 - 17:00

Christopher Thompson

I've heard reports that Microsoft is buying domains to use as servers to get around people blocking them in the Hosts file. If it's true you'll need to keep updating that list.

June 1, 2016 - 17:17

Adrian Perry

Yeah I always assumed this was the case. That's also why I wanted to be able to block at the IP level and why I wanted a separate DNS server so that the hosts file couldn't just be circumvented.

June 1, 2016 - 17:22

Dylan Murphy

If you go with DD-WRT or OpenWRT this can do a similar thing to hosts files, but on the router level.

archive.is/LiEpP

June 1, 2016 - 17:24

Jordan Russell

...

June 1, 2016 - 17:28

Joshua Morgan

...

June 1, 2016 - 17:34

Jaxson Russell

bump

June 10, 2016 - 04:36

Luis Rogers

If you can't trust the OS, you are fucked. Just don't use Win10, if you have to use Win7, pirate it, and disable automatic updates.

June 14, 2016 - 14:35

Michael Baker

you can't pirate a clean win7 anymore

XP POS is a better option.

June 14, 2016 - 15:15

Blake Ward

...

June 14, 2016 - 15:51

Angel Lewis

Retard.

June 14, 2016 - 15:55

Joshua Martin

Why?

June 14, 2016 - 16:22

Adam Gomez

Rope.

June 14, 2016 - 17:55

1 2 3 Next

Hardware Firewalls

Last threads